Commit Graph

24 Commits

Author SHA1 Message Date
Andrey A. Chernov
9fe1a5aaab After some thinking implement alternative way:if it is impossible
to confirm password, don't tell that s/key required, but
ask for password in anycase. It looks like non-s/key system
from outside.
1996-10-18 16:52:33 +00:00
Andrey A. Chernov
4737abd588 Make PERMIT_CONSOLE to work not only from
/dev/console, but from syscons vty's too
1996-10-17 21:49:34 +00:00
Andrey A. Chernov
6903b42cd8 Change "nope" to ":"
Previous variant not work well, if you have a user with name nope
1996-10-17 16:47:22 +00:00
Andrey A. Chernov
811a3c8d54 Prevent namespace pollution cause by this library by splitting to
API and non-API functions and giving _sk_ prefix for all non-API
functions. Old names will be available by _SKEY_INTERNAL define
it allows not change anything in keyinit & key, only -D_SKEY_INTERNAL required.
Staticise some things.
1996-10-17 15:22:46 +00:00
Andrey A. Chernov
590b04e005 If 1) regular Unix passwords not permitted and 2) skey database
for this user not activated, there no correct password exist,
so don't bother ask for it and return "" immediately
1996-10-17 13:43:58 +00:00
Andrey A. Chernov
96b74d637f Make it work in localized environment, replace strftime's %b which can be
in national form with months names table
1996-10-17 12:45:39 +00:00
Peter Wemm
345be915f7 cmp -s || install -c ==> install -C 1996-08-30 02:12:07 +00:00
Jordan K. Hubbard
51295a4d3e General -Wall warning cleanup, part I.
Submitted-By: Kent Vander Velden <graphix@iastate.edu>
1996-07-12 18:57:58 +00:00
Joerg Wunsch
711e38f8ed /etc/skeykeys was basically suffering from the same vulnerability
as any non-shadowed /etc/passwd.  Ironically, all programs using S/Key
have already been setuid root except keyinfo(1).

This modification creates /etc/skeykeys with mode 0600 to prevent it
from being examined by ordinary users.
1996-04-26 21:33:18 +00:00
Peter Wemm
a5b996a7ec recording cvs-1.6 file death 1995-12-30 19:02:48 +00:00
Bruce Evans
48cfb668fc Change install' to ${INSTALL}' so that default install flags can be
specified in the top level Makefiles.

Previously I missed dozens of Makefiles that skip the install after
using `cmp -s' to decide that the install isn't necessary.
1995-08-06 12:24:38 +00:00
Rodney W. Grimes
d3628763db Merge RELENG_2_0_5 into HEAD 1995-06-11 19:33:05 +00:00
Rodney W. Grimes
6c06b4e2aa Remove trailing whitespace. 1995-05-30 05:51:47 +00:00
Andrey A. Chernov
c8448f10eb Change strtok() to strsep(), strtok() usage is depricated
in libraries.
1995-03-24 17:27:22 +00:00
Paul Traina
ab1a62c2a2 Remove extra newline. 1994-10-27 18:15:42 +00:00
Paul Traina
6d7d1e5932 new file does skey_getpass() support 1994-10-19 00:14:32 +00:00
Paul Traina
2ddadf840c Include most of the logdaemon v4.4 S/key changes 1994-10-19 00:03:45 +00:00
Paul Traina
bd5d6eecd0 Move skey.h back where it belongs 1994-09-29 19:27:35 +00:00
Paul Traina
d7e9de5e6e Install improved skey access code 1994-09-29 18:58:39 +00:00
David Greenman
9826cd3dfa Don't define LITTLE_ENDIAN is already defined. 1994-09-23 06:53:03 +00:00
Guido van Rooij
3653271054 Move skey.h to /usr/include so other packages will be able to use
libskey. (such as wu-ftp and xdm).
Editted skey so it matches the standard /usr/include way.
1994-06-02 20:25:30 +00:00
Paul Traina
0d92fee747 Clean up S/key library (libskey.a) so that filename access is via the
standard 4.4bsd pathnames mechanism.

Also document a potential security hole vs backwards compatibility tradeoff.
1994-05-27 07:50:08 +00:00
Guido van Rooij
dbd34b8383 Put md5.c copyright on md4.c. I contacted RSA inc. for that some time ago
but forgot to do it.

-Guido
1994-05-20 06:44:56 +00:00
Guido van Rooij
110af3d672 1) Added s/key support .
2  Added optional excessive login logging.
3) Added login acces control on a per host/tty base.
4) See skey(1) for skey descriptions and src/usr.bin/login/README
  for the logging and access control features.

-Guido
1994-05-19 18:13:11 +00:00