summaryrefslogtreecommitdiffstats
path: root/usr.bin/login
Commit message (Collapse)AuthorAgeFilesLines
* remove __Pimp2002-03-223-9/+9
|
* Simple fix so the 'LOGIN FAILURE' message send to syslog will includegad2002-03-121-1/+0
| | | | | | | the correct userid, instead of random garbage. This bug does not exist in -stable. Reviewed by: freebsd-audit
* Switch to OpenPAM. Bump library version. Modules are now versioned, sodes2002-03-051-3/+3
| | | | | | | | | applications linked with Linux-PAM will still work. Remove pam_get_pass(); OpenPAM has pam_get_authtok(). Remove pam_prompt(); OpenPAM has pam_{,v}{error,info,prompt}(). Remove pam_set_item(3) man page as OpenPAM has its own. Sponsored by: DARPA, NAI Labs
* Remove NO_WERRORs and WARNS=n's. To be revisited after GCC3.markm2002-02-081-2/+0
|
* Still with asbestos longjohns on, completely PAMify login(1) and removedes2002-01-304-552/+392
| | | | | | code made redundant by various PAM modules (primarily pam_unix(8)). Sponsored by: DARPA, NAI Labs
* Back out rev 1.78, which is incorrect now that the PAM modules have beendes2002-01-291-3/+2
| | | | fixed to accept a NULL PAM_RHOST.
* When running on a local terminal, set PAM_RHOST to the local hostname.des2002-01-211-2/+10
| | | | Sponsored by: DARPA, NAI Labs
* Back out PAM_CRED_ERR additionache2002-01-191-1/+0
|
* Add PAM_CRED_ERR as valid failure caseache2002-01-191-0/+1
|
* Style improvements recommended by Bruce as a follow up to somedwmalone2001-12-103-11/+12
| | | | | | | | of the recent WARNS commits. The idea is: 1) FreeBSD id tags should follow vendor tags. 2) Vendor tags should not be compiled (though copyrights probably should). 3) There should be no blank line between including cdefs and __FBSDIF.
* Use __FBSDID(). Also do a bit of cosmetic #if and header-ordermarkm2001-12-023-13/+13
| | | | cleaning-up.
* Sort includes.markm2001-12-022-7/+7
|
* Style fixups.markm2001-12-013-37/+38
| | | | | | | Sort function declarations, includes. Make consistent WRT use of _P() macro (ugh!) Inspired by: bde
* Work around world breakage in previous commit. The bug is inbde2001-12-011-2/+2
| | | | | | | | | <security/pam_misc.h>. It declares a function parameter named 'send', so nothing that includes both <unistd.h> (which declares send(2)) and <security/pam_misc.h> be compiled with WARNS=2 unless NO_WERRROR is set. Fixed order of WARNS.
* WARNS=2 fixes.markm2001-12-015-63/+107
| | | | Reviewed by: bde (a while back)
* o Add support for a 'nocheckmail' capability, which (if true) preventsrwatson2001-11-161-9/+12
| | | | | | | | | the 'You have mail.' check. This is useful for sites that rely on remote mail access, rather than a local mail spool. Due to the behavior of login_getcapbool(), the negated form is required so as to have appropriate results. o This behavior may have to be independently added to sshd due to redundant implementation.
* o Restore previous inconsistent style to login_fbtab.c, following itsrwatson2001-10-281-22/+22
| | | | | | | modification to add glob support. The submitted patch used a degraded form of KNF. Reviewed by: bde
* o Modify format of /etc/fbtab to accept glob matching patterns forrwatson2001-10-251-35/+23
| | | | | | | | | | | | | | target devices, not just individual devices and directories. This permits activities such as: ttyv0 0600 /dev/dsp* Whereas previously that was not supported. This change is backwards-compatible, except where device names included globbing characters, which is not the case for any devices listed in MAKEDEV. Submitted by: Maxime Henrion <mux@qualys.com> MFC after: 3 weeks
* o Modify NFS rights comment to note that the early credential changesrwatson2001-09-151-1/+7
| | | | | | to test for a home directory don't set up the additional groups, and as such may limit users conservatively. This does not affect the eventual credentials selected.
* Set BINOWN=root explicitly for setuid root binaries.ru2001-09-131-0/+1
| | | | | | This is not "useless", as one may have non-default setting for BINOWN in make.conf, and we still want these to be installed setuid root in this case.
* mdoc(7) police: tighten label width.ru2001-09-041-1/+1
|
* Like su(1), make PAM use mandatory. Remove parts of the authenticationmarkm2001-08-305-82/+7
| | | | logic that are handled by PAM. Fix documentation to reflect this.
* Fix some bogus strncpy(3) to strlcpy(3) changes I made in the previousmike2001-08-131-6/+6
| | | | | | | revision. <utmp.h> structures don't leave room for a NUL character. Also fix "UNKNOWN" which should have just been UNKNOWN. Pointed out by: bde
* o Replace occurrences of strncpy(3) with strlcpy(3); most ofmike2001-08-121-23/+47
| | | | | | | | | | | | | the uses of it were wrong anyway. o Always check for NULL returns on strdup(3). o Fix a possible buffer overflow in strcpy(3). o Fix a format string vulnerability. o t->ty_type in stypeof() could be NULL and eventually cause a segmentation fault in setenv(3), so check for that. Eyeballed by: kris Reviewed by: murray MFC after: 3 days
* Fix the environment handling:markm2001-07-281-12/+11
| | | | | | | | However, there's still a bug in login.c because you copy the environment *before* the call to pam_open_session, which won't set the necessary variables set by /usr/ports/security/pam_ssh. Submitted by: Volker Stolz <stolz@hyperion.informatik.rwth-aachen.de>
* Remove whitespace at EOL.dd2001-07-152-4/+4
|
* mdoc(7) police: removed HISTORY info from the .Os call.ru2001-07-102-2/+2
|
* Fix the type of the NULL arg to execl()brian2001-07-091-1/+1
| | | | Idea from: Theo de Raadt <deraadt@openbsd.org>
* Remove an accidentaly added extra blank line.eric2001-05-221-1/+0
| | | | Approved by: murray
* Disable SIGHUP while getting the login name.guido2001-05-211-0/+2
| | | | Reviewed by: security-officer
* Missed a few things.obrien2001-05-181-3/+4
|
* In a word -- style(9).obrien2001-05-181-43/+51
|
* Add the "prompt" and "passwd_prompt" fields to /etc/login.conf,obrien2001-05-181-3/+8
| | | | | | which makes lgoin more like getty in its ability to be configured. Submitted by: tlambert (code only)
* Check for the expiration of an account and its password in the propereric2001-05-171-12/+13
| | | | | | | | | order. Reviewed by: -audit (silence) Approved by: murray Obtained from: OpenBSD MFC after: 5 days
* Clean out some cruft that has been put in a better (central) place.markm2001-05-011-5/+0
|
* Enable (optional) static linking.markm2001-04-281-0/+5
|
* Add full PAM support for account management and sessions.markm2001-03-273-32/+102
| | | | | | | The PAM_FAIL_CHECK and PAM_END macros in su.c came from the util-linux package's PAM patches to the BSD login.c Submitted by: "David J. MacKenzie" <djm@web.us.uu.net>
* MAN[1-9] -> MAN.ru2001-03-271-2/+1
|
* Fix login so that it exports environmental variables that are set by PAMnectar2001-02-091-0/+58
| | | | | | | | modules (via pam_putenv). The following variables will never be set in this fashion: SHELL, HOME, LOGNAME, MAIL, CDPATH, IFS, PATH any variable starting with `LD_'
* Call pam_setcred.nectar2001-01-231-0/+4
| | | | Reviewed by: markm, months ago
* Add `_PATH_DEVZERO'.obrien2000-12-091-1/+2
| | | | Use _PATH_* where where possible.
* Add braces to avoid ambiguity in a nested conditional (silences a gccsheldonh2000-04-261-1/+2
| | | | warning).
* Fix excessive use of parenthesis in previous commit.sheldonh2000-04-252-2/+2
| | | | Requested by: bde
* Do not issue a warning when chflags() fails with EOPNOTSUPP.sheldonh2000-04-132-2/+3
| | | | | PR: 17875 Submitted by: Bjoern Fischer <bfischer@Techfak.Uni-Bielefeld.DE>
* Remove single-space hard sentence breaks. These degrade the qualitysheldonh2000-03-011-2/+4
| | | | | of the typeset output, tend to make diffs harder to read and provide bad examples for new-comers to mdoc.
* Fix diagnostic printing test condition (was always true)ache2000-02-281-1/+1
| | | | Approved by: jkh
* Remove option's description that has gone with PAM.ru2000-02-271-9/+1
|
* Added IPv6 name resolving support for utmp logging.shin2000-02-191-15/+42
| | | | Approved by: jkh
* Remove the version information from `.Os FreeBSD' here. Not onlychris2000-02-141-1/+1
| | | | | | | | might it confuse people, but it causes a warning message with nroff, and no version history mentions a 1.2 version of FreeBSD. If anything, a ``HISTORY'' section should show which version this appeared in.
* Revert the libcrypt/libmd stuff back to how it was. This should not havepeter1999-12-181-2/+2
| | | | | | | | happened as it was working around problems elsewhere (ie: binutils/ld not doing the right thing according to the ELF design). libcrypt has been adjusted to not need the runtime -lmd. It's still not quite right (ld is supposed to work damnit) but at least it doesn't impact all the users of libcrypt in Marcel's cross-build model.
OpenPOWER on IntegriCloud