summaryrefslogtreecommitdiffstats
path: root/libexec/rexecd
Commit message (Collapse)AuthorAgeFilesLines
* $Id$ -> $FreeBSD$peter1999-08-283-3/+3
|
* Ensure that things returned by gethostname() andbrian1999-04-071-3/+3
| | | | | | | | | | friends are terminated and allow for a maximum host name length of MAXHOSTNAMELEN - 1. Put parenthesis around sizeof args. Make some variables static. Fix telnetd -u (broken by my last commit) Prompted by: bde
* Link with libutilbrian1999-04-061-3/+3
|
* Use realhostname() rather than various combinations ofbrian1999-04-061-6/+4
| | | | | | gethostbyaddr() & gethostbyname(). Remove brokeness in ftpd for hosts of MAXHOSTNAMELEN length.
* Use err(3). -Wall cleaning. Use Pa for file names and add section in Xrefs.charnier1997-11-262-23/+29
|
* Julian A's fix. Do chdir as user rather than as root. Fixes a minor NFSimp1997-03-241-8/+8
| | | | | | | | | compatibility problem at the same time. Some buffer made large enough for worst case hostname. fixes PR 2593. Reviewed by: Dan Cross and maybe others
* Revert $FreeBSD$ to $Id$peter1997-02-223-3/+3
|
* Buffer Overflow from OpenBSDimp1997-02-091-1/+1
| | | | | | rev 1.7 deraadt: buf oflow Obtained from: OpenBSD
* Make the long-awaited change from $Id$ to $FreeBSD$jkh1997-01-143-3/+3
| | | | | | | | This will make a number of things easier in the future, as well as (finally!) avoiding the Id-smashing problem which has plagued developers for so long. Boy, I'm glad we're not using sup anymore. This update would have been insane otherwise.
* Back out recent security patch for rexecd. After more careful analysis,pst1996-11-222-28/+15
| | | | | | | | | | it is both uneeded and breaks certain lock-step timing in the rexec protocol. Yes, an attacker can "relay" connections using this trick, but a properly configured firewall that would make this sort of subterfuge necessary in the first place (instead of direct packet spoofing) would also thwart useful attacks based on this.
* Do not attempt to open reverse channel until authentication phase haspst1996-11-192-17/+30
| | | | | | | | | | | | succeeded. Never allow the reverse channel to be to a privileged port. Cannidate for: 2.1 and 2.2 branches Reviewed by: pst (with local cleanups) Submitted by: Cy Shubert <cy@cwsys.cwent.com> Obtained from: Jaeger <jaeger@dhp.com> via BUGTRAQ
* add forgotten $Id$wosch1996-09-223-0/+4
|
* Check for expired passwords before allowing access to the system.mpp1995-08-281-1/+2
|
* rexecd was not calling "setlogin()" when it should have. This was causingpeter1995-07-291-0/+2
| | | | | | getlogin() to return wrong answers (eg: "root"). Reviewed by: davidg Obtained from: James Jegers, for NetBSD, slightly reworked by me.
* Remove trailing whitespace.rgrimes1995-05-301-1/+1
|
* Don't rely on the shared library bringing in libmd, do it explicitly.nate1995-03-181-2/+2
| | | | | | | Change the library order so libcrypt is the last library in the list. libskey contains references to _crypt and can't resolve it unless -lcrypt occurs after it in the link command. This only occurs when linking statically.
* make rexecd link against skeyaccess, not authfilepst1994-09-301-2/+2
|
* Tighen up rexecd(8) security (see manual page for details).pst1994-09-292-16/+58
| | | | | | | Rexecd is a crock, it never should have been written, however make it so that people who have a need to run it don't hurt themselves so badly. Obtained from: Ideas obtained from logdaemon 4.3 from Wietse Venema
* Add skey supportguido1994-08-212-2/+13
| | | | | Reviewed by: Submitted by: guido
* LDADD= -lcryptcsgr1994-08-201-0/+3
| | | | Submitted by: Geoff
* Update to new make macros and disable Kerberos because we haven't got itwollman1994-08-051-1/+1
| | | | set up right yet.
* BSD 4.4 Lite Libexec Sourcesrgrimes1994-05-273-0/+413
OpenPOWER on IntegriCloud