summaryrefslogtreecommitdiffstats
path: root/libexec/rshd
Commit message (Collapse)AuthorAgeFilesLines
* Ensure that things returned by gethostname() andbrian1999-04-071-6/+5
| | | | | | | | | | friends are terminated and allow for a maximum host name length of MAXHOSTNAMELEN - 1. Put parenthesis around sizeof args. Make some variables static. Fix telnetd -u (broken by my last commit) Prompted by: bde
* Use realhostname() rather than various combinations ofbrian1999-04-061-42/+14
| | | | | | gethostbyaddr() & gethostbyname(). Remove brokeness in ftpd for hosts of MAXHOSTNAMELEN length.
* Oops, I missed a few more /etc/nologin references yesterday. It appearsasami1999-01-121-3/+3
| | | | | | my check of the tree was incomplete. Sorry guys. Reported by: Ben Smithurst <ben@scientia.demon.co.uk>
* As previously threatened, clean up the rshd -a option and make it defaultpeter1998-12-162-64/+29
| | | | | | | | | | | | | | | | on rshd and rlogind. However, note that: 1: rshd used to drop a connection with -a if the hostname != ip address. This is unneeded, because iruserok() does it's own checking. It was also wrong if .rhosts had an explicit IP address in it, connections would be dropped from that host solely because the DNS was mismatched even though it was explicitly intended to work by IP address. 2: rlogind and rshd check the hostname mappings by default now because that is what goes into the utmp/wtmp and logs. If the hostname != ip address, then it uses the IP address for logging/utmp/wtmp purposes. There isn't much point logging ficticious hostnames. 3: rshd -a is now accepted (but ignored) for compatability. If you really want to make life miserable for people with bad reverse DNS, use tcpd in paranoid mode (which is questionable anyway, given DNS ttl tweaking).
* Fixed long line in previous commit.bde1998-12-031-2/+3
|
* Added a -D option to turn on TCP_NODELAY.dg1998-12-012-5/+18
|
* Add -lcrypt when building kerberos.jb1998-09-051-3/+3
|
* Fix LIBDIR (for aout/ELF).markm1998-08-061-2/+2
|
* Replace _exit() with exit()rnordier1998-05-051-2/+2
| | | | Pointed out by: Nathan Torkington <gnat@prometheus.frii.com> PR 5585
* Typo.charnier1997-12-181-2/+2
|
* No \n in syslog() strings. Add man page to Xrefs. Change null byte to NUL byte.charnier1997-12-022-23/+37
|
* Changes for the new KTH Kerberos4.markm1997-09-282-16/+21
| | | | Also make -Wall a bit quieter
* Rshd print to much information if a user does not exists.wosch1997-07-182-8/+7
|
* login_getclass() -> login_getpwclass().davidn1997-05-101-2/+2
|
* Added login.conf support.davidn1997-04-233-8/+71
|
* Be a bit more careful about what port number we are using for thepeter1997-03-291-3/+7
| | | | | second socket. If we're going to check for reserved ports, we should do it properly.
* compare return value from getopt against -1 rather than EOF, per the finalimp1997-03-281-2/+2
| | | | posix standard on the topic.
* Revert $FreeBSD$ to $Id$peter1997-02-223-3/+3
|
* Some patches for source routed packets from OpenBSD.imp1997-02-091-13/+16
| | | | | | | | | | | | | | | Rev 1.13 deraadt: do not warn about valid options; invalid options correctly quit Rev 1.12 deraadt: need not clear options since bad ones cause exit; provos@ws1.physnet.uni-hamburg.de Rev 1.11 deraadt: IPOPT_LSRR/IPOPT_SSRR must exit() due to tcp sequencing; pointed out by provos@wserver.physnet.uni-hamburg.de. also another 1-char buffer overflow. Reviewed by: Peter Wemm Obtained from: OpenSBD
* Make even more copies of hostnames obtained by inet_ntoa(). iruserok()joerg1997-01-271-5/+18
| | | | | could still clobber the static storage, yielding an error message with a wrong hostname.
* Make the long-awaited change from $Id$ to $FreeBSD$jkh1997-01-143-3/+3
| | | | | | | | This will make a number of things easier in the future, as well as (finally!) avoiding the Id-smashing problem which has plagued developers for so long. Boy, I'm glad we're not using sup anymore. This update would have been insane otherwise.
* Sort cross references.wosch1997-01-131-4/+4
|
* Fixes:scrappy1996-10-221-2/+2
| | | | | | | | | | | | When an rsh is denied by rshd because the client is lacking appropriate .rhosts permission, an error message is formatted for syslog which contains the client's hostname. The hostname portion of the message relies on a pointer to a field within gethostbyname()'s internal struct hostent which changes state between when the pointer is initialized and when it is dereferenced to create th e message. Submitted by: skynyrd@opus.cts.cwu.edu
* add forgotten $Id$wosch1996-09-222-0/+3
|
* Fix some compilation warnings.pst1996-09-211-1/+1
|
* consistent presentation of emphasisadam1996-07-231-1/+1
|
* #include <kerberosIV/des.h> -> #include <des.h>markm1996-02-111-1/+1
|
* Rename des_set_key -> des_set_key_krb. (libdes conflict)markm1996-02-031-1/+1
|
* Section FILES and SEE ALSO completedwosch1996-01-281-1/+18
| | | | Section FILES and SEE ALSO completed
* Add missing & in des_set_key argumentache1995-11-191-1/+1
|
* Move the setlogin() call a little earlier.. It was being done in the childpeter1995-11-121-4/+5
| | | | | process - which would be no longer allowed if the setlogin() changes go through. Now the parent (the session leader, when started by inetd) does it.
* Check for expired passwords before allowing access to the system.mpp1995-08-281-2/+3
|
* Add distribution=krb for P-HKwollman1994-11-201-1/+2
|
* First level of changes for bringing in eBones (kerberos).csgr1994-09-291-6/+10
| | | | | | | | - Get rid of inverse logic (NOKERBEROS and NOEBONES) in src/makefile, and replace with MAKE_KERBEROS and MAKE_EBONES. (Far fewer contortions, and both default to off.) IF YOU WANT KERBEROS, YOU HAVE TO EXPLICITLY DEFINE ONE OF THESE. - Make Makefiles kerberos-aware.
* Update to new make macros and disable Kerberos because we haven't got itwollman1994-08-051-5/+5
| | | | set up right yet.
* BSD 4.4 Lite Libexec Sourcesrgrimes1994-05-273-0/+1003
OpenPOWER on IntegriCloud