summaryrefslogtreecommitdiff
path: root/usr.sbin
AgeCommit message (Collapse)Author
2002-10-28merge mod-ssl 2.8.12Henning Brauer
fixes a cross site scripting bug fixes 2 off-by-ones
2002-10-28fix typo: regulary -> regularly; from Margarida Sequeira <niness@devilness.org>Peter Valchev
2002-10-26use poll(2). sync w/kameJun-ichiro itojun Hagino
2002-10-26prototype shouldn't carry variable nameJun-ichiro itojun Hagino
2002-10-26use poll(2). sync w/kame originally from netbsdJun-ichiro itojun Hagino
2002-10-26use strtoul, not atoi. some error handling sync w/kame.Jun-ichiro itojun Hagino
2002-10-25copy over the code for hpux to be used for a BSD case, not tested, but at ↵Michael Shalayeff
least compiles, the name of the file is bogus now (; hin@ ok and promissed to sync it w/ arla repo
2002-10-25prepend the underscore always for elf, this makes kvm_bsd.db work on elf ↵Michael Shalayeff
platforms; drahn@ millert@ ok
2002-10-25Add options to set the uid, gid, and group vector after the chroot;Todd C. Miller
adapted from NetBSD. OK markus@ and previously discussed with Theo.
2002-10-25Remove PATH_NATRULES, since nat is no longer in a seperate file.Camiel Dobbelaar
2002-10-25- spelling/grammarCamiel Dobbelaar
- nat rules are no longer in a seperate file, combine nat example - /32 on all addresses is clutter, since it's the default
2002-10-25- be even more careful with data supplied from outsideCamiel Dobbelaar
- check explicitly for negative values from snprintf (-pedantic) - use MAXLOGNAME - use parentheses with all sizeof's for consistency
2002-10-25%ul -> %luCamiel Dobbelaar
ok millert@ hin@
2002-10-25%ul -> %luCamiel Dobbelaar
ok millert@
2002-10-25escape a couple of literal \n's so they print correctlyJason Wright
2002-10-24be more picky about arg parsing. check ERANGE on strtoul. sync w/kame.Jun-ichiro itojun Hagino
2002-10-23Replace tmpnam() with mkstemp() to avoid possible /tmp race.Todd C. Miller
Problem found by David Wagner (among others).
2002-10-23integer overflow cleanup - convert to u_long so strtoul can handle comparisonsMark Grimes
itojun@ ok
2002-10-15improve englishJakob Schlyter
2002-10-14Fix from FreeBSD for atlhon problems with mtrr and XFree86. Ok deraadt@Matthieu Herrb
FreeBSD commit messages say: Some BIOSs are using MTRR values that are only documented under NDA to control the mapping of things like the ACPI and APM into memory. The problem is that starting X changes these values, so if something was using the bits of BIOS mapped into memory (say ACPI or APM), then next time they access this memory the machine would hang. This patch refuse to change MTRR values it doesn't understand, unless a new "force" option is given. This means X doesn't change them by accident but someone can override that if they really want to. PR: 28418 Tested by: Christopher Masto <chris at netmonger dot net>, David Bushong <david at bushong dot net>, Santos <casd at myrealbox dot com> Make the MTRR code a bit more defensive - this should help people trying to run X on some Athlon systems where the BIOS does odd things (mines an ASUS A7A266, but it seems to also help on other systems). Here's a description of the problem and my fix: The problem with the old MTRR code is that it only expects to find documented values in the bytes of MTRR registers. To convert the MTRR byte into a FreeBSD "Memory Range Type" (mrt) it uses the byte value and looks it up in an array. If the value is not in range then the mrt value ends up containing random junk. This isn't an immediate problem. The mrt value is only used later when rewriting the MTRR registers. When we finally go to write a value back again, the function i686_mtrrtype() searches for the junk value and returns -1 when it fails to find it. This is converted to a byte (0xff) and written back to the register, causing a GPF as 0xff is an illegal value for a MTRR byte. To work around this problem I've added a new mrt flag MDF_UNKNOWN. We set this when we read a MTRR byte which we do not understand. If we try to convert a MDF_UNKNOWN back into a MTRR value, then the new function, i686_mrt2mtrr, just returns the old value of the MTRR byte. This leaves the memory range type unchanged. I have seen one side effect of the fix, which is that ACPI calls after X has been run seem to hang my machine. As running X would previously panic the machine, this is still an improvement ;-) PR: 28418, 25958 Tested by: jkh, Christopher Masto <chris at netmonger dot net>
2002-10-13Xr files.conf(5)Miod Vallat
2002-10-07merge apache 1.3.27Henning Brauer
2002-10-07sync MANUALFILESHenning Brauer
2002-10-07drain the bitbucketHenning Brauer
2002-10-07emacsed outHenning Brauer
2002-10-07gone to the big harddrive in the skyHenning Brauer
2002-10-07merge apache 1.3.27 and mod_ssl 2.8.11Henning Brauer
2002-10-07import apache 1.3.27 and mod_ssl 2.8.11Henning Brauer
2002-10-07make restarts work again with missing srm.conf (sigh)Henning Brauer
pointed out by nicolas at untz dot net, thanks!
2002-10-06match php 4, too, in the example, j@pureftpd.orgHenning Brauer
2002-10-06in the commented out AddType example for php take values fitting for php4,Henning Brauer
not php3. inspired by a PR from j@pureftpd.org for the -dist file.
2002-10-04fix a cross-site scripting vuln:Henning Brauer
*) SECURITY: CAN-2002-0840 (cve.mitre.org) Prevent a cross-site scripting vulnerability in the default error page. The issue could only be exploited if the directive UseCanonicalName is set to Off and a server is being run at a domain that allows wildcard DNS. [Matthew Murphy]
2002-10-01version 1.2.4.1 from KTH: ok deraadt@ jason@Dale Rahn
make it work for netbsd/sparc64 (really any sparcv9 running !solaris)
2002-09-28format usage nicer, and add startssl to summary usage. also order theHenning Brauer
parameters a bit more logical. missing startssl pointed out by jsyn@, what made me look at it ;-) ok deraadt@
2002-09-26remove MDC2; patentsMarkus Friedl
2002-09-23Add missing includes, breaks and semicolons to appease gcc3; David KrauseTodd C. Miller
deraadt@ OK
2002-09-20better comment about RessourceConfig and AccessConfig aka srm.conf andHenning Brauer
access.conf. "These are now distributed empty" just doesn't fit if we don't install them any more.
2002-09-19bye byeHenning Brauer
2002-09-18Handle RFC2637 (PPTP defines an enhanced GRE... *sigh*)Jason Wright
2002-09-18Fully decode source routing elements defined in rfc1702Jason Wright
2002-09-18Rewrite from scratch: same basic functionality, but better license andJason Wright
knows how to skip routing info and process the rest of the packet.
2002-09-18don't install srm.conf, access.conf, srm.conf-dist and access.conf-distHenning Brauer
They are obsolete since years and empty anyway. ok theo
2002-09-18no point in limiting MaxRequestsPerChild on OpenBSDHenning Brauer
2002-09-18some cometics, correct SYNOPSISHenning Brauer
2002-09-18remove egp support; unresolved non-bsd license for a decoder of protocol thatJakob Schlyter
noone uses anymore is not worth the amount of work needed to be resolved.
2002-09-18no trspTheo de Raadt
2002-09-18fix Xr refs; frisco@blackant.netTheo de Raadt
2002-09-18bye byeTheo de Raadt
2002-09-15no license; i told you guys i mean itTheo de Raadt
2002-09-13Pedro says we can change his license too.Theo de Raadt