summaryrefslogtreecommitdiffstats
path: root/libexec
Commit message (Collapse)AuthorAgeFilesLines
* Truncate the file when opening it with write intent. Otherwise,joerg1996-11-301-2/+2
| | | | | | | | there's a good chance that garbage will remain at the end. Closes PR # bin/2112: tftpd doesn't truncate ... Reviewed by: fenner
* add flag to allow only anonymous ftp loginstorstenb1996-11-302-3/+14
| | | | Reviewed by: pst
* Use LC_TIME=C instead of LC_TIME=ache1996-11-261-2/+2
|
* Back out recent security patch for rexecd. After more careful analysis,pst1996-11-222-28/+15
| | | | | | | | | | it is both uneeded and breaks certain lock-step timing in the rexec protocol. Yes, an attacker can "relay" connections using this trick, but a properly configured firewall that would make this sort of subterfuge necessary in the first place (instead of direct packet spoofing) would also thwart useful attacks based on this.
* Conditionalize setsockopt IP_PORTRANGE to make ftpd portable.pst1996-11-201-6/+11
|
* Truncate argument list to avoid buffer overflows.pst1996-11-201-5/+9
| | | | Cannidate for: 2.1 and 2.2
* Do not attempt to open reverse channel until authentication phase haspst1996-11-192-17/+30
| | | | | | | | | | | | succeeded. Never allow the reverse channel to be to a privileged port. Cannidate for: 2.1 and 2.2 branches Reviewed by: pst (with local cleanups) Submitted by: Cy Shubert <cy@cwsys.cwent.com> Obtained from: Jaeger <jaeger@dhp.com> via BUGTRAQ
* remove newly added reference to ppploginpst1996-11-131-2/+1
|
* Add the >optional< ability to sense PPP link bringups and call an ↵pst1996-11-134-7/+62
| | | | authentication program
* doc/1994: spelling error.phk1996-11-121-2/+2
| | | | Submitted by: David Leonard David Leonard <d@scry.dstc.edu.au>
* Correct the ancient paths here in case someone ever uncomments this again.jkh1996-11-051-3/+3
|
* Comment out the XIDLE extension stuff, it breaks make world on systemstorstenb1996-11-041-5/+5
| | | | with Xinside's CDE installed
* Compile telnetd from eBones instead of secure.markm1996-11-031-3/+3
| | | | 2.2 candidate.
* Give ypxfr the ability to detect the presence of the YP_INTERDOMAINwpaul1996-10-254-7/+91
| | | | | | | | | and YP_SECURE flags so that it can properly add them to newly created maps when needed. This applies only when using the 'standard' method for map transfers. When using rpc.ypxfrd, the whole map is copied verbatim, along with any special entries that may be encoded in it. Also made -Wall a little quieter for ypxfrd_getmap.c.
* If errors occur during the loading of the shared libraries required byjdp1996-10-241-10/+30
| | | | | | | | | | | | | the main program, report them directly from the dynamic linker and die there, rather than returning an error message to crt0.o. This enables the printing of error messages even for old executables, whose version of crt0.o is not able to print them. This fix closes PR bin/1869. The code in crt0.o for printing error messages from the dynamic linker is no longer used, because of this change. But it must remain, for backward compatibility with older dynamic linkers.
* Nuke a couple of useless lines of code from the /etc/netid parsingwpaul1996-10-241-4/+2
| | | | section. (Cut & paste-o.)
* Totally botched ths patch...revert back to Rev 1.7, and request ascrappy1996-10-231-31/+1
| | | | proper context diff from the submitter...
* Last time I trust 'sucess's on a non-context diff...scrappy1996-10-221-22/+23
| | | | Pointed out by: Bill Fenner <fenner@parc.xerox.com>
* Fixes:scrappy1996-10-221-2/+2
| | | | | | | | | | | | When an rsh is denied by rshd because the client is lacking appropriate .rhosts permission, an error message is formatted for syslog which contains the client's hostname. The hostname portion of the message relies on a pointer to a field within gethostbyname()'s internal struct hostent which changes state between when the pointer is initialized and when it is dereferenced to create th e message. Submitted by: skynyrd@opus.cts.cwu.edu
* Fixes:scrappy1996-10-221-1/+30
| | | | | | | | | | | | >Description: /usr/libexec/mail.local runs as root. As such is can fill up a mailbox on a quota'd filesystem, and keep going... Makes quota's almost useless in an ISP environment. Closes: PR#bin/1111 Submitted by: Charles Henrich <henrich@crh.cl.msu.edu>
* Add a couple of reserved port checks: don't talk to either ypservwpaul1996-10-201-5/+24
| | | | | | | | or rpc.ypxfrd processes on remote systems that aren't bound to reserved ports. The servers already do reserved port checks on the clients. Obtained from: scrutinizing the OpenBSD ypxfr sources. (Note that this applies to the ypserv check only; OpenBSD doesn't have an rpc.ypxfrd.)
* Implement alternative strategy if it is impossible to confirmache1996-10-183-22/+9
| | | | | | | password: ask for it, but don't tell that S/key password required. It looks like non-s/key system from outside. Additionally tell that s/key required when it is so for normal case
* Fix two minor typos in the manual page.jdp1996-10-183-9/+9
|
* Oops, fix my previous commit, now tell user his s/key parametersache1996-10-171-3/+4
|
* Don't ever ask for password if it is impossible to confirm itache1996-10-173-9/+22
| | | | | | | It happens if 1) regular passwords not allowed, 2) skey database not activated for given user. Under some rare circumstanes skey_challenge can return empty diagnostic or even previous buffer, fix it.
* Add the search directories from the hints file only the first time it isjdp1996-10-101-2/+5
| | | | | | opened. After that, the directories are already present, and there is no point in adding them again. This doesn't fix any bugs; it's just for efficiency.
* Fix a bug that caused a segmentation violation if dlsym() was calledjdp1996-10-101-2/+2
| | | | with its first argument equal to NULL.
* correct spelling of 'X Window System' (tm)wosch1996-10-061-2/+2
|
* delete doubled words, e.g.: "the the" -> "the"wosch1996-10-051-2/+2
|
* There's no need to 'unsetenv()' unsafe environment variables explicitlynate1996-10-011-6/+1
| | | | | | since rt_readenv() already takes care of not setting unsafe variables. This was part of the changes I submitted to Peter and John during the review which must have gotten missed.
* Sigh, oh well, here's my obligigatory "oops" commit. I don't quite knowpeter1996-10-011-1/+13
| | | | | | | how I managed to get this out of sync, but I did. I guess that's what I get for directly committing from different machines that I was testing on. Pointed out by: Paul Traina <pst@freebsd.org>
* Update to handle new version ld.so.hints and info in executable forpeter1996-10-015-64/+381
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | configurable fallback search paths, as well as new crt interface version. Also: - even faster getenv(), get all environment variable settings in a single pass. - ldd printf-like format specifications - minor code cleanups, one vsprintf -> vsnprintf (harmless) The library search sequence is a little more complete now. Before, it'd search $LD_LIBRARY_PATH (by opendir/readdir/closedir), then read the hints file, then read /usr/lib (again by scanning thr directory). It would then fail if there was no "found" library. Now, it does LD_LIBRARY_PATH and the hints file the same, but then uses a longer fallback path. The -R path is fetched from the executable if specified at build time, the ldconfig path is appended, and /usr/lib is appended to that. Duplicates are suppressed. This means that simply placing a new library in /usr/local/lib will work (the same as it did in /usr/lib) without needing ldconfig -m. It will find it quicker if the ldconfig is run though. Similar changes have been made to the NetBSD ld.so, but ours is rather different now due to John Polstra's speedups and fixes from a while back. The ldd printf-like format support came direct from NetBSD. Reviewed by: nate, jdp
* Update the backends to go with the top-level ld changes. The non-i386peter1996-10-013-11/+34
| | | | | | | changes are for completeness, I don't think they work. There are changes to deal with the new include files. Obtained from: NetBSD (mostly)
* Support for .weak (in addition to the N_INDR stab) for gcc/g++. Also dealpeter1996-10-015-19/+562
| | | | | | | | | | with the -R option and store the path in the dynamic header when specified. The $LD_RUN_PATH environment variable is not checked yet. While here, split up the code a bit more to enable more selective replacing of GPL'ed components that are linked with ld.so with others. Obtained from: NetBSD (mostly, the breakup is my fault)
* add missing comma(s) in .Xr macroswosch1996-09-234-11/+11
|
* add forgotten $Id$wosch1996-09-2290-3/+157
|
* Reviewed by: Bill Fenner <fennder@parc.xerox.com>imp1996-09-222-1/+47
| | | | | | | | | | | Reviewed by: Garrett Wollman <wollman@freebsd.org> Submitted by: Warner Losh <imp@village.org> Close PR bin/1145: Add -s flag to tftpd. This enables the so-called secure mode of tftpd where it chroots to a given directory before allowing access to the files. In addition, it runs as nobody when in this mode. Reviewed a long time ago by Bill and Garrett. Apply my patch from the pr, and close the PR.
* Fix some compilation warnings.pst1996-09-213-3/+3
|
* This should have gone away with the COMPAT_43 cruft. cgetent() is nowbde1996-09-201-339/+0
| | | | used instead of the rudimentary routines here.
* Make the inetd suggestion slightly less confusing.phk1996-09-191-2/+2
|
* Don't use __dead or __pure in user code. They were obfuscationsbde1996-09-141-1/+1
| | | | | | for gcc >= 2.5 and no-ops for gcc >= 2.6. Converted to use __dead2 or __pure2 where it wasn't already done, except in math.h where use of __pure was mostly wrong.
* Use `install -C' instead of lots of shell commands to install ld.sobde1996-09-121-13/+2
| | | | | | | | | as atomically as possible. (Immutable targets can't be renamed without opening a window when neither the source nor the target is immutable. Perhaps there should be a rename_immutable syscall to do this if unsetting the immutable flags would work.)
* bootpd.dump is in /tmppst1996-09-111-3/+3
|
* wrong C bracketing, *blush*...peter1996-09-071-1/+1
|
* zap #include <sgtty.h>, it's not used.peter1996-09-071-1/+0
|
* Another sgtty use bites the dust..peter1996-09-071-5/+4
|
* Fixed DPADD.bde1996-09-053-6/+8
|
* Removed unused `-I.'s from CFLAGS.bde1996-09-041-2/+2
| | | | | | | | "." means the object directory, so it is just confusing to use it when nothing is included from the object directory unless the object directory is also the source directory. It is confusing for "." not to mean the source directory anyway, so used `-I.'s should be replaced by `-I${.OBJDIR}'.
* Unlocalize dateache1996-09-011-2/+2
|
* Add named-xferpeter1996-08-291-1/+2
|
OpenPOWER on IntegriCloud