src - OpenBSD base system

Age	Commit message (Collapse)	Author
2013-04-02	Handle big time_t	Philip Guenther
	ok deraadt@
2013-01-19	fix build with gcc 2	Miod Vallat

2013-01-15	Per group support for authpf rules files in /etc/authpf/groups.	Bob Beck
	largely by Frank Timmers <frankt@smurfnet.eu> with fixups by me and jmc@.
2012-07-07	Fix file descriptor leak reported by someone on the mailing list long time	Claudio Jeker
	ago. OK beck@
2010-09-02	remove trailing spaces and tabs; no binary change.	Igor Sobrado
	written with help from henning@, who suggested ensuring that there are no changes in the digests for object files, thanks! ok henning@
2010-01-27	tweak previous: there was a word missing, but i've just changed	Jason McIntyre
	the wording to match that of a similar piece of text already in this page;
2010-01-27	search for authpf.message in $USER dirs also	Todd T. Fries
	from Rafal Bisingier ravbc at man dot pozman dot pl, ok beck@
2009-11-23	Make the tree compile again. Henning and I are both quite sure this is	Claudio Jeker
	correct.
2009-10-26	"rdr" -> "match in...rdr-to" in example.	Stuart Henderson

2009-09-08	Replace remaining occurrence of old PF syntax with "match...nat-to",	Stuart Henderson
	and just talk about "rules" rather than "filter and translation rules". Spotted by/ok jmc@
2009-09-08	Remove some nat-anchor, binat-anchor, rdr-anchor. Noticed by jmc@.	Stuart Henderson
	ok henning@
2009-01-10	Uninitialized variable introduced in 1.110.	Miod Vallat

2009-01-10	variable declaration before use, found by vax, no cookie	Todd T. Fries

2009-01-06	Support group and login class in authpf.allow (%<group>, @<class>)	Ryan Thomas McBride
	ok beck
2008-10-07	protect better against races from incoming signals; slightly changed	Theo de Raadt
	from 5394 by tracking the fd instead of the fp. ok beck
2008-10-05	grammar; PR 5394	Theo de Raadt

2008-03-18	Fix mention of authpf_users table (s/authpf users/authpf_users/).	Michael Erdely
	ok jmc@, mcbride@
2008-02-14	Add authpf-noip, which allows multiple users to connect from a single IP;	Ryan Thomas McBride
	forces users to write sane rulesets for this by not providing $user_ip or updating the authpf table. testing and prodding by mtu, manpage heavily worked over by jmc ok beck dhartmei henning
2008-02-01	Clean anchors recursively and directly via ioctls rather than using pfctl	Ryan Thomas McBride
	with '-f /dev/null'. Properly clears the user's anchor even when anchors are nested inside it (And avoids having to fork() on exit to run pfctl) ok beck@, with testing by mtu@
2007-09-25	handle empty strings returned by fgets	Charles Longeau
	ok ray@
2007-05-31	convert to new .Dd format;	Jason McIntyre

2007-02-24	exit right away if the config file isn't there, rather than	Bob Beck
	doing a whole bunch of needless screwing around noticed by Stefan Krah <stefan-usenet@bytereef.org>
2007-02-24	license + copyright	Bob Beck

2007-02-24	Pr 5395 from Stefan Krah <stefan-usenet@bytereef.org>	Bob Beck
	cleanup: remove unused arg no need to clear locals return -1 to allow pid cleanup to happen if fork fails
2007-02-22	this ftruncate is really not needed now, if we're just unlinking.	Bob Beck
	ok millert@
2007-02-22	close 5389 and 5390,	Bob Beck
	unused variable and a chance to unlink the pidfile without lock if we couldn't kill a preexisting authpf process. spotted by Stefan Krah <sfk1@bigfoot.com>.
2006-10-23	no need to use "keep state" and "flags S/SA" in pf rules,	Jason McIntyre
	now that it is the default; ok henning mcbride camield (ftp-proxy bits) deraadt
2006-08-09	handle SIGQUIT instead of SIGSTOP, from Stefan Krah	Daniel Hartmeier

2006-03-17	FILE * leak	Theo de Raadt

2006-03-14	fix incorrect sizeof(), spotted by ckuethe	Bob Beck
	ok deraadt@
2006-01-07	expand the section on ssh tunnelling machanisms;	Jason McIntyre
	from michael knudsen
2005-12-12	correct err() usage and remove the do_death which is unneeded in	Bob Beck
	the child proceess, (as noticed by <evol@online.ptt.ru>)
2005-12-12	Backout previous change back to 1.92 - My fault, committed diff	Bob Beck
	from unclean tree.
2005-12-09	Mine, so modernize license	Bob Beck

2005-12-09	calling do_death() after err makes us exit is not smart, and is in	Bob Beck
	fact unnecessary, my usage of err() here also repeated the formatted error message twice. - We don't need do_death() here, and fix err to print the message a bit more sanely. Noticed by Andrey Matveev <evol@online.ptt.ru> - Thanks
2005-12-08	make authpf give up group privs before exec'ing pfctl - makes it	Bob Beck
	so the new taint enforcement for /dev/fd/X opens don't kill it
2005-09-23	default port for ftp-proxy is 8021;	Jason McIntyre
	from johnb (pr #4520); ok deraadt@ ian@
2005-05-23	useless endpwent	Henning Brauer

2005-05-12	Xr securelevel 7	Jason McIntyre
	from tamas tevesz;
2005-05-02	more setres[ug]id; ok deraadt@	Damien Miller

2005-02-10	Minor punctuation nit.	Joel Knight
	ok henning@
2005-01-31	warn(3) + _exit(2) instead of err(3) in the forked child	Henning Brauer
	From: Andrey Matveev <andrushock@korovino.net>
2005-01-31	-Wsign-compare clean, Andrey Matveev <andrushock@korovino.net>	Henning Brauer

2005-01-04	simplified FILTER AND TRANSLATION RULES;	Jason McIntyre
	from michael knudsen;
2004-09-16	ftruncate() with ftello() instead of ftell(); ok millert	Theo de Raadt

2004-09-15	AllowTcpForwarding should be disabled for authpf users;	Jason McIntyre
	plus a typo; from michael knudsen; ok beck@
2004-08-15	document the use of "authpf/*" as anchor name for pf to process	Can Erkin Acar
	sub rulesets added by authpf. ok dhartmei@, oh yes! henning@
2004-08-08	spacing	Theo de Raadt

2004-06-14	Use new ioctls. ok beck@ henning@	Cedric Berger

2004-06-07	consistently refer to the authpf_users table;	Jason McIntyre
	noticed by die tuere; ok beck@