Commit Graph

96 Commits

Author SHA1 Message Date
Paul Traina
4b2fab7504 Restore backwards compatible default behavior for requirehome 1997-05-23 00:14:27 +00:00
David Nugent
a317d49b93 login_getclass() -> login_getpwclass().
auth_rmfiles() was being called in error without LOGIN_CAP_AUTH defined.
1997-05-10 18:57:16 +00:00
David Nugent
3169e0f139 Use isdialuptty() rather than hard-coded heuristic. 1997-04-13 15:26:04 +00:00
David Nugent
f72b1ff3be Submitted by: Sergei Chechetkin <csl@whale.sunbay.crimea.ua>
Fix incorrect bracket nesting. Closes PR#3144.
1997-04-01 11:54:06 +00:00
Warner Losh
1c8af87873 compare return value from getopt against -1 rather than EOF, per the final
posix standard on the topic.
1997-03-29 04:34:07 +00:00
David Nugent
1f5367caee Fix for logic in no-password accounts. 1997-03-27 10:09:09 +00:00
David Nugent
4a028a883d Don't bypass password prompt for root logins on insecure tty if
the root password is empty.
1997-03-25 05:15:04 +00:00
David Nugent
d8a7b3477f strdup() value of term to correctly preserve contents.
Rearrange validation logic so that it works correctly when
compiled with kerberos support. Closes PR#3056.
1997-03-24 21:22:12 +00:00
David Nugent
a52c1be6ff Submitted by: Paul Traina <root@shockwave.com> (partially)
Cleanup of #ifdef's for LOGIN_CAP.

  Fixed bug in empty shell (closes PR#2550).

  Refused root logins now displays standard "Login incorrect" and
	exhibits identical backoff behaviour to a failed login.

  Cleaned up logging of refused logins.

  Use #defines for login retries and backoff. Also implemented
	definable variables if LOGIN_CAP is defined, with
	"login-retries" and  "login-backoff" as capabilities
	in the default class (closes PR#2805).

  TERM from previous environment is no longer truncated.
1997-03-18 16:27:12 +00:00
Wolfram Schneider
67022bfc9f Include copyright message from <sys/copyright.h> 1997-03-01 18:02:44 +00:00
Andrey A. Chernov
7adec20804 Back out "shell" / pw_shell change, I was confused by the same
variable name (with different functionality)
1997-02-27 05:09:58 +00:00
Andrey A. Chernov
60797e8797 Fix few bogons with pw_shell / shell variables values mismatch
introduced by LOGIN_CAP
1997-02-27 03:52:22 +00:00
Peter Wemm
c115df18cd Revert $FreeBSD$ to $Id$ 1997-02-22 19:58:13 +00:00
Paul Traina
2ed98aa017 Cruft cleanup to eliminate useless warnings 1997-02-02 21:33:37 +00:00
Jordan K. Hubbard
d87e2a2cc5 Don't dereference NULL pwd on non-existant username (I wonder how long
THAT has been in here!).
1997-01-22 18:36:27 +00:00
David Nugent
5217f56ec6 Fix handling of empty shell field in passwd file (use /bin/sh); problem
was caused by introduction of login classes. Closes PR bin/2550.
Added references to login.conf to manpage, crossreference to login.conf(5).
1997-01-22 02:45:16 +00:00
Jordan K. Hubbard
1130b656e5 Make the long-awaited change from $Id$ to $FreeBSD$
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.

Boy, I'm glad we're not using sup anymore.  This update would have been
insane otherwise.
1997-01-14 07:20:47 +00:00
David Nugent
6acc486b3f Makes login login_cap-savvy.
Note that LOGIN_CAP_AUTH code (login authentication) is not (yet) enabled
and requires /usr/libexec/login_<style> authentication program support to
be added at a later date. The Makefile contains a macro LC_AUTH to turn
it on and prevent unnecessarily linking against skey/krb libs and the
addition of klogin.c module.

All other aspects of login_cap support are fully functional.
1997-01-11 07:16:35 +00:00
Wolfram Schneider
13608f6661 comma typos 1996-12-23 23:09:55 +00:00
Paul Traina
39ea627d62 Fix some compilation warnings. 1996-09-21 18:01:23 +00:00
Mike Pritchard
e830e7f5fe Document login's use of /etc/login.access.
Submitted by:	David E. O'Brien
1996-07-03 01:20:09 +00:00
Andrey A. Chernov
16ac215c11 Write numerical address instead of hostname for hostnames > UT_HOSTSIZE
to keep valid information in utmp and lastlog
1996-06-17 12:27:55 +00:00
Mark Murray
bbff7ca556 #include <kerberosIV/des.h> -> #include <des.h> 1996-02-11 09:18:18 +00:00
Mike Pritchard
4a8d02835c Fix a bunch of spelling errors in a bunch of man pages. 1996-01-30 13:52:50 +00:00
Peter Wemm
a5b996a7ec recording cvs-1.6 file death 1995-12-30 19:02:48 +00:00
Garrett Wollman
656dcd4316 Delete bogus referneces to timezone code internal header file `tzfile.h',
which is no longer bogusly installed in /usr/include.
1995-08-07 19:17:46 +00:00
Rodney W. Grimes
7799f52a32 Remove trailing whitespace. 1995-05-30 06:41:30 +00:00
Guido van Rooij
c8945315ef Set copyright so we can actually distribute and use it.
Reviewed by:	David Greenman
Submitted by:	Wietse Venema
Obtained from:
1995-05-19 09:53:51 +00:00
Rodney W. Grimes
a164d484cd Fix spelling error that keeps this from compiling with KERBEROS & SKEY
defined.

Submitted by:	Mark Murray <mark@grondar.za>
1995-04-16 20:00:21 +00:00
Garrett Wollman
ed8be72c29 Disallow Kerberos when S/Key is required. Fixes PR #339.
Submitted by: Paul Traina <pst@Shockwave.com>
1995-04-13 15:20:35 +00:00
Nate Williams
c36c788214 Change the library order so libcrypt is the last library in the list.
libskey contains references to _crypt and can't resolve it unless
-lcrypt occurs after it in the link command.  This only occurs when
linking statically.
1995-03-18 17:18:15 +00:00
Garrett Wollman
2ade60ce3c In the non-PARANOID case, make sure to set `notickets' to 0 sothat login.c
doesn't complain.
1995-01-20 23:07:10 +00:00
Garrett Wollman
758f3a64bd Modify klogin to:
1) Don't spit out an error message if Kerberos is installed but not yet
   set up.

2) Don't attempt to verify the ticket you got back, as workstations
   are not intended to have srvtab files of their own.

Both behaviors can be re-enabled with KLOGIN_PARANOID.
1995-01-14 22:57:41 +00:00
Ugen J.S. Antsilevich
57476d2f22 Sorry..forgot something for yesterdays login patch..
(Umm..i hope nobody "make world" this time:)
1994-12-01 12:35:54 +00:00
Ugen J.S. Antsilevich
6dc4937281 Patch of password expired bug.
Now password changed for right user and
no longer possible to skip password change.
I hope it will be ok....
1994-11-30 15:40:09 +00:00
Garrett Wollman
a38c3127e1 Add distribution=krb for P-HK 1994-11-20 23:23:28 +00:00
Paul Traina
2ddadf840c Include most of the logdaemon v4.4 S/key changes 1994-10-19 00:03:45 +00:00
Geoff Rehmet
3c6459e594 Undo damage done between revisions 1.6 and 1.7
(Guys, please don't DAMAGE commits that have just gone in.)
1994-09-30 13:26:15 +00:00
Paul Traina
c9bdc15213 Install support for skey and login.access 1994-09-29 18:59:15 +00:00
Geoff Rehmet
c368d11dd2 First level of changes for bringing in eBones (kerberos).
- Get rid of inverse logic (NOKERBEROS and NOEBONES) in src/makefile,
and replace with MAKE_KERBEROS and MAKE_EBONES.  (Far fewer contortions,
and both default to off.)  IF YOU WANT KERBEROS, YOU HAVE TO EXPLICITLY
DEFINE ONE OF THESE.
- Make Makefiles kerberos-aware.
1994-09-29 13:06:54 +00:00
Jordan K. Hubbard
83274713b2 Problem:
Accounts that have "pw_change" set, are supposed to change their passwords
by the date specified in "pw_change".  If they have not changed their passwords
by that date, currently they get "LOCKED OUT" of the system.  This is not the
correct behavior, the user should be prompt (forced?) to change their password
at this time.  If the behavior of "pw_change" was meant to be a LOCKOUT,
then you should use "pw_expire".

Solution:
     Instead of locking out the user, prompt them to change their password.

Reviewed by:	jkh
Submitted by:	rls
1994-09-07 01:42:29 +00:00
Guido van Rooij
f88fe8675b Implemnet fbtab ala SunOS (thanks to WZV, see login_fbtab.c)
Reviewed by:
Submitted by:	guido
1994-08-22 19:56:14 +00:00
Guido van Rooij
7c4c6e58ba Add skey supprot
Reviewed by:
Submitted by:	guido
1994-08-21 19:26:22 +00:00
Geoff Rehmet
4714bb15be LDADD= -lcrypt
Submitted by:	Geoff
1994-08-20 21:19:46 +00:00
Garrett Wollman
b4e99cd8d6 Don't compile with kerberos yet, we aren't ready. 1994-08-05 20:32:22 +00:00
Rodney W. Grimes
9b50d90275 BSD 4.4 Lite Usr.bin Sources 1994-05-27 12:33:43 +00:00