summaryrefslogtreecommitdiffstats
path: root/usr.sbin/ppp/ppp.8
Commit message (Collapse)AuthorAgeFilesLines
* Allow multiple (comma seperated) devices on the "set device" line.brian1997-12-211-4/+9
| | | | Submitted by: Derek Inksetter <derek@saidev.com>
* Mention that leading whitespace is ignored when identifying comments.brian1997-12-211-2/+3
|
* Cosmetic: Remove blank lines, add .Pp where necessary.brian1997-12-211-349/+46
| | | | Submitted by: Theo de Raadt <deraadt@cvs.openbsd.org>
* Don't log the actual password when command-loggingbrian1997-12-181-2/+17
| | | | "passwd xxxx".
* o Log ******** instead of the actual password for "set authkey"brian1997-12-171-14/+83
| | | | | | | | | | | | when command logging is switched on. o Display ******** for the authkey for "show auth" o Document how \P should be used, and document the other chat escapes while I'm there. o Make sure the full command is displayed when a compound command fails - ie, "set novar rubbish" should say "set novar: Invalid command" rather than "novar: Invalid command" Problem pointed out by: Theo de Raadt <deraadt@cvs.openbsd.org> (among others)
* Wrap long linesbrian1997-12-161-4/+5
| | | | Submitted by: Greg Lehey <grog@lemis.com>
* Allow random IP number allocation to peer.brian1997-12-131-24/+62
| | | | | | | | | | | | | | | | | | | | Validate the peers suggested IP by attempting to make a routing table entry. Give up IPCP negotiation if the peer NAKs us with an unusable IP. Always SIOCDIFADDR then SIOCAIFADDR when configuring the tun device. Using SIOCSIFDSTADDR allows duplicate dst addresses (which we don't want)!!! Allow up to 200 interface names (was 50) (now that ppp can play server properly). Up the version number (1.5 -> 1.6). Cosmetic: Log unexpected CCP packets in the CCP log rather than the ERROR log. Log unexpected Config Reqs in the appropriate LCP/IPCP/CCP log rather than the ERROR log. Log failed route additions and deletions with WARN, not TCPIP. Log the option id and length for unrecognised IPCP options. Change some .Sq to .Ar in the man page.
* Only allow one arg to `delete' - the mask & gateway aren't necessary.brian1997-12-071-30/+45
| | | | | | | | | | | | | | Delete AF_LINK routes as well as AF_INET. Allow the word `default' as the arg to `delete' or in place of the first two args (dest & netmask) to `add'. Accept INTERFACE as the third arg to `add'. You can now say `add default interface' to create a default route through the tun interface. It's reported that subsequent bind()s will bind to a broadcast address and not to the address currently assigned to the tun device - this is the first step towards supporting that first connection that was around from before the dynamic IP negotiation....
* Fix the CCP Type field value for DEFLATE.brian1997-12-031-1/+42
| | | | | | | | | | | | | | (I *really* meant to do this *before* committing the deflate changes in the first place - oops). Pppd is horribly broken in this respect - refer to the ppp man page for details. Ppp *WON'T* negotiate deflate with pppd by default - you must ``enable'' and ``accept'' ``pppd-deflate'' in your config. While I'm in there, update the cftypes in ccp.c so that we recognise some more protocols (we don't actually do anything with them - just send a REJ).
* Abstract the CCP layer a level.brian1997-12-031-10/+23
| | | | Add DEFLATE support.
* Add throughput logging (disabled by default).brian1997-11-181-31/+47
| | | | | Use "enable throughput" to see modem & IPCP throughput. Removed an extraneous prompt()
* uucplock is in section 3 not section 8 !brian1997-11-141-4/+3
|
* Finish the security improvements:brian1997-11-111-119/+206
| | | | | | | | | | | | | | | | | | | o Add "allow" command: "allow users a b c" gives access to users a, b and c. "allow modes auto" gives those users access to auto mode only. "allow users *" and "allow modes *" are accepted. No users and all modes are allowed by default. UID 0 can do anything. o Set the current label with the "load" and "dial" commands so that the call to ppp.linkdown makes sense. o Up the verison number. o Don't OR MODE_AUTO for -background and -ddial. o Don't OR MODE_INTER when we get a diagnostic connection. o Allow up to 40 args per line (was 20). o "set ifaddr" only changes the interface in AUTO mode (with other modes, it happens after IPCP negotiation). o Sort command descriptions in the man page. o Support -dedicated mode where we just talk ppp forever (no login etc).
* Don't create a diagnostic socket by default.brian1997-11-091-37/+77
| | | | | | Allow a password spec on the "set server" command line. Use SIGUSR2 to close the diagnostic socket. Some man page corrections.
* Add the "!include" syntax.brian1997-11-091-10/+25
| | | | Return 0 from "show" commands.
* Remove the use of $HOME/.ppp.*brian1997-11-091-14/+2
|
* Introduce ID0 logging.brian1997-11-091-1/+2
| | | | | | | | Stay as the invoking uid as much as possible. Execution as a normal user is still forbidden for now, so these changes are pretty ineffective. The next commit will implement the modifications suggested on -hackers a number of days ago.
* Typo police.brian1997-11-081-2/+2
|
* o Spelling police.brian1997-11-061-162/+261
| | | | | | o Emphasize ``PPP'' o x-ref other programs o Some minor clarifications
* Introduce [local] to "set log [local] ...". This spitsbrian1997-11-041-14/+38
| | | | | logging out to the screen in terminal mode - should be good for installation problem diagnosis.
* Refer a bit to pppctl.brian1997-10-051-14/+27
| | | | Suggested (far to subtly for his own good) by: joerg
* Cosmetic: Be specific about using TABs in syslog.conf.brian1997-10-051-2/+5
|
* Allow Microsoft CHAP authentication.brian1997-09-251-8/+20
| | | | | This is a combination of MD4 & DES. Submitted by: Gabor Kincses <gabor@acm.org>
* Don't allow accept/deny when it's not appropriate.brian1997-09-221-18/+30
| | | | | Log PAP/CHAP users in utmp & wtmp, allowing it to be avoided with "disable utmp"
* Add a pppctl(8) xref.brian1997-09-211-2/+3
| | | | Suggested by: joerg
* Support CHAP using MD4brian1997-09-171-1/+13
| | | | Suggested by: jordan
* Cosmetic: Remove unused variables and build on OpenBSD.brian1997-09-101-11/+12
|
* Document the use of PAP/CHAP properly.brian1997-09-091-28/+56
|
* Disable LQR by default. It causes too many problemsbrian1997-09-071-2/+2
| | | | | with too many ISPs to be a good default. LQR is still accepted by default.
* Install as group ``network''brian1997-09-041-1/+24
| | | | | | | | | | | Insist that uid == 0 for client ppp Disallow client sockets if no password is specified Don't exit on failure to open client socket for listening Allow specification of null local password Use reasonable size (smaller) ``vector''s in auth.c Fix "passwd ..." usage message Insist on "all" as arg to "quit" (if any) Drop client socket connection before Cleanup() when "quit all"
* Remove use of login_progok()brian1997-08-311-16/+2
| | | | Suggested by: guido
* Use login_progok().brian1997-08-271-4/+7
|
* Check the "prog.deny" login.conf capability andbrian1997-08-261-2/+13
| | | | | refuse to run if "ppp" is in the list. Suggested by: "Daniel O'Callaghan" <danny@panda.hilink.com.au>
* Phone the number after the ``|'' whether the dialbrian1997-08-231-19/+20
| | | | | | OR login script fails. Catch a small typo in the man page.
* Update doc to use MYADDR in ppp.conf.brian1997-08-211-2/+2
|
* Add "set loopback on|off", defaulting to "on".brian1997-08-211-1/+17
| | | | | | | | | This tells ppp to loopback packets addressed to the ppp interface IP coming *from* the tun device. This means that you can ping the tun interface IP from inside :-)
* Expand the "set stopped" command so that it canbrian1997-08-201-11/+14
| | | | | | | | idependently time out any of the FSMs. Split LCP logging into LCP, IPCP and CCP logging, and make room in "struct fsm" for the log level that the state machine should use.
* Spelling police.danny1997-08-191-5/+5
|
* Typo fixes.danny1997-08-191-3/+3
|
* Correct the forth arg to "set ifaddr". If specified,brian1997-08-191-20/+54
| | | | | it gives the IP number that should be used for initial IPCP config requests, irrespective of MYADDR.
* Introduce the "bg" command. It's prettybrian1997-08-181-9/+25
| | | | | much the same as "shell", but it's in the background.
* Typo policebrian1997-08-171-2/+2
|
* Allow the use of a "stopped" timeout via thebrian1997-08-171-4/+22
| | | | | | | | | | | "set stopped" directive. If the timeout occurs it will cause a "Down" event, hanging up the line if it's still up. This *isn't* part of the FSM diagram, but I consider it ok as a "higher level implementation specific timeout" as specified in the rfc ;-} Discussed briefly with: joerg
* Allow specification of fallback phone numbers tobrian1997-08-171-9/+26
| | | | | be used only if the dial script fails. PR: 4262
* Correct default log file name.brian1997-08-101-2/+2
| | | | | | PR: 4065 Prompted by: Steve Price <sprice@hiwaay.net> Submitted by: sjr1@flash.net
* Allow a "hangup" capability.brian1997-07-141-1/+6
| | | | | | You can now "ATZ" your modem when it's closed. Submitted by: peter@citylink.dinoex.sub.org (Peter Much)
* Make HUP cause an exit (as it used to), and makebrian1997-07-011-20/+4
| | | | | | | | | | INT cause a hangup - not exiting for -ddial & -auto. HUP must exit because init sends this at system shutdown time (why, I don't know), and we don't want to end up redialing after the HUP (due to another dfilter packet). Pointed out by and discussed with: ache
* Allow specification of a umask for local socketbrian1997-06-301-3/+5
| | | | creation in "set server" command.
* Add "set server" to control the server socket.brian1997-06-251-3/+70
| | | | | | | | | | Catch SIGUSR1 to re-init listening socket. Document signal behaviour. Add missing '\n's to LogPrintf(LogWARN,...) Main() returns int not void. AF_LOCAL ideal suggested a long time ago by: joerg
* Fix "delete all".brian1997-06-201-11/+25
| | | | PR: 3913
OpenPOWER on IntegriCloud