summaryrefslogtreecommitdiffstats
path: root/usr.sbin/inetd
Commit message (Collapse)AuthorAgeFilesLines
* Prepare for mdoc(7)NG.ru2000-12-271-1/+1
|
* Add a -F option to the builtin ident service, which allows .fakeid filesdwmalone2000-12-052-3/+17
| | | | | | | | | to contain the name of other valid users. PR: 22837 Submitted by: Andreas Gerstenberg <andy@andy.de> Reviewed by: green Reviewed by: sheldonh
* Tidy up some prototypes:dwmalone2000-12-033-7/+10
| | | | | | | make sure there is exactly one prototype for each function, use K&R style definitions everywhere to match dominant style, make flag_signal take an int to avoid problems if we have ANSI prototypes and K&R definitions.
* Make some style changes to the ident_stream() code.green2000-12-021-14/+20
| | | | | Partially submitted by: alfred Reviewed by: alfred
* Security fix: correctly set groups according to the user. Previously,green2000-11-251-6/+15
| | | | | | | | | root's groups' permissions were being used, so a user could read up to 16 (excluding initial whitespace) bytes of e.g. a wheel-accessible file. Also, don't allow blocking on the opening of ~/.fakeid, so replace a fopen() with open() and fdopen(). I knew I'd be going to hell for using C file streams instead of POSIX syscalls...
* mdoc(7) police: use the new features of the Nm macro.ru2000-11-201-3/+3
|
* Be explicit about the fact that you can only specify one IP address/hostnamen_hibma2000-10-291-1/+1
|
* Fix two typos in comments.dwmalone2000-10-242-2/+2
| | | | | PR: 22268 Submitted by: Daniel S. Lewart <d-lewart@uiuc.edu>
* Claim maintainership of inetd.dwmalone2000-10-211-0/+2
|
* Don't leak a file discriptor if a service we've called accept() fordwmalone2000-10-211-0/+3
| | | | | | loops. Submitted by: Ian Dowse <iedowse@maths.tcd.ie>
* Make reconfiguring an external service as builtin service work.dwmalone2000-10-021-0/+1
| | | | | | PR: 21650 Submitted by: ben Tested by: dan@ducky.nz.freebsd.org
* Stop internal ident service spinning until the timeout if thedwmalone2000-10-021-0/+2
| | | | | | | connection goes away. Spotted by people on -STABLE about 2 weeks ago. Submitted by: Based on a patch by alfred and Maxime Henrion <mux@qualys.com>
* Explain "-c" option more exactly and state the default in the mandwmalone2000-08-032-8/+13
| | | | | | | | | | | | | page. Add ability to run "inetd -R 0" to disable the default connection per minute limit of 256 connections. Document this in man page. Don't use maxchild as a boolean - instead check if it is greater than zero. Reviewed by: sheldonh Based on a patch by: Alexander Langer <alex@big.endian.de>
* specifer -> specifierdwmalone2000-08-031-1/+1
|
* Sleep for a second after tcp wrappers rejects a connection, so wedwmalone2000-07-311-1/+3
| | | | | | | don't traumatise the parent inetd. Requested by: wietse@porcupine.org Approved by: markm
* Make builtin ident service work if the request arrives in more thandwmalone2000-07-121-15/+38
| | | | | | | | | | | | one packet. Also check that the whole request has been recieved before processing it. The patch isn't the exact one from the PR, but a slight varient suggested by Brian. PR: 16086 Submitted by: Hajimu UMEMOTO <ume@mahoroba.org> Reviewed by: green
* Fix the ident server up more: use ssize_t/size_t/socklen_t/int all in thegreen2000-05-301-23/+22
| | | | | | proper places and make the fakeid parsing code a bit less stupid. Also, remove an "Rflag" that snuck in there (-R wouldn't be accepted by it, anyway).
* Fix a 64-bit'ism in the handling of the ident service. sysctlbyname() takesjhb2000-05-301-1/+2
| | | | | | a size_t as its 3rd argument, which is 64-bits on the alpha. The 'len' variable used was a int, which is only 32-bits. Use size_t as the type for 'len' to work-around this.
* Clarify the use of the auth service's -d option for specifyingsheldonh2000-04-261-6/+15
| | | | | | a fallback username. Reviewed by: green
* Make sure to use IPv4 mapped IPv6 address when mapped address isume2000-04-021-5/+6
| | | | | | requested in /etc/inetd.conf. Reviewed by: shin
* Optimize those services that send only one block of data: use send(2)sheldonh2000-03-281-4/+4
| | | | | | | with the MSG_EOF flag set instead of write(2). Submitted by: David Malone <dwmalone@maths.tcd.ie> Reviewed by: wollman
* Allow using "-d username" without "-r". Example:green2000-03-282-5/+20
| | | | auth stream tcp nowait root internal auth -d "Only fools trust ident"
* "can received" -> "can receive".ru2000-03-221-1/+1
|
* Make inetd compilable without INET6.shin2000-03-112-2/+4
| | | | | | Approved by: jkh Submitted by: jhb
* Fix addr length argument value passed to sendto().shin2000-03-091-10/+10
| | | | | | | | | Some inetd internal udp servers didn't worked with problem. Also fix recvfrom() "fromlen" arg type from int * to socklen_t *. Approved by: jkh Submitted by: bde
* Clarify the facility used for logging with and without the wrappingsheldonh2000-03-011-7/+20
| | | | | | | options. PR: 17017 Submitted by: Doug Barton <Doug@gorean.org>
* Remove broken hard sentence breaks, which mess up the typeset output.sheldonh2000-02-291-16/+32
|
* Fix broken inet logging when wrapping options are not specified.shin2000-02-221-2/+2
| | | | | | Approved by: jkh Submitted by: Ben Smithurst <ben@scientia.demon.co.uk>
* Make inetd picobsd friendly, dont use ipsec when RELEASE_CRUNCHluigi2000-02-091-3/+6
| | | | | | is defined Approved-by: jordan
* Fix inetd wrong AF check for RPC servicesshin2000-02-031-2/+3
| | | | | | | | | | | | Incorrect Address Family check is done for RPC services, and fail to initialize it. The error check is replaced to new one, which checks if IPv4 bind is enabled or not. (It is disabled when IPv6 numeric addr is specified for -a bind address option.) An review reqeust is once sent to des, but he quit MAINTAINER. Approved by: jkh
* Drop maintainership of inetd, since nobody respects it anyway.des2000-02-011-1/+0
|
* Fix inconsistent debug output. (syslog -> warnx)shin2000-01-281-12/+8
| | | | | | Specified by: sheldonh Reviewed by: des
* Fix English, mdoc and layout of the previous commit, as requested bysheldonh2000-01-281-60/+81
| | | | | | | | | | | | | | the committer (shin). While I don't have permission for this change from the inetd maintainer (des), I assume that shin has permission and I'm just fixing his contribution up for him. Okay, I couldn't resist, I made some extra changes: * Replace ".Tn FreeBSD" with .Fx * Make the illegal TCPMUX and IPSEC sections legal subsections of the IMPLEMENTATION NOTES section. Requested by: shin
* Avoid verbose error messages when ipsec initialization for sockets failedshin2000-01-271-2/+4
| | | | | usually, and print it only when debug is enabled. (This always happens when kernel is configured without IPSEC option.)
* several tcp apps IPv6 updateshin2000-01-255-111/+702
| | | | | | | | | | | | -inetd -rshd -rlogind -telnetd -rsh -rlogin Reviewed by: freebsd-arch, cvs-committers Obtained from: KAME project
* Do not dot terminate sentences inside FILES section. Lowercasecharnier2000-01-232-10/+10
| | | | inside error messages.
* I like base-36 better.green2000-01-201-4/+18
|
* Implement -g and -d options in my ident code. The -g flag uses a randomgreen2000-01-192-18/+67
| | | | | | | | | | garbage value for the username (hex garbage, that is), and the -d flag provides a default username for fallback purposes if the user cannot be looked up. That is very useful for the case where inetd auth is running on a NAT box. While I'm here updating the manpage, clean up an English error and a few small nits.
* Put the listening socket into non-blocking mode before doing anpeter1999-11-171-0/+8
| | | | | | | | | accept(2). This is a not really problem on -current as the accept race is fixed, however it is a MFC candidate for -stable. This could possibly be slightly more efficient and leave the listening socket permanently in non-blocking mode, but I wasn't certain that I could catch all the stream/wait (not nowait) mode implications.
* Do not dot or \n terminate syslog string.charnier1999-10-131-3/+3
|
* $Id$ -> $FreeBSD$peter1999-08-286-6/+6
|
* Pull on my asbestos undies and claim ownership of inetd to prevent furtherdes1999-07-261-1/+2
| | | | | | flamage between our beloved messrs Hearn and Feldman. Further commits go through me. I urge the contestants to direct their energies at cleaning up main() in inetd.c, which has over time become a crawling horror.
* Here goes, the "clear up any possible confusion" commit.green1999-07-261-11/+65
| | | | | | | | | I've taken time to write up comments for the ident code tonight, so there should no longer be any confusion about the purpouse of whatever is in there. Wow, me commenting code... who'd have thought that would happen? Reviewed by: DES
* Bring two wayward memory allocation failure messages in line withsheldonh1999-07-261-3/+3
| | | | those featured in the rest of the code.
* More cleanups to ident_stream. Variables moved around, changed.green1999-07-251-16/+11
| | | | | | | Got rid of an extra variable or two, while making corrections to problems (that would probably not be a problem anyway, and worked.) Partially Obtained from: David Malone <dwmalone@maths.tcd.ie>
* Correct a groff error in macro usage ("foo : bar" becomes "``foo: bar''").green1999-07-241-3/+9
| | | | Document the auth -n flag.
* More cleanups, asprintf() usage (proper, as opposed to using snprintf()),green1999-07-241-12/+36
| | | | and addition of a -n .noident-checking flag.
* Clean up to match style(9) more closely. This should fix the problem ofgreen1999-07-241-6/+5
| | | | people having ants in their pants ;)
* Use comments to group functions by service more clearly. I've used thesheldonh1999-07-241-2/+31
| | | | excuse of providing the RFC numbers for the associated services.
* Style nits:sheldonh1999-07-241-5/+8
| | | | | | | | | | | * Bring memory allocation failure handling in line with that of the rest of the code. * Nestle block curlies between case statements correctly. I've left the in-block declarations alone, since style(9) says we should conform to the existing style within the code, and inetd already does this. I've left the asprintf()'s in there because that's how Brian wants it.
OpenPOWER on IntegriCloud