These are the start of a lot of work to clean up the FreeBSD eBones code.
these changes include, but are not limited to:
- Create prototypes for all the library routines
- Make all the libraries compile clean with -Wall set
- Fix numerous small bugs shown up in the above process
- Prepare the code for libdes's removal to secure/
- add register, registerd and make_keypair to the make
Lots more will follow in days to come.
OK'ed by: rgrimes
the slave server).
NOTE: This code should not be built, there is no documentation, and this
method of database transfer is highly suboptimal. It's here just
for those of us who actually have multiple K4 servers and want
something more secure than the other distribution mechanisms.
Obtained from: MIT Project Athena
kerberos databases to slave servers.
NOTE: This method was abandoned by MIT long ago, this code is close to
garbage, but it is slightly more secure than using rdist.
There is no documentation available on how to use it, and
it should -not- be built by default.
Obtained from: MIT Project Athena
Sync with Mark M's latest suggestions.
Submitted by: markm
[This is being pulled from RELENG_2_0_5, it was commited there after the
release, and we need it here and in RELENG_2_1_0, it will be cvs admin -o'ed
off the RELENG_2_0_5 branch after this commit.]
not specified (default case).
Use _PATH_* for utmp/wtmp.
Support for >32 PTYs.
>Submitted by: Heikki Suonsivu <hsu@cs.hut.fi>
Plug already known security hole. (Brought over from 1.1.5):
Fixed security problem with telnetd, which allowed
telnet -l -hcert.org localhost
to change the user's host in utmp.
Thanks to Matthew Green <mrgreen@@mame.mu.oz.au> for showing me this one.
>Reviewed by: karl, guido
>Submitted by: mrgreen@mame.mu.oz.au
Obtained from: FreeBSD insecure telnetd
causes some clients that do not support linemode to mis-interpret the return
key (i.e. double returns).
The fix is to only do the state check for binary options if linemode will
be used.
Closes PR#505.
Submitted by: Charles Henrich
Obtained from: FreeBSD insecure telnetd
cleanup routine, we don't look at bogus data to determine wheter or not
to free the fields of the hostdata struct. This cures the "klogin segfaults
when no kerberos servers are availible" problem.
