Commit Graph

39 Commits

Author SHA1 Message Date
Ceri Davies
3213dc8412 Create group ftp by default. This is gid 14 as this is the historical
id used by sysinstall when enabling anonymous FTP.

Change the default group used by sysinstall for setting up anonymous FTP
from operator to ftp; there is no reason to use operator and there are
potential security issues when doing so.

PR:		93284
Approved by:	ru (mentor)
Reviewed by:	simon
2007-06-11 18:36:39 +00:00
John Baldwin
9d4514b0fd Fix numerous warnings. Aside from menu items in system.c and menu.c
this now compiles on i386 with WARNS?= 3.  Most of the fixes included
adding missing 'static' keywords to internal functions, using fully-defined
terminators in statically defined arrays of structs, and various
signed vs unsigned mismatches.  Also G/C'd unused configSecurity()
function.
2006-02-28 21:49:33 +00:00
Ceri Davies
c371d3ffd7 If sysinstall was used to configure an anonymous FTP area, it was
possible for information to be copied from the group file to the group
file in the FTP area.  This patch based on a patch from Zak Johnson
<zakj at nox dot cx>.

PR:		bin/25851
Submitted by:	Ted Mittelstaedt <tedm at toybox punkt placo period com>
Approved by:	jhb (proxy mentor)
MFC after:	3 days
MFC to:		RELENG_5, RELENG_6
Security:	Prevents possible group information leakage
2006-01-15 22:57:17 +00:00
Ceri Davies
80ed316e5c Correct obsolete chown syntax.
PR:		bin/90057
Submitted by:	Charlie M. McDonald <BoredOutkast at yahoo punkt com>
Approved by:	jhb (mentor by proxy)
MFC to:		RELENG_5, RELENG_6
MFC After:	3 days
2006-01-15 22:42:38 +00:00
John Baldwin
60ede768f7 Various updates to the anonymous ftp support:
- Allow the upload directory to be optional.  If the upload directory
  field is cleared to the empty string then no directory will be created.
- Don't create a bin/ subdirectory in ftp's home dir containing ls(1) and
  date(1) as ftpd(8) no longer requires it.
- Create a pwd.db file in etc/ instead of a passwd file.
- Ignore NIS compat entries in /etc/group and /etc/master.passwd when
  building the anonymous files.

PR:		bin/60662
Submitted by:	Olafur Osvaldsson oli at isnic dot is
2004-11-16 19:06:42 +00:00
Bruce Evans
03f0d9e8ae Fixed assorted misuses of NULL in integer context. 2004-03-11 11:58:16 +00:00
Jens Schweikhardt
5333b7726b Typo: s/seperately/separately
PR:		misc/41235
Submitted by:	Fesskat Tudeer <freebsd-fesskat@fesskat.org>
MFC after:	3 days
2002-08-06 20:36:02 +00:00
Murray Stokely
9838440951 Silence warnings :
Use static as necessary.
   Use __unused as necessary.
   sizeof(int) != sizeof(void *)
2001-09-22 22:21:01 +00:00
Robert Watson
0c09bcb0e8 Compensate for default disabling of network services in inetd.conf(5)
by providing the opportunity to edit inetd.conf during the system
installation process.  The following modifications were made:

(1) Expand the Anonymous FTP description dialog to indicate that inetd
    and ftpd must be enabled before it can be used.

(2) Introduce a new configInetd() pair of dialogs, the first describing
    inetd, giving a couple of examples of services that require it, and
    hinting at potential risk, then asking the user if they wish to
    enable it.  The second indicates that inetd.conf must be configured
    to enabled specific services, and asks if the user would like to
    load inetd.conf into the editor to modify it.  Add this
    configuration action to the index.

There are some further improvements that might be considered:

(1) Provide a more inetd.conf-specific configuration tool that speaks
    inetd.conf(5).  However, this is made difficult by the "yet another
    configuration format" nature of inetd.conf, as well as its use of
    commenting to disable services, rather than an in-syntax way to
    disable a service without commenting it out.  Submissions here
    would probably be welcome.

(2) There's some overlap between settings in the somewhat obtuse
    Security Profile mechanism and other settings, including the inetd
    setting, and NFS server configuration.  As features become
    individually tunable, they should probably be removed from the
    security profile mechanism.  Otherwise, somewhat counter-intuitively,
    sysinstall (in practice) queries multiple times whether inetd, nfsd,
    etc, should be enabled/disabled.  A possible future direction might
    be to drive profiles not by degree of paranoia, rather, the set
    of services desired.  Or simply to remove the Security Profile
    mechanism and resort to feature-driven configuration.

Reviewed by:	imp, chris, jake, nate, -arch, -stable
2001-08-02 03:25:16 +00:00
Kris Kennaway
a015c9348c Mark relevant functions __printflike()/__printf0like() and silence some of
the non-constant format string warnings.

MFC after:	1 week
2001-07-05 09:51:09 +00:00
Jordan K. Hubbard
81d1d8979b Argh, this is what I get for testing, making one last "harmless cosmetic
tweak" and then committing.  /me got what he deserved, an embarassing build
failure.
2000-01-25 19:16:31 +00:00
Jordan K. Hubbard
c798682445 o Fix http proxy code for various extentions and deal with FTP archive
format changes.

o Make anonymous ftp setup more analy retentive.

PR:		16070
Submitted by:	Philipp Mergenthaler <un1i@rz.uni-karlsruhe.de>
2000-01-25 05:56:49 +00:00
Jordan K. Hubbard
61547e027b In retrospect, msgNotify() should leave its contents on the screen
longer to give the user something to look at while things are happening.
Change it to do so and insert the appropriate screen saves elsewhere.
1999-12-17 02:46:04 +00:00
Jordan K. Hubbard
7025aeb16e Completely rip-out and redesign sysinstall's refresh model as well
as redoing all the menus to have proper, or at least non-hallucinogenic,
keyboard accelerators.

This requires my recent update to libdialog to work properly and will
probably also exhibit some other "interesting" behavior while the last
few missing screen clears are found (which is why I'm not going to MFC
immediately).  At least now, however, sysinstall does not gratuitously
redraw random screens at the drop of a hat and drive serial console
installers out of their minds.
1999-12-14 04:25:29 +00:00
Peter Wemm
97d92980a9 $Id$ -> $FreeBSD$ 1999-08-28 01:35:59 +00:00
Jordan K. Hubbard
63cad5499d Totally change the way variables are accounted for in sysinstall.
Now we know which variables are internal and which need to be
backed to /etc/rc.conf.site.  rc.conf is not touched now.

Also kget kernel change information back properly and set up a loader.rc
file to use it.
1999-02-05 22:15:52 +00:00
Jordan K. Hubbard
45dbe89080 Sync up to current state of development. 1997-04-02 12:07:39 +00:00
Jordan K. Hubbard
7c8f98f5b7 Add a registration screen so we can finally start counting our little user
puppies.
1997-03-09 22:25:49 +00:00
Jordan K. Hubbard
8055777430 It's easier to go forwards than backwards with this, and the RELENG_2_1_0
sysinstall was already broken (I think there's a PR for this somewhere).
This will require some additional changes elsewhere, like bringing in pw.
1997-02-07 04:27:24 +00:00
Jordan K. Hubbard
1130b656e5 Make the long-awaited change from $Id$ to $FreeBSD$
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.

Boy, I'm glad we're not using sup anymore.  This update would have been
insane otherwise.
1997-01-14 07:20:47 +00:00
Jordan K. Hubbard
e5b09b7d10 Do something I've wanted to do for quite some time - collapse all the
common layout code into some work functions and make all the layout-using
routine adopt them.  Also reorganize includes and generally clean up.
1997-01-03 06:32:39 +00:00
Jordan K. Hubbard
00b69db338 As Paul has just pointed out, much of my strncpy() usage was either
bogus or overly complex and really needed to be done more consistently
and sanely throughout - no question about it.  Done.

Suggested-By: Paul Traina <pst@Shockwave.COM>
1996-12-09 08:22:19 +00:00
Jordan K. Hubbard
1b455eeb3f Close a security hole in anonymous ftp setup.
Submitted-By: Jason Garman <garman@phs.k12.ar.us>
1996-09-06 05:58:27 +00:00
Jordan K. Hubbard
dc8b2dd7d1 Simplify some dialogs on the basis of my changes to ui_objects.c in libdialog.
Also update copyright notices.
1996-09-01 08:17:14 +00:00
Jordan K. Hubbard
96a9d7fb41 Try to make screen update more efficient (less flickering) by more
judicious use of dialog_clear_norefresh().
1996-08-03 10:11:56 +00:00
Jordan K. Hubbard
89592e552b Fix an ancient index list bug.
Make FTP re-initializion work.
Fix fix fix.
1996-04-28 03:27:26 +00:00
Jordan K. Hubbard
3174386dd6 Move some of functions around in order to make this stuff easier
to work on.
1996-04-28 01:07:27 +00:00
Jordan K. Hubbard
2113a60c4b Bring this into sync.
I still have a _very very annoying_ display bug which occurs when a menu
item causes a submenu to be displayed - the screen repaints for the original
menu (which is restored upon return from the submenu) are off by about 4
characters.  I've tried restoring the screen, the cursor position, you name
it - same deal.  Grrrr!  This commit is my first step in trying to get someone
else to help me look into this one since I'm just tearing my hair out at this
point!
1996-04-23 01:29:35 +00:00
Jordan K. Hubbard
af4cbec4e1 1. Update all the copyrights to delete useless clauses 3 and 4.
2. Change more of the menu code over to new system.
3. Streamline label editor.
1996-04-13 13:32:15 +00:00
Jordan K. Hubbard
957bdf511e Major surgery.
1. Use new dialog menu hacks (no strings, just arrays of dialogMenuItem structs)
   so that I can create composite menus with radio/checkbox/... items in them,
   removing some long-standing UI bogons in various menus.  This work isn't
   finished yet, but will be done in two phases.  This is phase one.

2. Remove all the script installation stuff.  I never got time to document it,
   it was arcane and it just complicated much of the code.  There are better
   ways of doing this if I want to do auto-driven installations later.

3. Remove much dead code and otherwise attempt to remove as much historical
   grot as possible so that this code is easier to hack on.  This is also
   a two-stage process, phase one of which is now complete.
1996-04-07 03:52:36 +00:00
Jordan K. Hubbard
f83d520da4 Make the editor a selectable option. Some people don't care for `ee'! 1996-03-23 07:21:31 +00:00
Jordan K. Hubbard
40ae4689df Lots of fixes:
1. Revamp package installer to use new dependency lists and also
   pkg_add's new `read from stdin' mode to prevent a copy of the package
   from hitting the disk unnecessarily.

2. More fixes for running "not as init" - don't get upset if CDROM already
   mounted, do the right thing instead.

3. If running as init, assume first-time install and _don't show the
   (W)rite option in the fdisk screen.

4. Many other little tweaks, some of which will have to wait for fuller testing
   until I can create a boot floppy (testing certain system-destroying
   features of sysinstall can be a royal pain).  Expect some more commits.
1996-03-18 15:28:10 +00:00
Jordan K. Hubbard
e07e86d046 Miscellaneous cleanup before big round of menu restructuring (to use new
libdialog features).
1996-03-02 07:31:58 +00:00
Jordan K. Hubbard
bfa80732bd Make editor start on right screen for anonFTP setup.
Don't clobber mediaDevice if post-configuring networking from CDROM.
1995-11-12 07:27:58 +00:00
Jordan K. Hubbard
5b5222d0c0 Add verbosity to add in tracking a mystery sig-11 with this.. 1995-11-11 11:56:40 +00:00
Jordan K. Hubbard
5ea15b92f1 Fix some missing parameters to the anon ftp setup area. 1995-11-11 11:49:22 +00:00
Jordan K. Hubbard
89a437bf6a Various cosmetic tweaks. 1995-11-11 10:59:23 +00:00
Jordan K. Hubbard
56d73bb085 Tweaks to anon ftp setup.
Submitted by:	coranth
1995-11-10 04:43:47 +00:00
Jordan K. Hubbard
4652247a48 o Now that Coranth has made the anonymous FTP configuration not use adduser,
bring it back.
o Simplify the vsystem() call by ripping out a good deal of the extraneous grot.
1995-11-09 02:32:05 +00:00