summaryrefslogtreecommitdiff
path: root/usr.sbin
AgeCommit message (Collapse)Author
1999-03-08Handle comments that do not end in \n correctly; WHS <wouters@cistron.nl>Marco S Hyman
1999-03-08Add proxying & transparent proxying support (``alias proxy'').brian
Add PPTP packet aliasing (GRE fixed address) support (``alias pptp''). Add a 0 to the front of the mode to signify octal. Thanks to: Charles Mott <cmott@srv.net> & Dru Nelson <dnelson@redwoodsoft.com>
1999-03-07don't fatal out on init if RSA doesn't work, so as not to die if an RSABob Beck
libssl isn't installed and we only want to do http
1999-03-07Don't forget to call modem_Found() when connectingbrian
via an external program - otherwise we get no throughput stats and connection count increase.
1999-03-07Correctly drop existing connections when reopening the diagnosticbrian
socket.
1999-03-07Read from fd[0] and write to fd[1] where `fd' is thebrian
result of a pipe(). This matters under OpenBSD.
1999-03-07Use socketpair() instead of pipe()... pipe() doesn't returnbrian
two bi-directional descriptors under OpenBSD.
1999-03-07Reopen descriptor 0 as /dev/tty when in interactive modebrian
in OpenBSD as well as FreeBSD (I still don't know why). Add a debug diagnostic when creating a child process as a link.
1999-03-05bump cache timeout up a bitJason Wright
1999-03-05Make address cache expiration actually work and provide a knobJason Wright
for adjusting the timeout.
1999-03-04Extend the ``set redial'' command to allow incrementalbrian
redial timeouts.
1999-03-03Correct some ntohl/htonl bogons in the netmask handling.brian
This was pretty harmless as netmasks on a POINTOPOINT interface are pretty much ignored, but it looked funny. Mention the configured netmask in ``show ipcp''. Describe in more detail what a proxy arp entry is.
1999-03-03Don't install .wml files in doc tree.Bob Beck
1999-03-02Shouldn't be here. Autogenerated.Bob Beck
1999-03-01Fix build bug (don't install CVS stuff in man) and remove ssl MakefileBob Beck
and ssl_expr_scan.c which are autogenerated.
1999-03-01document 'maxaddr' commandJason Wright
1999-03-01When negotiating ACCMAPs, sync our ACCMAP with thebrian
peers by ORing the two together and NAKing or REQing the result rather than allowing seperate local/peer values. If the peer REJs our ACCMAP and our ACCMAP isn't 0, warn about it and ignore the rejection.
1999-03-01insert a missing .Ar; d@Aaron Campbell
1999-03-01cleanup; d@Aaron Campbell
1999-03-01vary -> very; d@Aaron Campbell
1999-03-01.Ar -> .Pa, rearrange Xr's, remove redundant .Nm arguments, other cleanup; d@Aaron Campbell
1999-03-01cleanup; d@Aaron Campbell
1999-03-01Fix stupid makefile mistake.Bob Beck
1999-03-01Makefile changes and forgotten file for mod_sslBob Beck
1999-03-01import apache 1.3.27 and mod_ssl 2.8.11Bob Beck
1999-03-01completely (almost) revamped ioctl's:Jason Wright
o new ioctls for getting/setting cache size (default == 100) o changed SIOCBRDGRT -> SIOCBRDGRTS o changed SIOCBRDGIDX -> SIOCBRDGIFS
1999-03-01mod_ssl-2.2.3-1.3.4 (will require libssl-1.1 for https to work, butBob Beck
mostly harmless otherwise).
1999-03-01import apache 1.3.27 and mod_ssl 2.8.11Bob Beck
1999-03-01Comment why we do a TLF when we get a ``Down'' event in statebrian
``closing''. Pointed out by: archie Don't do a TLF when we get a ``Catastrphic Protocol Reject'' event in state ``closed'' or ``stopped''. Pointed out but not suggested by: archie This makes no difference in the current implementation as LcpLayerFinish() does nothing but log the event, but I disagree in principle because it unbalances the TLF/TLS calls which (IMHO) doesn't fit with the intentions of the RFC. Maybe the RFC author had a reason for this. It can only happen in two circumstances: - if LCP has already been negotiated then stopped or closed and we receive a protocol reject, then we must already have done a TLF. Why do one again and stay in the same state ? - if LCP hasn't yet been started and we receive an unsolicted protocol reject, why should we TLF when we haven't done a TLS ?
1999-03-01Not present in 1.3.4Bob Beck
1999-03-01import apache 1.3.26 + mod_ssl 2.8.10Bob Beck
1999-03-01Apache 1.3.4Bob Beck
1999-03-01import apache 1.3.26 + mod_ssl 2.8.10Bob Beck
1999-03-01import apache 1.3.26 + mod_ssl 2.8.10Bob Beck
1999-03-01Apache 1.3.4Bob Beck
1999-03-01Apache 1.3.4 mergeBob Beck
1999-03-01Bring up auto links despite there being no data queued ifbrian
we're already in network phase and our autoload values are set with no minimum threshold (the default). Tell the autoload timer that it's ``coming up'' *before* calling AutoLoadTimeout() directly... not after. This prevents the very first demand-dial connection from immediately disconnecting when there are other auto links. Problem diagnosis: Ted Mittelstaedt <tedm@toybox.placo.com>
1999-02-28nice usage messagesTheo de Raadt
1999-02-27changes in command syntax; suggested by deraadt.Jason Wright
1999-02-27Document that feature.Marc Espie
Pending a check and a rewriting, as the documentation is misleading. It seems to imply it looks thru installed packages first, whereas code tells pkg_info looks thru package files first.
1999-02-27Small new feature: pkg_info pkgMarc Espie
now tries to complete the package name with a version number while scanning the installed list of packages. Not foolproof. The pkg_* tools are atrocious anyway.
1999-02-26Allow control over the number of ConfigREQ & TermREQ attemptsbrian
that are made in each of the FSMs (LCP, CCP & IPCP) and the number of REQs/Challenges for PAP/CHAP by accepting more arguments in the ``set {c,ip,l}cpretry'' and ``set {ch,p}apretry'' commands. Change the non-convergence thresholds to 3 times the number of configured REQ tries (rather than the previous fixed ``10''). We now notice repeated NAKs and REJs rather than just REQs. Don't suggest that CHAP 0x05 isn't supported when it's not configured. Fix some bugs that expose themselves with smaller numbers of retries: o Handle instantaneous disconnects (set device /dev/null) correctly by stopping all fsm timers in fsm2initial. o Don't forget to uu_unlock() devices that are files but are not ttys (set device /dev/zero). Fix a *HORRENDOUS* bug in RFC1661 (already fixed for an Open event in state ``Closed''): According to the state transition table, a RCR+ or RCR- received in the ``Stopped'' state are supposed to InitRestartCounter, SendConfigReq and SendConfig{Ack,Nak}. However, in ``Stopped'', we haven't yet done a TLS (or the last thing we did is a TLF). We must therefore do the TLS at this point ! This was never noticed before because LCP and CCP used not use LayerStart() for anything interesting, and IPCP tends to go into Stopped then get a Down because of an LCP RTR rather than getting a RCR again.
1999-02-26rearrange sections to match mdoc.templateJason Wright
nuke references to the original name of the program add bugs section
1999-02-26bridge config utilityJason Wright
1999-02-26You've been warned: turn too long package comments into errors.Marc Espie
1999-02-25mib for pf_key is PF_KEY not PF_KEY_V2Theo de Raadt
1999-02-25Parse IP addresses more securely - specifically, don't allowbrian
a bum name to return as 0.0.0.0... we don't want ``delete xxx'' to delete the default route when xxx doesn't resolve. Support IP number specifications as the host when specifying a tcp-style device (rather than *just* hostnames).
1999-02-25When our dial timeout is ``random'', display its valuebrian
correctly by invoking the timer to get the value before displaying the message. Don't assume that a value of 0 is ``random'' in ``show datalink''. Make the random value between 1 and DIAL_TIMEOUT rather than between 0 and DIAL_TIMEOUT-1
1999-02-25Don't immediately bring auto links back up in multilinkbrian
mode (when there is more than one auto link) if there is no data queued to go out. Reviewed by: Tom Torrance <tom@tomqnx.com>
1999-02-25Document name change for sysctl encdebug.Angelos D. Keromytis