Age | Commit message (Collapse) | Author | |
---|---|---|---|
2002-12-12 | until someone complains, let only root play | Theo de Raadt | |
2002-12-12 | can now get _ttylist via sysctl; millert ok | Theo de Raadt | |
2002-12-11 | fix buffer overflow in the FIX_PRECISION macro | Henning Brauer | |
not exploiteable; would need more programming errors to cause harm from jim@apache | |||
2002-12-11 | handle snprintf < 0 | Theo de Raadt | |
2002-12-11 | typos in comments; David Krause | Henning Brauer | |
2002-12-10 | Add 2 missing pw_abort() calls when pw_mkdb() fails and remove the | Todd C. Miller | |
void cast from pw_abort() since it is already void. From NetBSD via Brian Poole. | |||
2002-12-10 | -O1 on alpha for now | Henning Brauer | |
ok theo | |||
2002-12-09 | Use strlcpy rather than unsafe string functions, especially in unreadable code. | Miod Vallat | |
Spotted by deraadt@ | |||
2002-12-09 | knf | Theo de Raadt | |
2002-12-09 | KNF | Theo de Raadt | |
2002-12-09 | KNF | Theo de Raadt | |
2002-12-09 | From Andrushock, s/sucess/success/g | Todd C. Miller | |
2002-12-08 | GNU semantics say that if optstring begins with '-' then | Todd C. Miller | |
each non-option shall be treated as arguments to option '\1'. BSD getopt match '-' in optstring with a '-' on the command line. This is used to support deprecated options like "su -" that would otherwise prevent the use of getopt(). Resolving this simply requires that the leading '-' be moved somewhere else (I moved it to the end of optstring) since position within optstring is not meaningful. | |||
2002-12-08 | Avoid setting optind to 0; drahn@ OK | Todd C. Miller | |
2002-12-07 | typo, henning ok | Anil Madhavapeddy | |
2002-12-06 | unkown; torh@bogus.net | Theo de Raadt | |
2002-12-06 | Introduce anchors and named rule sets, allowing to load additional rule | Daniel Hartmeier | |
sets with pfctl and evaluate them from the main rule set using a new type of rule (which will support conditional evaluation soon). Makes maintenance of sub-rulesets simpler for pfctl and daemons. Idea and ok deraadt@ | |||
2002-12-05 | typo in error message; Tor Houghton | Henning Brauer | |
2002-12-04 | typo; torh@bogus.net | Theo de Raadt | |
2002-12-04 | catch up to -v -v change in pfctl(8) | Theo de Raadt | |
2002-12-03 | print the interface related to the arp entry; several ppl ok. | Federico G. Schwindt | |
2002-12-03 | Compile wsmoused on alpha, as it can be used on vga displays. | Miod Vallat | |
2002-12-01 | KNF | Henning Brauer | |
2002-12-01 | Match pf_ioctl.c cleanup; if we're doing a DIOCCHANGE* operation which uses | Ryan Thomas McBride | |
old*, we need to call DIOCBEGINADDRS twice: once for the old rule/rdr/nat, and once for the new one. ok dhartmei@ henning@ | |||
2002-12-01 | Grammar nitpicking. | margarida | |
Closes PR 3005. fgsch@ ok | |||
2002-12-01 | Add ndc(8). | margarida | |
Closes PR 3004. fgsch@ ok | |||
2002-11-30 | be better about the STT_NOTYPE symbols, not all become N_UNDEF this way; ↵ | Michael Shalayeff | |
pefo@ ok | |||
2002-11-30 | pfsync support; deraadt@ ok | Michael Shalayeff | |
2002-11-30 | stop breaking the damn tree mickey | Theo de Raadt | |
2002-11-29 | tcpdump support for pfsync; henning@ ok | Michael Shalayeff | |
2002-11-28 | Check for invalid ICMP6 option length, ok itojun@ | Daniel Hartmeier | |
2002-11-25 | "successful" spelling fixes in comments & documentation | Peter Valchev | |
2002-11-23 | bye bye | Theo de Raadt | |
2002-11-23 | Correct href, from Francesco Toscan <francesco@toscan.biz> | margarida | |
henning@ | |||
2002-11-23 | don't try to do ioctl with PF_OPT_NOACTION | Ryan Thomas McBride | |
does not impact fuction of authpf, but make it consistent with the rest of the add_* family ok dhartmei@ | |||
2002-11-23 | add code to load lists of redirection addresses for nat/rdr/route-to/etc. | Ryan Thomas McBride | |
2002-11-22 | Disallow non-interactive sessions, to avoid problem of users scp'ing | Bob Beck | |
to authpf gateway - noticed by Devan Reade <gdr@gno.org>, ok henning | |||
2002-11-22 | fix fd handling, so 'make build >log 2>fixme' really works | Philipp Buehler | |
henning@ ok | |||
2002-11-22 | honor COPTS; ok henning@ | Christian Weisgerber | |
2002-11-22 | Add some .Xr's that have been sitting in my tree | Todd C. Miller | |
2002-11-21 | Rename shadow group to _shadow | Todd C. Miller | |
This means the instructions in the previous commit are now wrong (replace shadow with _shadow and all will be well). | |||
2002-11-21 | Add a "shadow" group and make the shadow passwd db readable by that | Todd C. Miller | |
group. This changes getpw* to always try the shadow db first and then fall back to the db w/o password hashes. In the future, /usr/libexec/auth/login_passwd (and others) will be setgid shadow instead of setuid root. OK deraadt@ If you track -current you should do the following: o add group shadow to /etc/group o chgrp shadow /etc/spwd.db o chmod 640 /etc/spwd.db o rebuild and install src/usr.sbin/pwd_mkdb You do not need to rebuild libc yet, but it would't hurt to do so. | |||
2002-11-21 | third person; margarida | Theo de Raadt | |
2002-11-21 | crap in getopt; margarida | Theo de Raadt | |
2002-11-21 | Add -n option to print message source addresses numerically rather than | Chad Loder | |
symbolically. This saves address->name lookups, which is nice on log servers without a DNS cache. millert@, jakob@ ok | |||
2002-11-19 | be more precise | Theo de Raadt | |
2002-11-19 | hacks to make the tree build; henning gets a carrot up the nose next time i ↵ | Theo de Raadt | |
meet him | |||
2002-11-18 | fix typos; Jon Bernard | Todd C. Miller | |
2002-11-18 | kill unused #define which was a workaround with old OpenSSL versions | Henning Brauer | |
from David Krause, Thanks! | |||
2002-11-18 | kill duplicate int retry; from David Krause, Thanks! | Henning Brauer | |