summaryrefslogtreecommitdiffstats
path: root/usr.bin/su
Commit message (Collapse)AuthorAgeFilesLines
* Make su a little less fascist about using Kerberos if it is notmarkm1996-03-111-6/+7
| | | | | | | configured or available. Also fix a _nasty_ bug that would let one in if su -K was used. Any old password would work :-( :-(.
* Better integrate kerberos into su so that if an incorrect Kerberosmarkm1996-03-092-32/+53
| | | | | | | password is entered, the user is not prompted for a password a second time. This closes pr-bin/1006.
* #include <kerberosIV/des.h> -> #include <des.h>markm1996-02-111-1/+1
|
* Make it possible to enable WHEELSU from /etc/make.conf.wollman1995-10-121-1/+4
|
* Kerberos can now deal with multi-homed clients.gibbs1995-10-051-4/+5
| | | | | | | | | | | | | | Kerberos obtains a network address for the local host from the routing tables and uses it consistently for all Kerberos transactions. This ensures that packets only leave the *authenticated* interface. Clients who open and use their own sockets for encrypted or authenticated correspondance to kerberos services should bind their sockets to the same address as that used by kerberos. krb_get_local_addr() and krb_bind_local_addr() allow clients to obtain the local address or bind a socket to the local address used by Kerberos respectively. Reviewed by: Mark Murray <markm>, Garrett Wollman <wollman> Obtained from: concept by Dieter Dworkin Muller <dworkin@village.org>
* Bring Barry Morris' changes from FreeBSD 1.1.5.1 back: pass argumentsjoerg1995-09-062-9/+50
| | | | | | | | | to the target login's shell. This allows for "su -c". Do it right this time and also explain this behaviour in the man page. :) Obtained from: bsm's work in FreeBSD 1.1.5.1
* Check for expired passwords before allowing access to the system.mpp1995-08-281-0/+7
|
* Added support for an LCS-style `wheel su' which allows users in group wheelwollman1995-07-121-6/+36
| | | | | | | | | | to su to root by authenticating as themselves (using a password or S/Key) rather than by using the root password. This is useful in contexts like ours, where a large group of people need root access to a set of machines. (However, the security implications are such that this should not be enabled by default.) The code is conditionalized on WHEELSU.
* Remove trailing whitespace.rgrimes1995-05-302-2/+2
|
* It has always bugged me that ps and w did not display su with tcshjkh1995-04-061-1/+2
| | | | | | | | | | | properly. I know, tcsh is not a "Real Shell". jc p2 :0.0 Tue04PM - -u (tcsh) ^^^ 7173 p2 S+ 0:01.33 -u (tcsh) ^^^ Submitted by: John Capo <jc@irbs.com>
* Change the library order so libcrypt is the last library in the list.nate1995-03-181-2/+2
| | | | | | libskey contains references to _crypt and can't resolve it unless -lcrypt occurs after it in the link command. This only occurs when linking statically.
* Add distribution=krb for P-HKwollman1994-11-201-0/+1
|
* Fixed the PATH and cleanenv setting in su. This was totally broken in theats1994-11-171-3/+3
| | | | 4.4BSD Lite source.
* Include most of the logdaemon v4.4 S/key changespst1994-10-192-8/+8
|
* Add support for s/keyspst1994-09-292-2/+16
|
* First level of changes for bringing in eBones (kerberos).csgr1994-09-291-3/+9
| | | | | | | | - Get rid of inverse logic (NOKERBEROS and NOEBONES) in src/makefile, and replace with MAKE_KERBEROS and MAKE_EBONES. (Far fewer contortions, and both default to off.) IF YOU WANT KERBEROS, YOU HAVE TO EXPLICITLY DEFINE ONE OF THESE. - Make Makefiles kerberos-aware.
* LDADD= -lcryptcsgr1994-08-201-1/+2
| | | | Submitted by: Geoff
* Don't use kerberos yet, we aren't ready.wollman1994-08-051-3/+3
|
* BSD 4.4 Lite Usr.bin Sourcesrgrimes1994-05-273-0/+582
OpenPOWER on IntegriCloud