summaryrefslogtreecommitdiffstats
path: root/libexec/rshd
Commit message (Collapse)AuthorAgeFilesLines
* Remove whitespace at EOL.dd2001-07-151-7/+7
|
* mdoc(7) police: removed HISTORY info from the .Os call.ru2001-07-101-1/+1
|
* Fix the type of the NULL arg to execl()brian2001-07-091-1/+1
| | | | Idea from: Theo de Raadt <deraadt@openbsd.org>
* mdoc(7) police: sort SEE ALSO xrefs (sort -b -f +2 -3 +1 -2).ru2001-07-061-1/+1
|
* Replacement of the old error() routine with errx(3) was premature.markm2001-04-291-17/+39
| | | | | | | | | There are protocol issues to deal with. Bring back this routine (renamed to avoid a library conflict in libssh) and overhaul it for more 21st Century style coding. Pointed out by: bde
* Grrr. Fix a line that was fatfingered out during the cleanup.markm2001-04-291-0/+1
| | | | | Submitted by: bde Pointy hat: markm
* Cleaner method of making PAMable apps static (in the optional case ofmarkm2001-04-281-5/+0
| | | | wanting static apps).
* Allow static linking.markm2001-04-281-0/+5
| | | | Asked for by: BDE
* Clean up the error handling code a bit. There is no need to "roll ourmarkm2001-04-281-89/+26
| | | | | own" error() routine when errx() is available. This resolves a conflict when linking statically.
* mdoc(7) police: cosmetics.ru2001-04-041-4/+5
|
* Add full PAM support for account management and sessions.markm2001-03-273-54/+227
| | | | | | | The PAM_FAIL_CHECK and PAM_END macros in su.c came from the util-linux package's PAM patches to the BSD login.c Submitted by: "David J. MacKenzie" <djm@web.us.uu.net>
* - Backout botched attempt to intoduce MANSECT feature.ru2001-03-261-0/+1
| | | | - MAN[1-9] -> MAN.
* Set the default manual section for libexec/ to 8.ru2001-03-201-1/+0
|
* Fix typo: compatability -> compatibility.asmodai2001-02-061-1/+1
| | | | Compatability is not an existing english word.
* Structure the options listing to be more standard.nik2001-02-021-16/+21
| | | | | | | | The PR also included documentation for other options, but upon inspection of the source these options aren't used. PR: docs/24149 Submitted by: Jesse Monroy, Jr. <opentrax@email.com>
* mdoc(7) police: split punctuation characters + misc fixes.ru2001-02-011-3/+1
|
* Whitespace-only to sync with -stable.ru2000-12-071-2/+0
|
* mdoc(7) police: use the new features of the Nm macro.ru2000-11-201-2/+2
|
* remove trailing periods from SEE ALSO.ben2000-11-151-1/+1
|
* Removed broken PAM support from rshd(8) and rlogind(8). rshd doesru2000-10-122-28/+1
| | | | | | | not allocate a pty(4) so it is not suitable at all for interactive PAM modules. rlogind calls login(1) which is already PAM enabled. Approved by: markm
* Plug the hole where rshd would bypass a proper .rhosts check if thebsd2000-07-051-3/+2
| | | | | | password was empty. Reviewed by: Warner Losh <imp@freebsd.org>
* Remove dead debug code.asmodai2000-04-291-8/+0
| | | | This also removes a dependency/reference on COMPAT_43.
* Use libcrypto instead of libdes.markm2000-02-241-1/+1
|
* sync iruserok() extension API with other BSDsshin2000-02-011-8/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some of rcmd related function is need to be updated to support IPv6. Some of them are already updated as standard document. But there is also several de-facto functions and they are not listed in standard documents. They are, iruserok() (used by rlogind, rshd) ruserok() (used by kerberos, etc) KAME package updated those functions in original way. iruserok_af() ruserok_af() But recently there was discussion on IETF IPng mailing list about how to sync those API, and it is decided, -Those function is not standard and not documented. -But let BSDs sync their API as de-facto. And after some discussion, it is announced that -add update to iruserok() as iruserok_sa() -no ruserok() API change(it is only updated internaly) So I sync those API before 4.0 is released. The changes are, -prototype changes -ruserok() internal update (use iruserok_sa() inside) -removal of ruserok_af() -change iruserok_af() as static functioin, and also prefix the name with __. -add iruserok_sa() (Just call __iruserok_af() inside) -adding flag AI_ALL to getipnodebyaddr() called from __icheckhost(). This is necessary to support IPv4 communication via AF_INET6 socket could be correctly authenticated via iruserok_sa() -irusreok_af() call is replaced to iruserok_sa() call in rlogind, and rshd. Approved by: jkh
* Fix rshd coredump when AF_INET socket is used.shin2000-01-281-1/+1
| | | | Confirmed by: F. Heinrichmeyer <fritz.heinrichmeyer@fernuni-hagen.de>
* several tcp apps IPv6 updateshin2000-01-253-24/+64
| | | | | | | | | | | | -inetd -rshd -rlogind -telnetd -rsh -rlogin Reviewed by: freebsd-arch, cvs-committers Obtained from: KAME project
* . mdoc(7)'fyphantom2000-01-071-4/+12
| | | | | | | | . add Xrs to hosts.equiv(5), auth.conf(5), services(5) to some pages . sort Xrs in SEE ALSO sections Patches based on PR: docs/15680 Submitted by: Christian Weisgerber <naddy@mips.rhein-neckar.de>
* Fix for new Kerberos4. Make a fist cut at PAM-ising while I'm here.markm1999-09-192-153/+66
|
* Fix more Common Error brokenness.markm1999-09-061-2/+2
|
* $Id$ -> $FreeBSD$peter1999-08-283-3/+3
|
* Ensure that things returned by gethostname() andbrian1999-04-071-6/+5
| | | | | | | | | | friends are terminated and allow for a maximum host name length of MAXHOSTNAMELEN - 1. Put parenthesis around sizeof args. Make some variables static. Fix telnetd -u (broken by my last commit) Prompted by: bde
* Use realhostname() rather than various combinations ofbrian1999-04-061-42/+14
| | | | | | gethostbyaddr() & gethostbyname(). Remove brokeness in ftpd for hosts of MAXHOSTNAMELEN length.
* Oops, I missed a few more /etc/nologin references yesterday. It appearsasami1999-01-121-3/+3
| | | | | | my check of the tree was incomplete. Sorry guys. Reported by: Ben Smithurst <ben@scientia.demon.co.uk>
* As previously threatened, clean up the rshd -a option and make it defaultpeter1998-12-162-64/+29
| | | | | | | | | | | | | | | | on rshd and rlogind. However, note that: 1: rshd used to drop a connection with -a if the hostname != ip address. This is unneeded, because iruserok() does it's own checking. It was also wrong if .rhosts had an explicit IP address in it, connections would be dropped from that host solely because the DNS was mismatched even though it was explicitly intended to work by IP address. 2: rlogind and rshd check the hostname mappings by default now because that is what goes into the utmp/wtmp and logs. If the hostname != ip address, then it uses the IP address for logging/utmp/wtmp purposes. There isn't much point logging ficticious hostnames. 3: rshd -a is now accepted (but ignored) for compatability. If you really want to make life miserable for people with bad reverse DNS, use tcpd in paranoid mode (which is questionable anyway, given DNS ttl tweaking).
* Fixed long line in previous commit.bde1998-12-031-2/+3
|
* Added a -D option to turn on TCP_NODELAY.dg1998-12-012-5/+18
|
* Add -lcrypt when building kerberos.jb1998-09-051-3/+3
|
* Fix LIBDIR (for aout/ELF).markm1998-08-061-2/+2
|
* Replace _exit() with exit()rnordier1998-05-051-2/+2
| | | | Pointed out by: Nathan Torkington <gnat@prometheus.frii.com> PR 5585
* Typo.charnier1997-12-181-2/+2
|
* No \n in syslog() strings. Add man page to Xrefs. Change null byte to NUL byte.charnier1997-12-022-23/+37
|
* Changes for the new KTH Kerberos4.markm1997-09-282-16/+21
| | | | Also make -Wall a bit quieter
* Rshd print to much information if a user does not exists.wosch1997-07-182-8/+7
|
* login_getclass() -> login_getpwclass().davidn1997-05-101-2/+2
|
* Added login.conf support.davidn1997-04-233-8/+71
|
* Be a bit more careful about what port number we are using for thepeter1997-03-291-3/+7
| | | | | second socket. If we're going to check for reserved ports, we should do it properly.
* compare return value from getopt against -1 rather than EOF, per the finalimp1997-03-281-2/+2
| | | | posix standard on the topic.
* Revert $FreeBSD$ to $Id$peter1997-02-223-3/+3
|
* Some patches for source routed packets from OpenBSD.imp1997-02-091-13/+16
| | | | | | | | | | | | | | | Rev 1.13 deraadt: do not warn about valid options; invalid options correctly quit Rev 1.12 deraadt: need not clear options since bad ones cause exit; provos@ws1.physnet.uni-hamburg.de Rev 1.11 deraadt: IPOPT_LSRR/IPOPT_SSRR must exit() due to tcp sequencing; pointed out by provos@wserver.physnet.uni-hamburg.de. also another 1-char buffer overflow. Reviewed by: Peter Wemm Obtained from: OpenSBD
* Make even more copies of hostnames obtained by inet_ntoa(). iruserok()joerg1997-01-271-5/+18
| | | | | could still clobber the static storage, yielding an error message with a wrong hostname.
OpenPOWER on IntegriCloud