| Age | Commit message (Expand) | Author |
|---|
| 2015-10-04 | remove tame "proc". it is not useful, because the "ed" diffs require | Theo de Raadt |
| 2015-10-04 | Also needs "rpath" for some circumstances. | Theo de Raadt |
| 2015-10-04 | Add tame(2) to file(1) and drop the old systrace(4) sandbox. tame(2) is | Nicholas Marriott |
| 2015-10-04 | Repair tame() error check to be == -1 | Theo de Raadt |
| 2015-10-03 | Add ktracing of tame()'s arguments' values | Philip Guenther |
| 2015-10-03 | option LFS is dead, but we missed option ACCOUNTING here | Philip Guenther |
| 2015-10-03 | you can't edit stdin in place. check for this before the hack that | Ted Unangst |
| 2015-10-03 | Now that dc(1) no longer supports !command with popen(), we can start | Theo de Raadt |
| 2015-10-03 | delete documentation for ! command | Theo de Raadt |
| 2015-10-03 | disable ! command, makes dc(1) more tameable | Otto Moerbeek |
| 2015-10-03 | wc only opens files read-only, proceses them, and spits results to stdout. | Theo de Raadt |
| 2015-10-03 | As pointed out by tobiasu, ed-style patches still use popen() and execute | Theo de Raadt |
| 2015-10-03 | - Simplify use of ctype functions. | Tim van der Molen |
| 2015-10-03 | tame "stdio" right between setlocale and getopt, it is easy to review | Theo de Raadt |
| 2015-10-03 | Fix wrong cast. | Vadim Zhukov |
| 2015-10-03 | grep only opens files read-only, reads via stdio or other methods, performs | Theo de Raadt |
| 2015-10-03 | tame "stdio getpw rpath" can be done quite early after the getopt. | Theo de Raadt |
| 2015-10-03 | leave does a fork, but other than that it is boring stdio. | Theo de Raadt |
| 2015-10-03 | gzip can use tame "stdio wpath cpath fattr". this blocks a lot of | Theo de Raadt |
| 2015-10-03 | BIO_get_fd() could return fd 0; fix error condition. Found at | Theo de Raadt |
| 2015-10-03 | switch from using the systrace-based sandbox to the tame-based sandbox. | Theo de Raadt |
| 2015-10-03 | patch appears to work fully with tame "stdio rpath wpath cpath tmppath fattr". | Theo de Raadt |
| 2015-10-03 | uniq has a complicated initialization around getopt. beforehands, we | Theo de Raadt |
| 2015-10-03 | script is two processes. the main io-loop process can be locked down with | Theo de Raadt |
| 2015-10-03 | finger can either do local users only, or in in remote users. (who | Theo de Raadt |
| 2015-10-03 | whois uses dns to lookup whois servers, and then opens sockets to them. | Theo de Raadt |
| 2015-10-03 | even before it reaches getopt(), this program will never do more than | Theo de Raadt |
| 2015-10-03 | sed only works on files, so the obvious goal is to remove it's network | Theo de Raadt |
| 2015-10-02 | update the -t args list; ok guenther | Jason McIntyre |
| 2015-10-02 | use limits.h instead of sys/param.h to get PATH_MAX | Theo de Raadt |
| 2015-10-02 | avoid sys/param.h, by using PATH_MAX | Theo de Raadt |
| 2015-10-02 | fix email | Theo de Raadt |
| 2015-10-02 | Replace %s in the format string, with its value (macro). | Alexandre Ratchov |
| 2015-10-02 | As the socket path is known, use its size rather that PATH_MAX. | Alexandre Ratchov |
| 2015-10-02 | use macros instead of hard-coded strings for unix sockets paths | Alexandre Ratchov |
| 2015-10-02 | Add ktracing of argv and envp to execve(2), with envp not traced by default | Philip Guenther |
| 2015-10-02 | a sandbox using tame | Theo de Raadt |
| 2015-10-02 | re-order system calls in order of risk, ok i'll be honest, ordered this | Theo de Raadt |
| 2015-10-01 | update currency exchange rates; | Jason McIntyre |
| 2015-10-01 | Another s/M_ASN1_INTEGER_free/ASN1_INTEGER_free/. | Joel Sing |
| 2015-09-29 | Check to see if the file to be opened is a directory as soon as is | Mark Lumsden |
| 2015-09-29 | rename random.c to util.c so it doesn't look scary. (util.c repo copied) | Ted Unangst |
| 2015-09-29 | Delete the final, inscrutable NOSTRICT and VARARGS lint comments | Philip Guenther |
| 2015-09-29 | Mark eread(), veread(), and eformat() as printf-like and | Philip Guenther |
| 2015-03-19 | Clean up the includes in mg. | Brian Callahan |
| 2015-03-16 | Change the internal name of the newline function to deconflict with a | Brian Callahan |
| 2014-03-26 | Previously, C-t (transpose two chars) did not behave the same as | Mark Lumsden |
| 2013-03-25 | Display the window's column number in mode line not the | Florian Obser |
| 2012-05-18 | Allow no-tab-mode to compile. From James Turner. | Mark Lumsden |
| 2011-01-21 | It volates style(9), but in mg, #include"def.h" goes first. 'twas the way it ... | Kjell Wooding |
