summaryrefslogtreecommitdiffstats
path: root/usr.sbin
Commit message (Collapse)AuthorAgeFilesLines
* Modify rpc.yppasswdd to use the new AF_LOCAL transport in the RPC librarywpaul1997-07-297-449/+104
| | | | | instead of its own kludged up version. This makes the special 'superuser-only' update procedure work just like a real RPC service.
* Two minor, pedantic fixes from bde for my last pedantic fixes, plusimp1997-07-2910-33/+29
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | the following from recent OpenBSD changes. These changes (and all I've made) should be merged back into 2.2 when they are vetted in -current. common.c: OpenBSD 1.7: mickey: #if __STDC__ --> #ifdef __STDC__ displayq.c: OpenBSD 1.8: deraadt: 1 byte oflows; millert rmjob.c: OpenBSD 1.8: deraadt: 1 byte oflows; millert cmds.c: OpenBSD 1.9: grr: restore traditional "all" keyword option - see lpc(8) [[ This makes lpc status all work again -- imp ]] printjob.c: OpenBSD 1.17: deraadt: use sendmail -t OpenBSD 1.16: mickey: #if __STDC__ --> #ifdef __STDC__ OpenBSD 1.15: deraadt: 1 byte oflow; Don.Lewis@tsc.tdk.com recvjob.c: OpenBSD 1.11: mickey: #if __STDC__ --> #ifdef __STDC__ lpr.c: OpenBSD 1.19: mickey: #if __STDC__ --> #ifdef __STDC__ Obtained from: OpenBSD
* Fix boatloads of buffer overflows from the OpenBSD tree.imp1997-07-299-100/+151
| | | | | Be pedantic about always using sizeof(blah) vs sizeof (blah) or sizeof blah. Obtained from:OpenBSD
* Allow hosts specified by IP number (avoidingbrian1997-07-282-9/+22
| | | | | a DNS lookup) Update doc including the [host:]port syntax.
* Make compile with rev. 1.101 of ncr.c, which added support forse1997-07-281-13/+13
| | | | loading of the SCIPTS microcode into the NCR on-chip RAM.
* Fix for PR #4147: apparently BIND now returns a status of NO_RECOVERYwpaul1997-07-281-3/+4
| | | | | | | | | | | | | | at the end of gethostanswer()/getanswer()/whatever where it used to return TRY_AGAIN. This breaks the domain list traversal in ypserv's async DNS lookup module: it would only retry using the domain(s) from the 'domain' or 'search' lines in /etc/resolv.conf if __dns_getanswer() returned TRY_AGAIN. Changed the test so that either TRY_AGAIN or NO_RECOVERY will work. This seemed to me the best solution in the event somebody tries to compile this code on an older system with a different version of BIND. (You shouldn't do that of course, but then there's a lot of things in the world that you shouldn't do and people do them anyway.)
* Fix file descriptor leaks.brian1997-07-281-4/+8
|
* Count the "proto" arg after a single address,brian1997-07-271-2/+4
| | | | | Check correctly for "deny" packets. Submitted by: Dave Bodenstab <imdave@mcs.net>
* Add a simple example section.wosch1997-07-271-1/+9
|
* Fix a bug in the async DNS resolver that can crash ypserv. yp_prune_dnsq()wpaul1997-07-271-4/+9
| | | | | | | | | | | is not sane: if the TTL on a pending but unanswered query hits 0 and the circular queue entry is removed and free()d, the for() loop may still try to use the entry pointer (which now points at no longer valid memory). usually, deleting only the last entry off the end of the queue worked, but if more than one was deleted, the server would crash. I changed things a bit so this shouldn't happen anymore. Also arranged to call the prune routine a bit more often.
* Adjust for changes in data structures brought into ncr.c rev. 1.100.se1997-07-251-6/+21
|
* Add ref to sysmouse(4).wosch1997-07-251-2/+3
|
* Add ref to vidcontrol(1).wosch1997-07-241-0/+3
|
* Add ref to moused(8).wosch1997-07-241-1/+3
|
* Delete dead test code.wosch1997-07-241-13/+1
|
* Don't try to ioctl(,TIOCOUTQ,) on a closedbrian1997-07-241-5/+6
| | | | | descriptor. Reported by: Stephane Raimbault <stephane@cybersurf.net>
* index -> strchr and rindex -> strrchr to reduce the number of gratuitousimp1997-07-237-19/+19
| | | | | | diffes with NetBSD/OpenBSD. These changes seem to predate the NetBSD/OpenBSD split, so it is hard to give proper credit for them. Obtained from: OpenBSD.
* YAMF22 - /boot.foo fixups.jkh1997-07-232-2/+20
| | | | | Also close PR#4151 by running newaliases (forgot to mention this in my RELENG_2_2 commit, but it's there).
* Use setuid/seteuid around dangerous operations. Also a few bufferimp1997-07-2311-50/+199
| | | | | | | | | | | | overflow patches that were "near" to where these operations are taking place. The buffer overflows are from OpenBSD. The setuid/seteuid patches are from NetBSD by way of OpenBSD (they changed them a little), at least from my read of the tree. This is the first of a series of OpenBSD lpr/et al merges. It (and them) should be merged back into 2.2 and/or 2.1 (if requested) branches when they have been shaken out in -current. Obtained from: OpenBSD
* Removed the SMP_TIMER_NC suggestion.fsmp1997-07-221-3/+4
| | | | This is (almost) defunct, start to phase it out...
* Output name of duplicate spool dir.brian1997-07-211-1/+2
| | | | Submitted by: Wayne Scott <wscott@ichips.intel.com>
* Fix a very stupid heap corruption bug: in ypproc_match_2_svc(), whenwpaul1997-07-211-9/+7
| | | | | | | | | | | | | | | | | | | | | we decide to do a DNS lookup, we NUL terminate the key string provided by the client before passing it into the DNS lookup module. This is actually wrong. Assume the key is 'foo.com'. In this case, key.keydat_val will be "foo.com" and key.keydat_len will be 7 (seven characters; the string is not NUL-terminated so it is not 8 as you might expect). The string "foo.com" is actually allocated by the XDR routines when the RPC request is decoded; exactly 7 bytes are allocated. By adding a NUL, the string becomes "foo.com\0", but the '\0' goes into an 8th byte which was never allocated for this string and which could be anywhere. The result is that while the initial request may succeed, we could trash other dynamically allocated structures (like, oh, I dunno, the circular map cache queue?) and SEGV later. This is in fact what happens. The fix is to copy the string into a larger local buffer and NUL-terminate that buffer instead. Crash first reported by: Ricky Chan <ricky@come.net.uk> Bug finally located with: Electric Fence 2.0.5
* Add code to make sure that we don't overflow the buffer that we copyimp1997-07-181-1/+4
| | | | | | | | | the hostname into. In theory the bind library should do this, but in practice the limites between system defines and bind defines make an attack using this vector possible. These patches have been in use on my systems for three months now, so I am fairly confident about them. I plan on commiting this to 2.2 and 2.1 in the near future, as well as many other patches of this nature.
* Fix a problem where remote files could be removed by exploiting raceimp1997-07-181-0/+2
| | | | | conditions similar to those reported in CERT's CA-91:10a advisory. Obtained from: Hiroshi NAKANO <nakano@rins.ryukoku.ac.jp> by way of CERT.
* `cp -r' -> `cp -R'wosch1997-07-181-2/+2
| | | | Option -r is obsolete and buggy.
* getuid() -> geteuid().davidn1997-07-171-2/+2
|
* Repair missing quote.jkh1997-07-162-4/+4
|
* ln /compat to /usr/compat on initial installation; this willjkh1997-07-162-2/+10
| | | | prevent the later addition of compat libs from overflowing /
* Increase size of tmp hostname buffer.phk1997-07-162-4/+4
| | | | | | PR: 3889 Reviewed by: phk Submitted by: Yujiro MIYATA <miyata@bioele.nuee.nagoya-u.ac.jp>
* Merge WebNFS support from NetBSD.dfr1997-07-162-2/+47
| | | | Obtained from: NetBSD
* Eliminate Samba configuration. Sorry, but this was another one ofjkh1997-07-1611-42/+11
| | | | | | | | | | | | | those ideas that, like the Apache server setup, was well-intentioned but doomed to fail in the face of change. That and the fact that it shouldn't be part of the installation tool, it should be part of the post-installation setup tool (which we need to write). Combining the two utilities into one utility was my first conceptual mistake. Apologies also to Coranth Gryphon, who worked hard on the Apache and Samba server setup code. These features were quite useful for awhile, if that's any consolation, I just simply had the wrong ideas about where to put them. :-(
* Previous commit to remove -I/sys broke 'make world', miscfs/union/*.h ispeter1997-07-151-0/+1
| | | | not (yet?) installed in /usr/include.
* Unbreak this file some more:wpaul1997-07-141-1/+1
| | | | | | CFLAGS=+-I${.CURDIR}/../../sys -> CFLAGS+= -I${.CURDIR}/../../sys Asked about on BSDnet:#FreeBSD by: philw@dream.webmaster.com (Phillip White)
* Unbreak it. Apparently I forgot to do a make clean when testing :-(guido1997-07-141-0/+1
| | | | Unfortunately, Makefile is not included in .depend.
* Allow a "hangup" capability.brian1997-07-146-9/+43
| | | | | | You can now "ATZ" your modem when it's closed. Submitted by: peter@citylink.dinoex.sub.org (Peter Much)
* kill the undeadpeter1997-07-133-2223/+0
|
* Remove -I/sysguido1997-07-132-2/+0
|
* Remove -I/sys and add -I${.CURDIR}/../../sysguido1997-07-131-1/+1
|
* Support "host:port" as first arg.brian1997-07-121-6/+19
|
* Allow service names in "set server"brian1997-07-121-3/+15
|
* Fixed buffer overflow.dima1997-07-081-5/+5
| | | | Reviewed by: Warner
* Major IPXrouted rework.jhay1997-07-0615-177/+355
| | | | | | | | | | | | | | | | | | | | | | | | In rt_change() remember to update the interface pointer otherwise we will send the RIP packets to the wrong interface(s) in future. Update the hash generator and increase the size of the hash tables. Only use the network and host parts when comparing IPX interface addresses. Immediately broadscast RIP and SAP changes. Change the alarm code to use the setitimer() call and only set a flag in the alarm signal handler. This gets rid of possible race conditions. Remove the host routing table. IPX RIP cannot do host routes, only net routes. Make the delay between broadcast packets 50ms. It seems that some Netware 4.x servers is very slow and don't have much input buffering. Handle received messages about networks and services that go down, better. Add tracing of RIP and SAP changes. It gets sysloged with a level of LOG_DEBUG.
* Remove addgroup/rmgroup -- they are completely replaced by pw(1).pst1997-07-055-362/+3
| | | | | Adduser/rmuser stay for now until we get a good user-friendly front-end for pw.
* Add proper md5 comments to ports-installed packages also byjkh1997-07-041-1/+2
| | | | | masticating it through the same routine used by pkg_create. Submitted by: se
* YAMF22jkh1997-07-042-0/+2
|
* Reset all LQR variables when we start over.phk1997-07-021-1/+4
|
* Make HUP cause an exit (as it used to), and makebrian1997-07-014-55/+17
| | | | | | | | | | INT cause a hangup - not exiting for -ddial & -auto. HUP must exit because init sends this at system shutdown time (why, I don't know), and we don't want to end up redialing after the HUP (due to another dfilter packet). Pointed out by and discussed with: ache
* Change the naming conventions for preserve'd files and also documentjkh1997-07-014-35/+72
| | | | | | | | | the option in pkg_create. Now preserved files start with a . and are named .<filename>.<pkgname>.backup so that their purpose is more clear. Note that just using the preserve option without proper pkg_deps is also foolish since packages being deleted in the incorrect order with preserve on can generate some odd results.
* Allow distSetByName() to process all the relevant entries.jkh1997-07-011-5/+2
| | | | Submitted by: msmith
* Don't depend on <machine/cpufunc.h> including <sys/types.h>. In fact,bde1997-07-012-8/+2
| | | | don't include this kernel-only header at all, since we don't need it.
OpenPOWER on IntegriCloud