summaryrefslogtreecommitdiff
path: root/usr.sbin
AgeCommit message (Expand)Author
2004-05-17extend filter language to allow basic setting of COMMUNITIES attribute.Damien Miller
2004-05-16Use arc4random(3) to compute random numbers, instead of using rand()Otto Moerbeek
2004-05-16Use arc4random(3) instead of rand(3) to compute random numbers.Otto Moerbeek
2004-05-15Workaround to work with the new multipath support. Do a RTM_GET first toClaudio Jeker
2004-05-15Naming consistency. From Alexander Guy. ok canacar@Otto Moerbeek
2004-05-14Fix pppoe server mode. pppoe no longer chroots in server mode.Can Erkin Acar
2004-05-13as the authpf manpage describes, the connecting user's shell can beHenning Brauer
2004-05-13Pasto, change a cast from uid_t to gid_t (no real change...)Todd C. Miller
2004-05-13Set close on exec flag for cron's socket. Jarno HuuskonenTodd C. Miller
2004-05-13If we get EAGAIN reading from the cron socket check both cron andTodd C. Miller
2004-05-13Unswap the vhid and advskew values.Ryan Thomas McBride
2004-05-12tzsetHenning Brauer
2004-05-12tzsetHenning Brauer
2004-05-12like always I missed tzset(); Ben Lovett <ben@tilderoot.com>Henning Brauer
2004-05-11knfTheo de Raadt
2004-05-10write filter and lock bpf descriptor before dropping privileges,Can Erkin Acar
2004-05-10Check return value of fclose() calls after writing.Otto Moerbeek
2004-05-10Do not always print banner page.Otto Moerbeek
2004-05-10Make the accept socket non-blocking. Should not matter since weTodd C. Miller
2004-05-10when adding a new group to /etc/groups, place it just before the firstTheo de Raadt
2004-05-09prettyTheo de Raadt
2004-05-08off by one in key too long detectionHenning Brauer
2004-05-08fix redefinition detection with manual keyes ipsecHenning Brauer
2004-05-08with manual keyed ipsec, we need keys and spis for both directions -Henning Brauer
2004-05-08Filter bpf writes and lock descriptor. tested by hshoexer@Can Erkin Acar
2004-05-08as bloody attempt to document neighbor cloningHenning Brauer
2004-05-08lots of munging about; canacar ok, tested by pb, looked at by various othersTheo de Raadt
2004-05-08a bloody attempt at documenting the ipsec fluff.Henning Brauer
2004-05-08KNFHenning Brauer
2004-05-08break out the consistency checking for neighbors in its own function,Henning Brauer
2004-05-08do not omit the IPv6 listening addressHenning Brauer
2004-05-08provide log_sockaddr, which uses getnameinfo(), and use it inHenning Brauer
2004-05-08allow for neighbor statements without { parameters } block; everythingHenning Brauer
2004-05-08add support for ipsec ah with manual keys, pfkey part already does so, andHenning Brauer
2004-05-08factor out the string -> key conversion code used for md5sig and twice for ipsecHenning Brauer
2004-05-08remove unused argument to control_dispatch_msg(), lintHenning Brauer
2004-05-08remove hostname lookup stuff, done at parse time now, ok theoHenning Brauer
2004-05-08resolve hostnames at parse time, solves PR3771, ok theoHenning Brauer
2004-05-08implement and use prefixlen2mask() instead of doing it by hand 3 timesHenning Brauer
2004-05-08Pass the length of what was captured to pfsync_print, not the lengthRyan Thomas McBride
2004-05-07This makes afsd drop priviledge to user _afs inside a chroot (theBob Beck
2004-05-07Fix some sizeof(ptr) bugs based on diffs from aaron@.Todd C. Miller
2004-05-07add a filter option to dump prefixes learned in UPDATEs into a PF table,Damien Miller
2004-05-06spacingTheo de Raadt
2004-05-06knf and other cleanupsTheo de Raadt
2004-05-06pppoe now drops privileges to user _ppp and chroots after settingCan Erkin Acar
2004-05-06debug.c not usedTheo de Raadt
2004-05-06actually reset p->auth_established to 0 in pfkey_[md5sig|ipsec]_removeHenning Brauer
2004-05-06we need a seperate field for the md5 key len, can't use strlen, noticedHenning Brauer
2004-05-06oups, spacesHenning Brauer