Commit Graph

263 Commits

Author SHA1 Message Date
Yoshinobu Inoue
4dd8b5ab79 another tcp apps IPv6 updates.(should be make world safe)
ftp, telnet, ftpd, faithd
  also telnet related sync with crypto, secure, kerberosIV

Obtained from: KAME project
2000-01-27 09:28:38 +00:00
Kris Kennaway
97b2ed56f8 Import the RSA support code. There shouldn't be any actual RSA
cryptography here.
2000-01-16 05:14:57 +00:00
Kris Kennaway
72b2312537 This commit was generated by cvs2svn to compensate for changes in r56083,
which included commits to RCS files with non-trunk default branches.
2000-01-16 05:14:57 +00:00
Kris Kennaway
d9d4eec9ea Fix for missing symbol in -DRSAref case. 2000-01-16 04:45:18 +00:00
Kris Kennaway
ce600b6ae6 Fix breakage when NO_RSA specified.
Reviewed by:	Ben Laurie <ben@openssl.org>
2000-01-14 05:24:08 +00:00
Kris Kennaway
62410b5785 Zap NO_IDEA 2000-01-10 06:28:04 +00:00
cvs2svn
2b11cf855f This commit was manufactured by cvs2svn to create branch
'VENDOR-crypto-openssl'.
2000-01-10 06:27:13 +00:00
Kris Kennaway
196e8792a2 List of files to nuke prior to import. 2000-01-10 06:27:12 +00:00
Kris Kennaway
7466462628 Initial import of OpenSSL 0.9.4, sans IDEA and RSA code for patent
infringement reasons.
2000-01-10 06:22:05 +00:00
Kris Kennaway
07bb8677bb This commit was generated by cvs2svn to compensate for changes in r55714,
which included commits to RCS files with non-trunk default branches.
2000-01-10 06:22:05 +00:00
Kris Kennaway
808811401e Zap the IDEA stuff - it's patented internationally (at least in some
places), and we don't want people to get in trouble just for having it.
2000-01-10 05:36:35 +00:00
Mark Murray
b528cefc6b Import KTH Heimdal, which will be the core of our Kerberos5.
Userland to follow.
2000-01-09 20:58:00 +00:00
Mark Murray
5f1c68f748 This commit was generated by cvs2svn to compensate for changes in r55682,
which included commits to RCS files with non-trunk default branches.
2000-01-09 20:58:00 +00:00
Mark Murray
660a5f4353 Fix path. 2000-01-09 13:52:56 +00:00
Mark Murray
0f2b69ce58 resolve conflicts. 2000-01-09 08:53:35 +00:00
Mark Murray
8e2795854b Clean import of KTH Kerberos (eBones) v1.0. 2000-01-09 08:31:47 +00:00
Mark Murray
38392ffddd This commit was generated by cvs2svn to compensate for changes in r55643,
which included commits to RCS files with non-trunk default branches.
2000-01-09 08:31:47 +00:00
Brian Feldman
0e17bca17c Upgrade to the pam_ssh module, version 1.1..
(From the author:)
Primarily, I have added built-in functions for manipulating the
environment, so putenv() is no longer used.  XDM and its variants
should now work without modification.  Note that the new code uses
the macros in <sys/queue.h>.

Submitted by:	Andrew J. Korty <ajk@iu.edu>
1999-12-28 05:32:54 +00:00
Kris Kennaway
f595284587 Initial import of OpenSSL v0.9.4 1999-12-25 16:37:36 +00:00
Kris Kennaway
77142bf48c This commit was generated by cvs2svn to compensate for changes in r55099,
which included commits to RCS files with non-trunk default branches.
1999-12-25 16:37:36 +00:00
Brian Feldman
b71e3dafa5 Add the PAM SSH RSA key authentication module. For example, you can add,
"login  auth    sufficient      pam_ssh.so" to your /etc/pam.conf, and
users with a ~/.ssh/identity can login(1) with their SSH key :)

PR:		15158
Submitted by:	Andrew J. Korty <ajk@waterspout.com>
Reviewed by:	obrien
1999-11-29 07:09:44 +00:00
Mark Murray
99a2afa8ae Merge anf fix for build. 1999-09-19 21:56:09 +00:00
Mark Murray
f4c5d10e69 Clean import of KTH krb4-0.10.1. 1999-09-19 14:19:32 +00:00
Mark Murray
3766ed332b This commit was generated by cvs2svn to compensate for changes in r51415,
which included commits to RCS files with non-trunk default branches.
1999-09-19 14:19:32 +00:00
Mark Murray
e0706c85f3 Big OpenSSL/KTH/FreeBSD merge, badly poisoned by $FreeBSD$'s. 1999-09-19 13:04:49 +00:00
Mark Murray
056bcb03a1 This commit was generated by cvs2svn to compensate for changes in r50894,
which included commits to RCS files with non-trunk default branches.
1999-09-04 12:45:43 +00:00
Mark Murray
68084c2752 Vendor import EAY's LIBSSL to fix comments, etc. 1999-09-04 12:45:43 +00:00
Mark Murray
ddf3225c81 Add macro originally provided externally. 1999-09-04 11:06:07 +00:00
Mark Murray
b711a41f78 Add includes to to silence warnings. Bit hackish. 1999-09-04 11:03:01 +00:00
Mark Murray
68212f753a Add some includes to shut up warnings. 1999-09-04 10:46:27 +00:00
Mark Murray
21424c1a5c Drat. Import this into the right place. Pass me the pointy hat. 1999-09-01 19:59:25 +00:00
Mark Murray
778981c288 This commit was generated by cvs2svn to compensate for changes in r50760,
which included commits to RCS files with non-trunk default branches.
1999-09-01 19:59:25 +00:00
Mark Murray
2d8a17c768 Termcap header no longer needed. 1999-09-01 18:57:38 +00:00
Peter Wemm
97d92980a9 $Id$ -> $FreeBSD$ 1999-08-28 01:35:59 +00:00
Mark Murray
c6e775b83f Add virtual MAINTAINER line. 1999-08-16 19:05:02 +00:00
Nick Sayer
610fe6066a According to Mark Murray, Makefiles do not belong here. I guess we're
going to have to figure something else out.
1999-08-16 18:59:05 +00:00
Nick Sayer
0f8c8396c5 Add SRA authentication to src/crypto/telnet.
SRA does a Diffie-Hellmen exchange and then DES-encrypts the
authentication data. If the authentication is successful, it also
sets up a session key for DES encryption.

SRA was originally developed at Texas A&M University.

This code is probably export restricted (despite the fact that I
originally found it at a University in Germany).

SRA is not perfect. It is vulnerable to monkey-in-the-middle attacks
and does not use tremendously large DH constants (and thus an individual
exchange probably could be factored in a few days on modern CPU
horsepower). It does not, however, require any changes in user or
administrative behavior and foils session hijacking and sniffing.
The goal of this commit is that telnet and telnetd end up in the DES
distribution and that therefore an encrypted session telnet becomes
standard issue for FreeBSD.
1999-08-16 11:24:29 +00:00
Nick Sayer
c6a00c4589 Fix int function without return (make consistent with neighbors) 1999-08-16 02:15:29 +00:00
Nik Clayton
8c47947a95 Document the "skey" command in telnet(1).
PR:             docs/12360
Submitted by:   kjm@rins.ryukoku.ac.jp (KOJIMA Hajime)
Nagged by:      markm :-)
1999-07-30 21:24:03 +00:00
Ruslan Ermilov
42cf8219dc Merge from non-crypto version:
- "-N" option
- "-E" security fix
- "-s src_addr" option

Requested by:	markm
1999-06-17 09:24:37 +00:00
Brian Somers
4560ea546c MF libexec/telnetd: Determine the host name using an array size of
MAXHOSTNAMELEN and call trimdomain() before implementing
                    the -u option.
1999-04-08 21:39:34 +00:00
Brian Somers
22e99a4288 MF libexec/telnetd: MAXHOSTNAMELEN & -u fixes. 1999-04-07 10:17:24 +00:00
Brian Somers
9c5cc7136c Use realhostname(). 1999-04-06 23:35:21 +00:00
Brian Somers
3bfc6c798d MF src/libexec/telnetd: Verify the reverse DNS lookup
ala rlogind.
Suggested by: markm
1999-04-06 12:41:27 +00:00
Peter Wemm
8d0a3d19f7 Old stuff laying around: Don't use getstr which can conflict with some
curses/termcap/terminfo implementations and causes recursion.
1998-12-16 06:06:06 +00:00
Peter Wemm
3f0340f838 Old stuff from a source tree: copy (verbatum) the code to expand the
%s/%m in the default /etc/gettytab.
1998-12-16 06:01:33 +00:00
Gary Palmer
f58619de89 Remove redundant decl. of time(). Causes problems on alpha 1998-09-01 15:17:28 +00:00
John Polstra
f55ccce3ca Remove a work-around for an assembler bug that has been fixed since
April, 1997.  The work-around causes problems under ELF.
1998-08-31 20:01:48 +00:00
Mark Murray
a783721299 Fix nasty typo that randomly caused kinit to not properly deduce the
user's username when this was not specified.

Reported by: Sean Eric Fagan
1998-03-29 07:27:43 +00:00
Mark Murray
22b8189d67 Make the ticket filename the same as for our old eBones. I am going to
kerberize xdm again, and it will be a pain to maintain two different
sets of patches (for 2.2 and 3.0).
1998-02-16 12:39:25 +00:00
Mark Murray
879e5f26e8 Bring back the old behaviour of kinit; if no username is mentioned on
the command line, attempt to get a ticket for the current uid (or
<uid>.root if we are already su'ed).

Requested By: Garrett Wollman
1998-02-16 12:36:49 +00:00
Warner Losh
d82dcd5eaf MFC: sprintf paranoia 1998-01-22 00:04:57 +00:00
Philippe Charnier
81e04eaec0 MFC: no \n in syslog strings. Change -P to -p in flags. EOF -> -1. Use err(3). 1997-12-08 07:41:13 +00:00
Mark Murray
b50a9aa790 kinit(1) and its man page do not agre on what is reported with -v. Fix this.
Submitted by:	Sheldon Hearn.
1997-11-25 21:12:37 +00:00
Frank Durda IV
bf7bcc34e1 PR: bin/771 and bin/1037 are resolved by this change
This change changes the default handling of linemode so that older and/or
stupider telnet clients can still get wakeup characters like <ESC> and
<CTRL>D to work correctly multiple times on the same line, as in csh
"set filec" operations.   It also causes CR and LF characters to be read by
apps in certain terminal modes consistently, as opposed to returning
CR sometimes and LF sometimes, which broke existing apps.  The change
was shown to fix the problem demonstrated in the FreeBSD telnet client,
along with the telnet client in Solaris, SCO, Windows '95 & NT, DEC OSF,
NCSA, and others.

A similar change was incorporated in the non-crypto version of telnetd.

This resolves bin/771 and bin/1037.
1997-10-08 03:14:34 +00:00
Wolfram Schneider
bf5cbf3551 Sort cross refereces in section SEE ALSO. 1997-09-29 19:11:55 +00:00
Mark Murray
9bfd2669e9 FreeBSD's original passwd helper is needed here. 1997-09-21 17:37:08 +00:00
Mark Murray
04c426cce3 Bring the FreeBSD changes to the virgin sources. 1997-09-07 07:02:53 +00:00
Mark Murray
f48c26f183 FreeBSD specific schanges - mainly religious issues about where to put
stuff.
1997-09-04 21:37:57 +00:00
Mark Murray
81cb6ddccd Initial import of BSD telnet. This will be used to build the kerberised
telnet, and after userland diffs have been merged in, will be used to
build the non-kerberised sources as well. (See unifdef(1) for details)
1997-09-04 06:11:16 +00:00
Mark Murray
03656ac1b0 Initial import of KTH eBones. This has been cleaned up to only include
the "core" Kerberos functionality. The rest of the userland will get their
own changes later.
1997-09-04 06:04:33 +00:00
Mark Murray
4a1db16b66 This commit was generated by cvs2svn to compensate for changes in r29085,
which included commits to RCS files with non-trunk default branches.
1997-09-04 06:04:33 +00:00
Mark Murray
f3a5dfab63 Bring in the Starter files for the contrib-crypto dir.
I am not going to commit anything to this area for a few days.
This is because
1) I want everyone to be DARN sure there is no export of crypto
   that may get our USA friends it trouble.
2) I have been asked by the folk developing KTH-eBones to hold off
   for their new release.

Worked with: rkw, jdp
CVS:
CVS:
1997-05-03 09:16:07 +00:00