Age | Commit message (Collapse) | Author | |
---|---|---|---|
2000-12-02 | Check for symlinks before overwriting kerberos ticket files. | Hans Insulander | |
While i'm at it, make sure not to use Kerberos at all if there is no local srvtab. Based on patch from Todd Miller. Reported by <jouko@solutions.fi>. | |||
2000-09-15 | check return value for setenv(3) for failure, and deal appropriately | Theo de Raadt | |
2000-09-03 | Boring... Add :L modifier to all tweakable variables tests. | Marc Espie | |
Closes PR 1246 | |||
2000-08-20 | Add calls to setusercontext() and login_get*(). We basically call | Todd C. Miller | |
setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class. | |||
2000-06-30 | warnx?/errx? paranoia (use "%s" not a bare string unless it is a | Todd C. Miller | |
constant). These are not security holes but it is worth fixing them anyway both for robustness and so folks looking for examples in the tree are not misled into doing something potentially dangerous. Furthermore, it is a bad idea to assume that pathnames will not include '%' in them and that error routines don't return strings with '%' in them (especially in light of the possibility of locales). | |||
2000-03-11 | Various cleanups and standardizations. | Aaron Campbell | |
1999-06-05 | - remove trailing white space | Aaron Campbell | |
- remove arguments from .Os macros - remove arguments from .Nm macros, where appropriate - some more Dq/Sq/Ql insanity - still lots to do in the usr.bin tree... :/ | |||
1998-09-27 | usr.bin/ man page cleanups, n-s | Aaron Campbell | |
1998-03-25 | explicit braces to avoid ambigious `else', some small -Wall fixes | Artur Grabowski | |
and prettier output when asking for kerberos passwd. | |||
1997-09-11 | cleanup -Wall | Theo de Raadt | |
1997-09-04 | clarify usage of wheel group; twp@tezcat.com | Niels Provos | |
1997-06-29 | new location of des.h | Niels Provos | |
1997-06-27 | fix up KRBTKFILE confusion; dm@ and traister@gate.net | Theo de Raadt | |
1997-06-23 | long != int | Theo de Raadt | |
1997-06-22 | %u for uid | Theo de Raadt | |
1997-06-21 | push KRBTKFILE only if new ticket; dm@openbsd.org and traister@gate.net | Theo de Raadt | |
1997-06-20 | worry about #ifdef KERBEROS | Theo de Raadt | |
1997-06-20 | when building new environment, do not destroy KRBTKFILE; traister@gate.net | Theo de Raadt | |
1997-06-20 | do not conflict with realloc() in setenv(); traister@gate.net | Theo de Raadt | |
1997-04-19 | Changed ``defined(KERBEROS)'' to ``(${KERBEROS} == "yes")'' | Todd C. Miller | |
Same change doen for SKEY, YP, and KERBEROS5. This allows people to override those setting in /etc/mk.conf. | |||
1997-03-26 | no libcrypt, fix DPADD | Theo de Raadt | |
1997-02-18 | Undo last changes; it makes it impossible to suspect su in Kerberos mode, | Thorsten Lockert | |
and also interferes with multiple sessions by removing tickets potentially in use by those other sessions. | |||
1997-02-11 | Fix for non-kerberos. | Todd C. Miller | |
1997-02-11 | Handle tickets the same way as login(1) does; remove when session ends | Thorsten Lockert | |
1997-01-15 | getopt(3) returns -1 when out of args, not EOF, whee! | Todd C. Miller | |
1996-12-22 | Deal with _POSIX_SAVED_IDS when relinquishing privileges | Thorsten Lockert | |
1996-10-27 | Don't use "user" arg verbatim from argv, use the sanitized one in | Todd C. Miller | |
struct passwd just to be safe. | |||
1996-10-26 | Now sets $LOGNAME as per POSIX. | Todd C. Miller | |
1996-10-23 | skey_authenticate() now fakes up a challenge if user does not | Todd C. Miller | |
have an entry in the keys file. Don't want to give info to information gathering attack. | |||
1996-10-21 | compile | Theo de Raadt | |
1996-10-21 | Test first, then commit, eh? | Todd C. Miller | |
1996-10-21 | save a cycle on strncpy() -- pointed out by Theo | Todd C. Miller | |
1996-10-21 | sheer raging paranoia -- possible buf olfow. Does not look exploitable. | Todd C. Miller | |
1996-10-16 | Check ret val of strdup(3) -- may be NULL. | Todd C. Miller | |
1996-10-12 | su.c: minor cleanup, some from FreeBSD | Todd C. Miller | |
su.1: Examples from FreeBSD + minor nits fixed. | |||
1996-10-12 | Fix suage string to match man page. NetBSD PR #2837 | Todd C. Miller | |
1996-10-08 | export $TERM only if passed in; joerg@freebsd.org | Theo de Raadt | |
1996-07-22 | seteuid for chdir | Theo de Raadt | |
1996-06-26 | rcsid | Theo de Raadt | |
1996-02-15 | libcrypt no longer a link dependancy. | etheisen | |
1996-01-07 | more traditional semantics. if wheel group has no listed users, anyone | Theo de Raadt | |
can su to root. default wheel group lists "root" as a user, thus defaulting to a secure envirment. from arnej@pvv.unit.no; netbsd pr#1894 | |||
1995-12-16 | Make it possible to build without SKEY support | Thorsten Lockert | |
Add support for building with kerberosIV | |||
1995-10-18 | initial import of NetBSD tree | Theo de Raadt | |