summaryrefslogtreecommitdiffstats
path: root/etc/security
Commit message (Collapse)AuthorAgeFilesLines
* Changed ipfw grep string: reject rules are now listed as deny, reset,alex1997-09-261-2/+2
| | | | or unreach.
* Remove the annoying "cmp: EOF" message whenbrian1997-08-011-2/+2
| | | | dmesg changes.
* Remove the -g option from the "find ... | xargs -ls ..." line.mpp1997-03-031-2/+2
| | | | The -g option to ls has been depreciated.
* When looking for setuid files, call find with -print0 and xargs with -0.mpp1997-02-231-4/+4
| | | | | | | | | | | | | | This allows find to pass files with "illegal" characters to xargs in a safe manner. Note: due to the manner in which the file names are now passed between find and xargs, the files are now sorted differently than before. The first /etc/security run after installing this change may result in a lot of output when nothing did in fact change. Closes PR# 1910. 2.2 candidate.
* Revert $FreeBSD$ to $Id$peter1997-02-231-1/+1
|
* Make the long-awaited change from $Id$ to $FreeBSD$jkh1997-01-141-1/+1
| | | | | | | | This will make a number of things easier in the future, as well as (finally!) avoiding the Id-smashing problem which has plagued developers for so long. Boy, I'm glad we're not using sup anymore. This update would have been insane otherwise.
* Whoops, update the comment field while we're at it. (I *hate* the linknate1996-10-121-2/+2
| | | | to freefall!)
* In the same manner that we log the ipfw entries, log the kernel lognate1996-10-121-1/+17
| | | | messages using the output of dmesg.
* Move intermediary file generation to /var partitionpst1996-07-311-2/+2
|
* If ipfw is enabled, display packet/byte counters for reject/deny rulesalex1996-06-301-4/+27
| | | | | | that have changed since the last security check. Make the spacing between sections more consistent.
* If a local ufs filesystem is mounted "nosuid", dont scan it as part ofpeter1996-06-301-2/+2
| | | | | | | the /etc/security setuid checks. This is useful for things like large news spool partitions that dont have executables. Reviewed by: pst
* Exclude devices. Character ones modes changes often and proper namesache1996-04-191-9/+4
| | | | guessing involves too much AI.
* Use -X to be xargs-friendlyache1996-04-181-3/+11
| | | | | | Check devices too, follow original BSD intention Find only executable files with s-bits, close PR bin/1022 Reset locale to C to have equal results in any case
* If no $LOG/setuid.today exists (f.e. first time to run), putache1995-09-151-1/+5
| | | | warning and make it, all following commands fails in old case
* Use -b for diff, ls produce different number of spacesache1995-05-271-2/+2
|
* Fix a bug, that someone has introduced into /etc/security. It has no longerats1995-01-141-2/+2
| | | | found SUID files, only SGID files. The find has missed some parantheses.
* From: rich@lamprey.UTMB.EDU (Rich Murphey)rgrimes1994-01-221-14/+3
| | | | | | | | | | | | | | | | Subject: Re: daily insecurity output (fwd) |From: rgrimes@agora.rain.com (Rodney Grimes) | |This is from the new /etc/security script. I no longer get the segmentation |violation, but now the arg list is too long, some /bin/sh program want to |fix the current /etc/security ls command so that it is a pipe insteal of |a back quoted arg? | |> checking setuid files and devices: |> /etc/security: ls: argument list too long This uses xargs instead. My slip line's down so I can't check it in at the moment. Rich
* When listing all suid and sgid files list the file itself rather thanrich1993-12-151-2/+2
| | | | directorty contents.
* Reworked the search for suid sgid programs to be more like the original andrgrimes1993-10-251-10/+8
| | | | | only to run find on local file systems. It now works and no longer gets the error from sort
* Fixed so that it scans for set uid/gid files. From Rich Murphy and NetBSD,rgrimes1993-09-061-12/+28
| | | | plus some tid bits from me.
* Fixed daily so that it no longer does accounting since FreeBSD does notrgrimes1993-08-071-0/+2
| | | | | yet have the accounting stuff in it. Disabled ncheck search in security due to missing ncheck.
* Initial import of 386BSD 0.1 othersrc/etcrgrimes1993-06-201-0/+36
OpenPOWER on IntegriCloud