Age | Commit message (Expand) | Author |
2018-08-08 | mestre and I can find no reason why the pledge has "unix". Disable | Theo de Raadt |
2017-09-08 | Whoops, remove extra include. | Bryan Steele |
2017-09-08 | fork+exec model for tcpdump(8); re-exec the privileged child after fork | Bryan Steele |
2017-06-14 | Don't support loading appletalk addresses from /etc/appletalk.names. | Michal Mazurek |
2017-01-23 | Split pledge "ioctl" into "tape" and "bpf", and allow SIOCGIFGROUP only | Theo de Raadt |
2016-07-25 | err() instead of errx(); noted by tim | Theo de Raadt |
2016-07-24 | Split the root vs not-root cases better with regards to chroot setup. | Theo de Raadt |
2016-07-21 | 2004 privsep caused "tcpdump -r" to became a priviledged operation because | Theo de Raadt |
2015-12-05 | Remove two sets of NULL-checks before free(). | mmcc |
2015-11-03 | Surround pledge call with blank lines. | mmcc |
2015-10-09 | Change all tame callers to namechange to pledge(2). | Theo de Raadt |
2015-10-06 | Move from tame "cmsg" to tame "sendfd" or "recvfd", depending on which | Theo de Raadt |
2015-10-03 | tcpdump is two-process privsep. | Theo de Raadt |
2015-08-21 | since stdlib.h is in scope, don't cast.... you know the drill. | Theo de Raadt |
2015-07-14 | Move the BIOCGSTATS ioctl operation done by the tcpdump process | Theo de Raadt |
2015-03-15 | tzfile.h is an internal header that should never have been installed. | Todd C. Miller |
2015-01-20 | Adjust <sys/param.h> comments regarding use of use of MSIZE, or | Theo de Raadt |
2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
2011-09-22 | Revert r1.29. Now that the "C" locale is ASCII-only, this workaround | Stefan Sperling |
2011-04-03 | Call setlocale() to avoid display glitches in UTF-8 locales. | Stefan Sperling |
2009-04-17 | correcto in comment; from Amarendra Godbole | Jason McIntyre |
2008-04-18 | add filtering on direction; ok mpf@ deraadt@ feedback jmc@ | Damien Miller |
2007-11-27 | typos; ok jmc@ | Martynas Venckus |
2006-04-22 | Set signal handlers directly after the fork(2), so that we avoid | Moritz Jodeit |
2006-04-22 | Remove remaining stuff from state QUIT, adjust some comments | Moritz Jodeit |
2006-04-21 | Add comments to please lint. No code changes. OK deraadt | Chad Loder |
2005-09-23 | Only allow root to run tcpdump. It's needed for the chroot security. | Otto Moerbeek |
2005-05-23 | Call endpwent() _after_ we're done with the struct passwd fields. | Otto Moerbeek |
2005-05-22 | correct comments and function namens to reflect new parent/child | Moritz Jodeit |
2005-05-22 | fix signal race in statistics output. ok cloder@ henning@ | Moritz Jodeit |
2005-05-03 | more setres[ug]id; ok deraadt@ | Damien Miller |
2005-04-20 | fix signal race by removing STATE_QUIT completely. | Moritz Jodeit |
2005-04-10 | do not forget to call endpwent(). ok moritz@ | Otto Moerbeek |
2005-04-10 | reduce the set of allowed actions in the privileged part | Moritz Jodeit |
2005-03-26 | simplify state engine, the old one was very confusing and wrong too. | Otto Moerbeek |
2005-03-25 | whitespace | Moritz Jodeit |
2005-03-06 | add support for multiple DLTs using the -L and -y options. | Reyk Floeter |
2004-07-14 | no \n in errx(3) | Henning Brauer |
2004-06-09 | Take better care of people down under living in X and a half hour | Otto Moerbeek |
2004-05-15 | Naming consistency. From Alexander Guy. ok canacar@ | Otto Moerbeek |
2004-04-23 | Silence getopt() in the priv process. ok canacar@ henning@ | Otto Moerbeek |
2004-04-08 | In error message, use saved errno, not current errno. | Anil Madhavapeddy |
2004-04-03 | - dont send junk err in parent_open_dump() if filename is NULL | Anil Madhavapeddy |
2004-03-14 | Check return code of chdir() after chroot(); noted by Joris Vink, slight mod | Otto Moerbeek |
2004-02-05 | Don't print two confusing error messages, print a single clear one. | Otto Moerbeek |
2004-02-04 | Better error message when bpf device open fails. | Otto Moerbeek |
2004-01-31 | general cleanup and better SIGCHLD handling from millert@ | Otto Moerbeek |
2004-01-28 | privilege separated tcpdump, joint work with otto@ | Can Erkin Acar |