d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
9,337 Commits 72 Branches 135 Tags 3.2 GiB
89ba57249c
Commit Graph

65 Commits

Author SHA1 Message Date
pst
89ba57249c Update manual page to reflect "empty password" usage. 1995-08-03 16:23:12 +00:00
pst
a9dd091c6a Null password should ask for random 1995-08-02 23:15:12 +00:00
pst
bf3356827e Make the DB/DBM routines generic (ifdef FreeBSD considered evil), and 
also fix a string allocation bug.

Submitted by: Havard Eidnes
 1995-08-02 23:08:18 +00:00
pst
3a0a71bc45 This commit was generated by cvs2svn to compensate for changes in r9866, 
which included commits to RCS files with non-trunk default branches.
 1995-08-02 22:14:27 +00:00
pst
109eb67c2a Program to receive and process a new kerberos database (this is run on 
the slave server).

NOTE: This code should not be built, there is no documentation, and this
      method of database transfer is highly suboptimal.  It's here just
      for those of us who actually have multiple K4 servers and want
      something more secure than the other distribution mechanisms.

Obtained from: MIT Project Athena
 1995-08-02 22:14:27 +00:00
pst
125192f363 This commit was generated by cvs2svn to compensate for changes in r9864, 
which included commits to RCS files with non-trunk default branches.
 1995-08-02 22:11:44 +00:00
pst
ca1e73f49a Import an updated revision of the MIT kprop program for distributing 
kerberos databases to slave servers.

NOTE: This method was abandoned by MIT long ago, this code is close to
      garbage,  but it is slightly more secure than using rdist.
      There is no documentation available on how to use it, and
      it should -not- be built by default.

Obtained from:	MIT Project Athena
 1995-08-02 22:11:44 +00:00
gibbs
98668bb1d1 Make kadmind safe to run on multi-homed machines. 
Reviewed by: Garrett A. Wollman (wollman@FreeBSD.org)
 1995-08-02 18:31:08 +00:00
ache
6b8d4c5751 Final cleanup pass through Makefiles, now this stuff 
autodetect kerberos/eBones and work even with eBones,
but with reduced functionality (don't pick up des/krb stuff
in this case)
 1995-07-24 22:55:59 +00:00
ache
a5accad396 Add -ldescrypt, or wrong crypt version can be picked from libc 
Reviewed by:
Submitted by:
Obtained from:
 1995-07-24 22:01:01 +00:00
ache
50079b7e01 Add LDADD+= -ldescrypt 
Reviewed by:
Submitted by:
Obtained from:
 1995-07-24 21:57:58 +00:00
ache
cf7407b263 Move -ldes under kerb stuff, my fault 
Reviewed by:
Submitted by:
Obtained from:
 1995-07-24 21:49:06 +00:00
ache
de1b3eb015 Since this stuff not works with eBones, ifdef kerberos stuff 
with MAKE_KERBEROS to allow other things to live
Reviewed by:
Submitted by:
Obtained from:
 1995-07-24 21:47:30 +00:00
ache
a9df7147f7 Since this stuff not works with eBones, ifdef kerberos stuff 
with MAKE_KERBEROS to allow other things to live
Submitted by:
Obtained from:
 1995-07-24 21:38:32 +00:00
ache
8ea9ecfb40 Add comment about new_rnd_key.c module needed from original 
libdes (and not present in eBones libdes)
 1995-07-24 21:12:57 +00:00
ache
32da77d82c Add comment about new_rbd_key.c module needed from 
original libdes
 1995-07-24 21:10:47 +00:00
ache
92e36e544f Fix dependances, typing errors, etc. 
Note: this thing need original libdes not Eric Young libdes from eBones
Submitted by:
Obtained from:
 1995-07-24 20:40:03 +00:00
ache
0a95d180a9 Fix many bogus things, typing error, dependance errors, etc., 
now it compiles.
Note: this stuff requires original libdes, not libdes from
Eric Yang which we have in eBones.
 1995-07-24 20:29:12 +00:00
rgrimes
b621915542 date: 1995/07/12 13:10:58; author: jkh; state: Exp; lines: +3 -2 
Sync with Mark M's latest suggestions.
Submitted by:   markm

[This is being pulled from RELENG_2_0_5, it was commited there after the
release, and we need it here and in RELENG_2_1_0, it will be cvs admin -o'ed
off the RELENG_2_0_5 branch after this commit.]
 1995-07-22 04:24:05 +00:00
pst
a7513ac8e5 When hostname len > 8, name replaced with dot notation when -u flag 
not specified (default case).
Use _PATH_* for utmp/wtmp.

Support for >32 PTYs.
>Submitted by:   Heikki Suonsivu <hsu@cs.hut.fi>

Plug already known security hole. (Brought over from 1.1.5):
Fixed security problem with telnetd, which allowed
   telnet -l -hcert.org localhost
to change the user's host in utmp.
Thanks to Matthew Green <mrgreen@@mame.mu.oz.au> for showing me this one.

>Reviewed by:    karl, guido
>Submitted by:   mrgreen@mame.mu.oz.au

Obtained from:	FreeBSD insecure telnetd
 1995-07-20 12:35:01 +00:00
pst
421a728388 The final negotiation of DO_BINARY in the LINEMODE portion of the telnetd code 
causes some clients that do not support linemode to mis-interpret the return
key (i.e. double returns).
The fix is to only do the state check for binary options if linemode will
be used.
Closes PR#505.

Submitted by:   Charles Henrich
Obtained from:	FreeBSD insecure telnetd
 1995-07-20 12:32:40 +00:00
pst
caf0719785 Update telnet to the 95.05.31 release. 
Obtained from:	Dave Borman <dab@cray.com>
 1995-07-20 11:40:06 +00:00
rgrimes
8f6e1a9b69 Merge RELENG_2_0_5 into HEAD 1995-06-11 19:33:05 +00:00
rgrimes
79e59e9123 Remove trailing whitespace. 1995-05-30 06:41:30 +00:00
rgrimes
0d84aee7e3 Remove trailing whitespace. 1995-05-30 06:12:45 +00:00
wollman
65d27f136c Make certain that random keys havethe correct parity, for interoperation with 
MIT v4 implementations.

Submitted by: Reece R. Pollack <reece@eco.twg.com>
 1995-05-09 18:05:15 +00:00
dima
6427f0c7cd Security fixes. 
CERT Advisory CA-95:03.telnet.encryption

Obtained from: CERT
 1995-02-17 03:57:00 +00:00
ache
d1472e319c Build kpasswd from normal passwd sources now 
Submitted by: mark@grondar.za
 1995-02-11 18:25:38 +00:00
jkh
e40daef3ba Various documentation changes. 
Submitted by:	Mark Murray <mark@grondar.za>
 1995-02-08 10:54:30 +00:00
ache
01f2a37875 Fix database deletion, we don't have .dir & .pag, use .db instead 1995-01-25 19:57:27 +00:00
ache
c3eb1d5226 Fix database rename, we don't have .dr & .pag, use .db instead 1995-01-25 19:45:25 +00:00
gibbs
631e8ff6c7 Less expensive fix for the freeing of uninitialized fields in the hostdata 
struct.  Simply test the "no_host" variable, which if true implies that
the hostdata contains bogus data, and act accordingly.
 1995-01-25 06:37:33 +00:00
gibbs
ca694acaae bzero hostdata in send_to_kdc so that if we immediately jump to the 
cleanup routine, we don't look at bogus data to determine wheter or not
to free the fields of the hostdata struct.  This cures the "klogin segfaults
when no kerberos servers are availible" problem.
 1995-01-25 05:40:00 +00:00
ache
ae90827cff Add missing newline (or messages concatenated) 1995-01-25 02:27:00 +00:00
wollman
fb5869f0da Print out error messages from libkadm correctly (i.e., using com_err). 1995-01-23 22:54:08 +00:00
wollman
5cd1198b22 Add ksrvutil. 1995-01-20 22:40:02 +00:00
wollman
e81ce86714 Add last piece in fully-functional Kerberos implementation: ksrvutil, 
a program to manage /etc/srvtab.
 1995-01-20 22:38:30 +00:00
wollman
9742770511 Added Kerberized passwd. 1995-01-20 22:16:47 +00:00
wollman
2180b8bfa5 Password-changing program with Kerberos support via the `kadmin' 
protocol.  Replaces passwd(1) when eBones is installed.  As before, HOW-TO
explains the gory details.
 1995-01-20 22:14:14 +00:00
wollman
954b9bec45 Fix bonehead /usr/lib -> /usr/bin. 1995-01-20 22:08:14 +00:00
wollman
33ad930a99 Add kadmind. 1995-01-20 03:13:48 +00:00
wollman
0312ce012d Add kadmind. HOW-TO documents how to get here from raw eBones. 1995-01-20 03:13:00 +00:00
wollman
0a74f66d39 Add kadmin. 1995-01-20 02:49:47 +00:00
wollman
3ada63581e The user side of the kadmin protocol. HOW-TO describes how to recreate 
this based just on the eBones distribution.
 1995-01-20 02:47:50 +00:00
wollman
3bc3d02eee Add the library used by kadmin' and kadmind'. Oddly enough, this 
little library is actually exportable (we think) even though it's pretty
useless iwithout the (non-exportable) clients.
 1995-01-20 02:02:54 +00:00
wollman
ec6bb25c7c Don't install kadm.h from here; it's done by the libkadm directory. 1995-01-20 02:01:11 +00:00
wollman
2f176ed419 Do all libraries first. Don't do `include' twice. 1995-01-20 02:00:34 +00:00
wollman
0fcbbe8cd8 Don't break existing users of libkrb.so.2.0 who aren't using libcom_err. 1995-01-20 01:44:47 +00:00
wollman
c561adf4d5 Kill more bogus man pages. (The correct ones are with their programs.) 1995-01-20 01:26:53 +00:00
wollman
2c7f18e94b A more correct fix for the new compile_et. Also, add beforeinstall 
rule to ensure that krb_err.h gets installed (some other programs need
it).
 1995-01-20 01:12:19 +00:00