Commit Graph

35 Commits

Author SHA1 Message Date
Mark Murray
3e8af2321b Use KJH's auth.conf parser to turn on/off Kerberos in userland. 1998-10-09 06:47:57 +00:00
David E. O'Brien
be0cde6f10 Remove useless `BINOWN=root' now that it is the default. 1998-09-19 22:42:06 +00:00
John Birrell
e00072f9f4 Add -lcrypt when building kerberos. 1998-09-05 00:32:27 +00:00
Mark Murray
448bbb5805 Fix LIBDIR (for aout/ELF). 1998-08-06 21:41:13 +00:00
Mark Murray
9de765d73b Rats. I was too fast here. Re-enable SUID mode for the non-Kerberos
case.
1998-03-26 19:43:06 +00:00
Mark Murray
42873e5755 Quite a while back KTH (who are the good folks who wrote our KerberosIV)
announced a K4 weakness with their rsh/rlogins. We were not put in any
danger by this, as we were not using KTH rlogin/rsh, but the patches
in themselves, had some good points. This lot means we can run our
rlogin without it being SUID root. Win win win. There are other KTH
cleanups as well.
1998-03-26 18:03:41 +00:00
Mark Murray
7f80a02080 Changes for KTH KerberosIV.
Also quieten -Wall a bit.
1997-09-28 08:57:24 +00:00
Philippe Charnier
4c26232f70 Use err(3). Document -l flag.
Obtained from: OpenBSD
1997-08-05 06:46:46 +00:00
Peter Wemm
65b3003d2d kill the undead 1997-07-13 14:26:00 +00:00
Bruce Evans
aac7bd5670 This commit was generated by cvs2svn to compensate for changes in r27241,
which included commits to RCS files with non-trunk default branches.
1997-07-06 06:54:14 +00:00
Bruce Evans
c44252b6e8 Finish importing Lite2's src/usr.bin, except for ex, diff, grep, mail,
pascal and vmstat.sparc.  All changed files on the vendor branch should
already have been imported.
1997-07-06 06:54:14 +00:00
Warner Losh
1c8af87873 compare return value from getopt against -1 rather than EOF, per the final
posix standard on the topic.
1997-03-29 04:34:07 +00:00
Mark Murray
81eb579301 Better buffer length calculation and overrun detection. Closes PR 2577
Submitted by:	Julian Assange
1997-02-09 21:34:14 +00:00
Wolfram Schneider
da1ff3cb8a Sort cross references. 1997-01-15 23:25:55 +00:00
Bruce Evans
eaa86f9d7f Don't use __dead or __pure in user code. They were obfuscations
for gcc >= 2.5 and no-ops for gcc >= 2.6.  Converted to use __dead2
or __pure2 where it wasn't already done, except in math.h where use
of __pure was mostly wrong.
1996-09-14 03:00:32 +00:00
Paul Traina
7f7e1b67ff Add Bruce's improvement to security patch 1996-07-25 18:27:40 +00:00
Paul Traina
caef76e8bd Do a bounds check on the strcpy of environment variables onto the stack. 1996-07-15 16:29:03 +00:00
Mark Murray
bbff7ca556 #include <kerberosIV/des.h> -> #include <des.h> 1996-02-11 09:18:18 +00:00
Mark Murray
5bf1814b0e Rename des_set_key -> des_set_key_krb. (libdes conflict) 1996-02-03 11:51:19 +00:00
Wolfram Schneider
818be56b8d Section FILES and SEE ALSO complete 1996-01-29 00:02:39 +00:00
Peter Wemm
6065a0be11 This commit was generated by cvs2svn to compensate for changes in r13122,
which included commits to RCS files with non-trunk default branches.
1995-12-30 19:02:48 +00:00
Justin T. Gibbs
f4390542d7 Kerberos can now deal with multi-homed clients.
Kerberos obtains a network address for the local host from the routing
tables and uses it consistently for all Kerberos transactions.  This ensures
that packets only leave the *authenticated* interface.  Clients who open
and use their own sockets for encrypted or authenticated correspondance
to kerberos services should bind their sockets to the same address as that
used by kerberos.  krb_get_local_addr() and krb_bind_local_addr() allow
clients to obtain the local address or bind a socket to the local address
used by Kerberos respectively.

Reviewed by: Mark Murray <markm>, Garrett Wollman <wollman>
Obtained from: concept by Dieter Dworkin Muller <dworkin@village.org>
1995-10-05 21:30:21 +00:00
Mark Murray
776955d918 Updating /usr/include/kerberosIV/des.h so eBones will build breaks
rcp and rlogin.
(patch supplied)

Submitted by:  John Capo <jc@irbs.com>
1995-09-10 14:59:51 +00:00
Andrey A. Chernov
a8729090ed Back out speed reducing to 38400 for old remote rlogind.
I do some digging out on this subject and found that remote
rlogind may reduce big speeds to 38400 by itself and (as more often
rlogind variant) speed setting ioctl fails, so speed left on 9600.
In all cases it doesn't do any real harm.
1995-08-03 23:54:49 +00:00
Andrey A. Chernov
263ac6e4b1 Reduce passed speed to 38400, like telnet does too.
Remote rlogind may not understand speeds > 38400.
1995-08-01 02:23:21 +00:00
Rodney W. Grimes
7799f52a32 Remove trailing whitespace. 1995-05-30 06:41:30 +00:00
David Greenman
fd409c37b9 Added "D" option to usage clause. 1995-05-03 06:55:19 +00:00
David Greenman
8d34651b6c Added a "-D" option to set the TCP_NODELAY socket option. 1995-05-03 06:25:56 +00:00
Garrett Wollman
a38c3127e1 Add distribution=krb for P-HK 1994-11-20 23:23:28 +00:00
Geoff Rehmet
c368d11dd2 First level of changes for bringing in eBones (kerberos).
- Get rid of inverse logic (NOKERBEROS and NOEBONES) in src/makefile,
and replace with MAKE_KERBEROS and MAKE_EBONES.  (Far fewer contortions,
and both default to off.)  IF YOU WANT KERBEROS, YOU HAVE TO EXPLICITLY
DEFINE ONE OF THESE.
- Make Makefiles kerberos-aware.
1994-09-29 13:06:54 +00:00
Doug Rabson
ab1698b3e9 Move the call to des_set_key to after the kerberos initialisation, removing
assumption about the implementation of des_read/des_write.
1994-09-26 09:22:08 +00:00
Andreas Schulz
222de0c67e Reviewed by:
Add entries for the speed 57600 and 115200 to the allowed speeds.
1994-09-06 11:17:30 +00:00
Geoff Rehmet
ffde931732 Removed des_rw.c from rlogin - this is now in libkrb.
I hope there will be no problems at the moment with programs depending
on this - I think Garrett has commented kerberos out of everything though
1994-08-07 20:56:28 +00:00
Garrett Wollman
580f1067d3 Don't use Kerberos yet, we aren't ready for it. 1994-08-05 20:39:34 +00:00
Rodney W. Grimes
9b50d90275 BSD 4.4 Lite Usr.bin Sources 1994-05-27 12:33:43 +00:00