summaryrefslogtreecommitdiffstats
path: root/crypto
Commit message (Collapse)AuthorAgeFilesLines
* Upgrade to the pam_ssh module, version 1.1..green1999-12-281-12/+173
| | | | | | | | | | (From the author:) Primarily, I have added built-in functions for manipulating the environment, so putenv() is no longer used. XDM and its variants should now work without modification. Note that the new code uses the macros in <sys/queue.h>. Submitted by: Andrew J. Korty <ajk@iu.edu>
* This commit was generated by cvs2svn to compensate for changes in r55099,kris1999-12-2513-0/+2145
|\ | | | | | | which included commits to RCS files with non-trunk default branches.
| * Initial import of OpenSSL v0.9.4kris1999-12-2513-0/+2145
|
* Add the PAM SSH RSA key authentication module. For example, you can add,green1999-11-291-0/+328
| | | | | | | | | "login auth sufficient pam_ssh.so" to your /etc/pam.conf, and users with a ~/.ssh/identity can login(1) with their SSH key :) PR: 15158 Submitted by: Andrew J. Korty <ajk@waterspout.com> Reviewed by: obrien
* Merge anf fix for build.markm1999-09-1935-3041/+360
|
* This commit was generated by cvs2svn to compensate for changes in r51415,markm1999-09-19481-12270/+67276
|\ | | | | | | which included commits to RCS files with non-trunk default branches.
| * Clean import of KTH krb4-0.10.1.markm1999-09-19487-12770/+67597
| |
* | Big OpenSSL/KTH/FreeBSD merge, badly poisoned by $FreeBSD$'s.markm1999-09-1922-227/+259
| |
* | This commit was generated by cvs2svn to compensate for changes in r50894,markm1999-09-0462-1974/+8012
|\ \ | | | | | | | | | which included commits to RCS files with non-trunk default branches.
| * | Vendor import EAY's LIBSSL to fix comments, etc.markm1999-09-0464-2048/+8108
| | |
* | | Add macro originally provided externally.markm1999-09-041-0/+7
| | |
* | | Add includes to to silence warnings. Bit hackish.markm1999-09-041-7/+6
| | |
* | | Add some includes to shut up warnings.markm1999-09-042-0/+8
| | |
* | | This commit was generated by cvs2svn to compensate for changes in r50760,markm1999-09-01101-0/+24795
|\ \ \ | |/ / | | | | | | which included commits to RCS files with non-trunk default branches.
| * | Drat. Import this into the right place. Pass me the pointy hat.markm1999-09-01101-0/+24795
| /
* | Termcap header no longer needed.markm1999-09-011-1/+0
| |
* | $Id$ -> $FreeBSD$peter1999-08-288-8/+8
| |
* | Add virtual MAINTAINER line.markm1999-08-161-0/+2
| |
* | According to Mark Murray, Makefiles do not belong here. I guess we'rensayer1999-08-164-99/+0
| | | | | | | | going to have to figure something else out.
* | Add SRA authentication to src/crypto/telnet.nsayer1999-08-1613-6/+923
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | SRA does a Diffie-Hellmen exchange and then DES-encrypts the authentication data. If the authentication is successful, it also sets up a session key for DES encryption. SRA was originally developed at Texas A&M University. This code is probably export restricted (despite the fact that I originally found it at a University in Germany). SRA is not perfect. It is vulnerable to monkey-in-the-middle attacks and does not use tremendously large DH constants (and thus an individual exchange probably could be factored in a few days on modern CPU horsepower). It does not, however, require any changes in user or administrative behavior and foils session hijacking and sniffing. The goal of this commit is that telnet and telnetd end up in the DES distribution and that therefore an encrypted session telnet becomes standard issue for FreeBSD.
* | Fix int function without return (make consistent with neighbors)nsayer1999-08-161-0/+1
| |
* | Document the "skey" command in telnet(1).nik1999-07-301-0/+4
| | | | | | | | | | | | PR: docs/12360 Submitted by: kjm@rins.ryukoku.ac.jp (KOJIMA Hajime) Nagged by: markm :-)
* | Merge from non-crypto version:ru1999-06-175-15/+75
| | | | | | | | | | | | | | | | - "-N" option - "-E" security fix - "-s src_addr" option Requested by: markm
* | MF libexec/telnetd: Determine the host name using an array size ofbrian1999-04-081-2/+3
| | | | | | | | | | MAXHOSTNAMELEN and call trimdomain() before implementing the -u option.
* | MF libexec/telnetd: MAXHOSTNAMELEN & -u fixes.brian1999-04-072-8/+16
| |
* | Use realhostname().brian1999-04-061-39/+9
| |
* | MF src/libexec/telnetd: Verify the reverse DNS lookupbrian1999-04-061-2/+18
| | | | | | | | | | ala rlogind. Suggested by: markm
* | Old stuff laying around: Don't use getstr which can conflict with somepeter1998-12-162-6/+6
| | | | | | | | curses/termcap/terminfo implementations and causes recursion.
* | Old stuff from a source tree: copy (verbatum) the code to expand thepeter1998-12-161-2/+31
| | | | | | | | %s/%m in the default /etc/gettytab.
* | Remove redundant decl. of time(). Causes problems on alphagpalmer1998-09-011-2/+1
| |
* | Remove a work-around for an assembler bug that has been fixed sincejdp1998-08-311-4/+1
| | | | | | | | April, 1997. The work-around causes problems under ELF.
* | Fix nasty typo that randomly caused kinit to not properly deduce themarkm1998-03-291-2/+2
| | | | | | | | | | | | user's username when this was not specified. Reported by: Sean Eric Fagan
* | Make the ticket filename the same as for our old eBones. I am going tomarkm1998-02-161-1/+1
| | | | | | | | | | kerberize xdm again, and it will be a pain to maintain two different sets of patches (for 2.2 and 3.0).
* | Bring back the old behaviour of kinit; if no username is mentioned onmarkm1998-02-161-7/+35
| | | | | | | | | | | | | | the command line, attempt to get a ticket for the current uid (or <uid>.root if we are already su'ed). Requested By: Garrett Wollman
* | MFC: sprintf paranoiaimp1998-01-221-7/+8
| |
* | MFC: no \n in syslog strings. Change -P to -p in flags. EOF -> -1. Use err(3).charnier1997-12-089-139/+165
| |
* | kinit(1) and its man page do not agre on what is reported with -v. Fix this.markm1997-11-252-3/+4
| | | | | | | | Submitted by: Sheldon Hearn.
* | PR: bin/771 and bin/1037 are resolved by this changeuhclem1997-10-081-0/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This change changes the default handling of linemode so that older and/or stupider telnet clients can still get wakeup characters like <ESC> and <CTRL>D to work correctly multiple times on the same line, as in csh "set filec" operations. It also causes CR and LF characters to be read by apps in certain terminal modes consistently, as opposed to returning CR sometimes and LF sometimes, which broke existing apps. The change was shown to fix the problem demonstrated in the FreeBSD telnet client, along with the telnet client in Solaris, SCO, Windows '95 & NT, DEC OSF, NCSA, and others. A similar change was incorporated in the non-crypto version of telnetd. This resolves bin/771 and bin/1037.
* | Sort cross refereces in section SEE ALSO.wosch1997-09-293-9/+9
| |
* | FreeBSD's original passwd helper is needed here.markm1997-09-211-0/+228
| |
* | Bring the FreeBSD changes to the virgin sources.markm1997-09-0733-267/+472
| |
* | FreeBSD specific schanges - mainly religious issues about where to putmarkm1997-09-046-22/+36
| | | | | | | | stuff.
* | This commit was generated by cvs2svn to compensate for changes in r29088,markm1997-09-0450-0/+27374
|\ \ | | | | | | | | | which included commits to RCS files with non-trunk default branches.
| * | Initial import of BSD telnet. This will be used to build the kerberisedmarkm1997-09-0450-0/+27374
| / | | | | | | | | telnet, and after userland diffs have been merged in, will be used to build the non-kerberised sources as well. (See unifdef(1) for details)
* | This commit was generated by cvs2svn to compensate for changes in r29085,markm1997-09-04368-0/+82832
|\ \ | |/ | | | | which included commits to RCS files with non-trunk default branches.
| * Initial import of KTH eBones. This has been cleaned up to only includemarkm1997-09-04368-0/+82832
| | | | | the "core" Kerberos functionality. The rest of the userland will get their own changes later.
* Bring in the Starter files for the contrib-crypto dir.markm1997-05-031-0/+9
I am not going to commit anything to this area for a few days. This is because 1) I want everyone to be DARN sure there is no export of crypto that may get our USA friends it trouble. 2) I have been asked by the folk developing KTH-eBones to hold off for their new release. Worked with: rkw, jdp CVS: CVS:
OpenPOWER on IntegriCloud