These are the start of a lot of work to clean up the FreeBSD eBones code.
these changes include, but are not limited to:
- Create prototypes for all the library routines
- Make all the libraries compile clean with -Wall set
- Fix numerous small bugs shown up in the above process
- Prepare the code for libdes's removal to secure/
- add register, registerd and make_keypair to the make
Lots more will follow in days to come.
OK'ed by: rgrimes
the slave server).
NOTE: This code should not be built, there is no documentation, and this
method of database transfer is highly suboptimal. It's here just
for those of us who actually have multiple K4 servers and want
something more secure than the other distribution mechanisms.
Obtained from: MIT Project Athena
kerberos databases to slave servers.
NOTE: This method was abandoned by MIT long ago, this code is close to
garbage, but it is slightly more secure than using rdist.
There is no documentation available on how to use it, and
it should -not- be built by default.
Obtained from: MIT Project Athena
Sync with Mark M's latest suggestions.
Submitted by: markm
[This is being pulled from RELENG_2_0_5, it was commited there after the
release, and we need it here and in RELENG_2_1_0, it will be cvs admin -o'ed
off the RELENG_2_0_5 branch after this commit.]
not specified (default case).
Use _PATH_* for utmp/wtmp.
Support for >32 PTYs.
>Submitted by: Heikki Suonsivu <hsu@cs.hut.fi>
Plug already known security hole. (Brought over from 1.1.5):
Fixed security problem with telnetd, which allowed
telnet -l -hcert.org localhost
to change the user's host in utmp.
Thanks to Matthew Green <mrgreen@@mame.mu.oz.au> for showing me this one.
>Reviewed by: karl, guido
>Submitted by: mrgreen@mame.mu.oz.au
Obtained from: FreeBSD insecure telnetd
causes some clients that do not support linemode to mis-interpret the return
key (i.e. double returns).
The fix is to only do the state check for binary options if linemode will
be used.
Closes PR#505.
Submitted by: Charles Henrich
Obtained from: FreeBSD insecure telnetd
cleanup routine, we don't look at bogus data to determine wheter or not
to free the fields of the hostdata struct. This cures the "klogin segfaults
when no kerberos servers are availible" problem.
then goes into all the directories a `make kprog' would have and
does it there, too. This should complete the krbdist, except that P-HK
has to figure out where in his build process he wants to build and install
this stuff.
- register, registerd, and make_keypair don't compile (and are bogus anyway)
- don't forget to put back the obj directory when doing `kprog'
- while we're at it make the `kprog' commands overrideable from the command
line
- add a bootstrap target which does the following:
install includes
cleandir and obj
zap old version 4.0 shared libraries (these will screw the build)
depend all install
rebuild stuff in the main source tree which depends on kerberos
(Including all changes for FreeBSD - importing the original eBones distribution
would be too complex at this stage, since I don't have access to Piero's
CVS.)
(If you want to include eBones in your system, don't forget to include
MAKE_EBONES in /etc/make.conf.)
(This stuff is now also suppable from braae.ru.ac.za.)
Bones originally from MIT SIPB.
Original port to FreeBSD 1.x by Piero Serini.
Moved to FreeBSD 2.0 by Doug Rabson and Geoff Rehmet.
Nice bug fixes from Doug Rabson.
