summaryrefslogtreecommitdiffstats
path: root/sbin
Commit message (Collapse)AuthorAgeFilesLines
* Print out ICMP errors that are responses to our own packets by default.fenner1996-08-202-20/+69
| | | | | | | | Turn this behavior off using '-Q'. This makes '-v' useless other than as an ICMP-sniffer, which tcpdump is better at anyway. Print out another couple of ICMP messages, and fix the printing of the original packet (mostly byte order problems).
* a header file for zopen.3wosch1996-08-202-1/+5
| | | | Pointed out by: Philippe Charnier <charnier@lirmm.fr>
* back out a part of the previous patch that garrett objected to..julian1996-08-192-7/+2
|
* Submitted by: Archie@whistle.comjulian1996-08-133-3/+13
| | | | | | if making a interface route, and it's a P2P link, then also automatically lable it as an llinfo entry so that gated and friends don't clobber it..
* Completely rewrite handling of protocol field for firewalls, things arepst1996-08-132-130/+72
| | | | | | | | | | | | | | | | | now completely consistent across all IP protocols and should be quite a bit faster. Use getprotoname() extensively, performed minor cleanups of admin utility. The admin utility could use a good kick in the pants. Basicly, these were the minimal changes I could make to the code to get it up to tollerable shape. There will be some future commits to clean up the basic architecture of the firewall code, and if I'm feeling ambitious, I may pull in changes like NAT from Linux and make the firewall hooks comletely generic so that a user can either load the ipfw module or the ipfilter module (cf Darren Reed). Discussed with: fenner & alex
* Attempt to unlink any stale .o files before relocating code.pst1996-08-131-2/+3
| | | | | | Abort if a file is still present, and make output file mode 0600. Reviewed by: bde
* Cover a potential buffer overrun problempst1996-08-131-2/+2
|
* Fix tcp/udp port rangespst1996-08-131-3/+3
|
* Reviewed by: julianjulian1996-08-093-2/+46
| | | | | | | | | | | | | | | | | | Submitted by: archie@whistle.com This patch allows true interface routing to be controlled from the command line.. you can now do: route add default -interface ppp0 even if you have no clue what the address at the other end is.. this is part of a set of changes that allow true "unnumbered links" such as netcom run between their sites.. In practice you should assign the address from one of your ethernet interfaces to the local side of the P2P link so that IP doesn't say that the packet comes from 255.255.255.255, but there is no need whatsoever to assign an address of any kind to the remote end of the link.. useful for frame relay links etc also.
* add nextboot by defaultjulian1996-08-091-2/+2
| | | | its's proven to be quite reliable.
* slight man page additions re: deficienciesjulian1996-08-092-0/+10
|
* Drop setuid ASAP, to minimize code executed as root.fenner1996-08-091-3/+17
| | | | Reviewed by: pst
* Submitted by: archie@whistle.comjulian1996-08-072-14/+12
| | | | slight cleanups
* Filter by IP protocol.alex1996-08-052-28/+72
| | | | | | Submitted by: fenner (with modifications by me) Bring in the interface unit wildcard flag fix from rev 1.15.4.8.
* Add relevant files to the FILES sectionmarkm1996-08-031-0/+5
| | | | Submitted by: Julian H Stacey
* Document that the major and minor numbers are parsed by strtoul().bde1996-07-301-2/+3
|
* Use strtoul() more carefully.bde1996-07-301-12/+34
| | | | | | | | Check that the major and minor are valid. Don't print `.' at the end of error messages. Fixed all warnings from "cc -Wall".
* Limit the risk of `buf' overrun in ping.c when printing hostnames.peter1996-07-281-2/+3
| | | | | | | | | Note, this is not really a security risk, because the buffer in question is a static variable in the data segment and not on the stack, and hence cannot subert the flow of execution in any way. About the worst case was that if you pinged a long hostname, ping could coredump. Pointed out on: bugtraq (listserv@netspace.org)
* Finally use strtoul() to convert the major an minor numbers, sojoerg1996-07-272-2/+23
| | | | | proper error-checking can be done, and octal and hexadecimal numbers are allowed.
* Submitted by: archie@whistle.comjulian1996-07-231-2/+3
| | | | slight cleanups on yesterday's patches
* When running 'rrestore foo', you get a segmentation fault becausejkh1996-07-231-1/+3
| | | | | | | | the obsolete() function to convert dump-style args to getopt-style args doesn't check to see that 'f' really has an argument following the option string in argv[1]. Submitted-By: jmacd
* mount_ext2fs somehow got a stray mntopts.h, which was out of sync withpeter1996-07-232-74/+2
| | | | | | | the real ../mount/getmntopts.c and ../mount/mntopts.h Closes PR#1419 Submitted by: rhh@stealth.ct.picker.com (Randall Hopper)
* Submitted by: archie@whistle.comjulian1996-07-232-23/+71
| | | | appletalk cleanups
* I have added a new option -p to the mount command. This wasjkh1996-07-214-16/+146
| | | | | | | | | | | | | | | | | | | | inspired by SunOS version of mount which uses option -p to indicate that the mount information should be printed in fstab format. This is a neat way to create a new fstab file to use later when one has modified the mount points or mount options or added or removed mount some mount points. You just type mount -p > /etc/fstab.new and there is your new fstab file ready to be used though you will of course have to add any necessary noauto flags manually. [Committers note: This also seems to do the wrong thing for AMD mounts, but in the more average case this is a nifty feature nonetheless and one can always edit the bogus entries out] Submitted-By: Jukka Ukkonen <jau@jau.csc.fi>
* Grammar fix described by wollman in response to PR 1363.alex1996-07-141-1/+1
|
* General -Wall warning cleanup, part I.jkh1996-07-121-3/+5
| | | | Submitted-By: Kent Vander Velden <graphix@iastate.edu>
* Adding changes to ipfw and the kernel to support ip packet diversion..julian1996-07-102-32/+80
| | | | | | This stuff should not be too destructive if the IPDIVERT is not compiled in.. be aware that this changes the size of the ip_fw struct so ipfw needs to be recompiled to use it.. more changes coming to clean this up.
* Now that we have a manpage, don't have the 'clean' target be a NO-OP.nate1996-07-101-1/+1
|
* changes to allow route to manipulate appletalk routes.julian1996-07-093-3/+61
|
* Submitted by: Archie@whistle.comjulian1996-07-092-2/+60
| | | | | Obtained from: Whistle Communications patches to allow ifconfig to work with appletalk addresses etc.
* oops, make the magic number match that used in the bootblock..julian1996-07-092-4/+4
| | | | I guess we should have a single place for this??
* Obtained from: Whistle Communicationsjulian1996-07-096-0/+656
| | | | | | | control program to control the facility of the bootblocks to fetch a default bootstring from a fixed location on the disk. See the manpage for more info.
* Document that suid wrapper like suidperl(1) break option 'nosuid'.wosch1996-07-022-0/+8
|
* Correct definition of 'established' keyword.alex1996-07-021-1/+1
|
* Formatting fixes for 'in' and 'out' while listing.alex1996-06-291-22/+32
| | | | | | | Prevent ALL protocol from being used with port specifications. Allow 'via' keyword at any point in the options list. Disallow multiple 'via' specifications.
* Fix port specification syntax.alex1996-06-291-1/+1
| | | | Submitted by: nate
* Fix address mask calculation when using ':' syntax. Allow a maskalex1996-06-231-13/+23
| | | | | | | | of /0 to have the desired effect. Normalize IP addresses that won't match a given mask (i.e. 1.2.3.4/24 becomes 1.2.3.0/24). Submitted by R. Bezuidenhout <rbezuide@mikom.csir.co.za> Code formatting and "frag" display fixes.
* Fix a couple of bogus casts to off_t that caused dumpfs to lseek negativepeter1996-06-231-4/+4
| | | | on filesystems > 2GB (which causes the disk slice code to call Debugger!!)
* Code clean up. Prototypes, parentheses around assignments used inalex1996-06-212-68/+136
| | | | | | if statements, #if 0 some unused code, use off_t in calls to read/ write_disk, fix a printf format, remove unused variables, and #include necessary files.
* Add #include <err.h>.alex1996-06-191-0/+1
|
* Set the program name before trying to use it.alex1996-06-181-3/+3
| | | | Found by: Aage Robekk <aagero@aage.priv.no>
* Moved initialization of defaults for the label for the whole disk frombde1996-06-172-20/+8
| | | | | | | disklabel(8) to the kernel (dsopen()). Drivers should initialize the hardware values (rpm, interleave, skews). Drivers currently don't do this, but it usually doesn't matter since rotational position stuff is normally disabled.
* Fix a typo in the view accounting records example.alex1996-06-151-1/+1
|
* Bring the man page more into line with reality.alex1996-06-151-259/+94
|
* Our kernel is not called /netbsd. ;)asami1996-06-141-4/+4
| | | | Submitted by: "Philippe Charnier" <charnier@lirmm.fr>
* Big sweep over ipfw, picking up where Poul left off:alex1996-06-091-23/+197
| | | | | | | | | | | | | | | - Filter based on ICMP types. - Accept interface wildcards (e.g. ppp*). - Resolve service names with the -N option. - Accept host names in 'from' and 'to' specifications - Display chain entry time stamps with the -t option. - Added URG to tcpflags. - Print usage if an unknown tcpflag is used. - Ability to zero individual accounting entries. - Clarify usage of port ranges. - Misc code cleanup. Closes PRs: 1193, 1220, and 1266.
* Return make_union, s-bit removedache1996-05-191-2/+1
|
* Disable setuid permission for mount_union(1).pst1996-05-172-6/+0
| | | | | | | | | This covers the security problem descibed in SA-96:10 and Jeff says that when we upgrade to Lite2 (which fixes this problem), mount no longer needs to be setuid, so we'll never be going back. Submitted by: hsu Reviewed by: pst
* Large security hole in mount_union, the underlying filesystem for which doesn'tjkh1996-05-171-1/+2
| | | | | even work. Until pst wakes up, best action deemed to be the simple disabling of this command.
* Accept mount(8)'s calling convention of passing just the filesystem typewollman1996-05-142-9/+23
| | | | as argv[0].
OpenPOWER on IntegriCloud