Commit Graph

68 Commits

Author SHA1 Message Date
ache
f87a14f2ec Comment out LDADD+=-ldescrypt, it is not yet active due to
missng defines for krb4encpwd and rsaencpwd and missing rsa library too.
1995-08-05 19:10:25 +00:00
ache
3e9799b158 Nuke one __FreeBSD__ left out
Reviewed by:
Submitted by:
Obtained from:
1995-08-04 03:02:30 +00:00
ache
25dcf9aae3 Change default banner to FreeBSD, properly ifdefed by __FreeBSD__
Reviewed by:
Submitted by:
Obtained from:
1995-08-04 00:12:08 +00:00
pst
4f18ad34c1 Update manual page to reflect "empty password" usage. 1995-08-03 16:23:12 +00:00
pst
f1d988f454 Null password should ask for random 1995-08-02 23:15:12 +00:00
pst
8d218a37bd Make the DB/DBM routines generic (ifdef FreeBSD considered evil), and
also fix a string allocation bug.

Submitted by: Havard Eidnes
1995-08-02 23:08:18 +00:00
pst
4273a0f56f This commit was generated by cvs2svn to compensate for changes in r9866,
which included commits to RCS files with non-trunk default branches.
1995-08-02 22:14:27 +00:00
pst
109eb67c2a Program to receive and process a new kerberos database (this is run on
the slave server).

NOTE: This code should not be built, there is no documentation, and this
      method of database transfer is highly suboptimal.  It's here just
      for those of us who actually have multiple K4 servers and want
      something more secure than the other distribution mechanisms.

Obtained from: MIT Project Athena
1995-08-02 22:14:27 +00:00
pst
019d88ee9f This commit was generated by cvs2svn to compensate for changes in r9864,
which included commits to RCS files with non-trunk default branches.
1995-08-02 22:11:44 +00:00
pst
ca1e73f49a Import an updated revision of the MIT kprop program for distributing
kerberos databases to slave servers.

NOTE: This method was abandoned by MIT long ago, this code is close to
      garbage,  but it is slightly more secure than using rdist.
      There is no documentation available on how to use it, and
      it should -not- be built by default.

Obtained from:	MIT Project Athena
1995-08-02 22:11:44 +00:00
gibbs
81842686f9 Make kadmind safe to run on multi-homed machines.
Reviewed by: Garrett A. Wollman (wollman@FreeBSD.org)
1995-08-02 18:31:08 +00:00
ache
5bd836c190 Final cleanup pass through Makefiles, now this stuff
autodetect kerberos/eBones and work even with eBones,
but with reduced functionality (don't pick up des/krb stuff
in this case)
1995-07-24 22:55:59 +00:00
ache
2abb3f187a Add -ldescrypt, or wrong crypt version can be picked from libc
Reviewed by:
Submitted by:
Obtained from:
1995-07-24 22:01:01 +00:00
ache
02f285eeb1 Add LDADD+= -ldescrypt
Reviewed by:
Submitted by:
Obtained from:
1995-07-24 21:57:58 +00:00
ache
7e1e5231a4 Move -ldes under kerb stuff, my fault
Reviewed by:
Submitted by:
Obtained from:
1995-07-24 21:49:06 +00:00
ache
8d6cb97e95 Since this stuff not works with eBones, ifdef kerberos stuff
with MAKE_KERBEROS to allow other things to live
Reviewed by:
Submitted by:
Obtained from:
1995-07-24 21:47:30 +00:00
ache
96d8cee523 Since this stuff not works with eBones, ifdef kerberos stuff
with MAKE_KERBEROS to allow other things to live
Submitted by:
Obtained from:
1995-07-24 21:38:32 +00:00
ache
cb87a42d33 Add comment about new_rnd_key.c module needed from original
libdes (and not present in eBones libdes)
1995-07-24 21:12:57 +00:00
ache
dcde8b5f80 Add comment about new_rbd_key.c module needed from
original libdes
1995-07-24 21:10:47 +00:00
ache
0551b03e78 Fix dependances, typing errors, etc.
Note: this thing need original libdes not Eric Young libdes from eBones
Submitted by:
Obtained from:
1995-07-24 20:40:03 +00:00
ache
2bad985464 Fix many bogus things, typing error, dependance errors, etc.,
now it compiles.
Note: this stuff requires original libdes, not libdes from
Eric Yang which we have in eBones.
1995-07-24 20:29:12 +00:00
rgrimes
8a414a2663 date: 1995/07/12 13:10:58; author: jkh; state: Exp; lines: +3 -2
Sync with Mark M's latest suggestions.
Submitted by:   markm

[This is being pulled from RELENG_2_0_5, it was commited there after the
release, and we need it here and in RELENG_2_1_0, it will be cvs admin -o'ed
off the RELENG_2_0_5 branch after this commit.]
1995-07-22 04:24:05 +00:00
pst
5b689f15e4 When hostname len > 8, name replaced with dot notation when -u flag
not specified (default case).
Use _PATH_* for utmp/wtmp.

Support for >32 PTYs.
>Submitted by:   Heikki Suonsivu <hsu@cs.hut.fi>

Plug already known security hole. (Brought over from 1.1.5):
Fixed security problem with telnetd, which allowed
   telnet -l -hcert.org localhost
to change the user's host in utmp.
Thanks to Matthew Green <mrgreen@@mame.mu.oz.au> for showing me this one.

>Reviewed by:    karl, guido
>Submitted by:   mrgreen@mame.mu.oz.au

Obtained from:	FreeBSD insecure telnetd
1995-07-20 12:35:01 +00:00
pst
d1a257b33a The final negotiation of DO_BINARY in the LINEMODE portion of the telnetd code
causes some clients that do not support linemode to mis-interpret the return
key (i.e. double returns).
The fix is to only do the state check for binary options if linemode will
be used.
Closes PR#505.

Submitted by:   Charles Henrich
Obtained from:	FreeBSD insecure telnetd
1995-07-20 12:32:40 +00:00
pst
d6b93135e2 Update telnet to the 95.05.31 release.
Obtained from:	Dave Borman <dab@cray.com>
1995-07-20 11:40:06 +00:00
rgrimes
1b1ee55538 Merge RELENG_2_0_5 into HEAD 1995-06-11 19:33:05 +00:00
rgrimes
a14d555c87 Remove trailing whitespace. 1995-05-30 06:41:30 +00:00
rgrimes
f3a2b348da Remove trailing whitespace. 1995-05-30 06:12:45 +00:00
wollman
bf8c6b4473 Make certain that random keys havethe correct parity, for interoperation with
MIT v4 implementations.

Submitted by: Reece R. Pollack <reece@eco.twg.com>
1995-05-09 18:05:15 +00:00
dima
937577d030 Security fixes.
CERT Advisory CA-95:03.telnet.encryption

Obtained from: CERT
1995-02-17 03:57:00 +00:00
ache
e9a95dfcb4 Build kpasswd from normal passwd sources now
Submitted by: mark@grondar.za
1995-02-11 18:25:38 +00:00
jkh
3e142d3ad3 Various documentation changes.
Submitted by:	Mark Murray <mark@grondar.za>
1995-02-08 10:54:30 +00:00
ache
b987bbd152 Fix database deletion, we don't have .dir & .pag, use .db instead 1995-01-25 19:57:27 +00:00
ache
ef8fdd5889 Fix database rename, we don't have .dr & .pag, use .db instead 1995-01-25 19:45:25 +00:00
gibbs
98c3cd0728 Less expensive fix for the freeing of uninitialized fields in the hostdata
struct.  Simply test the "no_host" variable, which if true implies that
the hostdata contains bogus data, and act accordingly.
1995-01-25 06:37:33 +00:00
gibbs
a7eba01d13 bzero hostdata in send_to_kdc so that if we immediately jump to the
cleanup routine, we don't look at bogus data to determine wheter or not
to free the fields of the hostdata struct.  This cures the "klogin segfaults
when no kerberos servers are availible" problem.
1995-01-25 05:40:00 +00:00
ache
b25561d1a5 Add missing newline (or messages concatenated) 1995-01-25 02:27:00 +00:00
wollman
fed6081509 Print out error messages from libkadm correctly (i.e., using com_err). 1995-01-23 22:54:08 +00:00
wollman
f9ad4845f2 Add ksrvutil. 1995-01-20 22:40:02 +00:00
wollman
6e5293dd67 Add last piece in fully-functional Kerberos implementation: ksrvutil,
a program to manage /etc/srvtab.
1995-01-20 22:38:30 +00:00
wollman
6ba13d9dd9 Added Kerberized passwd. 1995-01-20 22:16:47 +00:00
wollman
c74adccd45 Password-changing program with Kerberos support via the `kadmin'
protocol.  Replaces passwd(1) when eBones is installed.  As before, HOW-TO
explains the gory details.
1995-01-20 22:14:14 +00:00
wollman
3ea71288af Fix bonehead /usr/lib -> /usr/bin. 1995-01-20 22:08:14 +00:00
wollman
726f15bcce Add kadmind. 1995-01-20 03:13:48 +00:00
wollman
cba76fbeed Add kadmind. HOW-TO documents how to get here from raw eBones. 1995-01-20 03:13:00 +00:00
wollman
736fb60fc3 Add kadmin. 1995-01-20 02:49:47 +00:00
wollman
0ad24dc095 The user side of the kadmin protocol. HOW-TO describes how to recreate
this based just on the eBones distribution.
1995-01-20 02:47:50 +00:00
wollman
c0e7198471 Add the library used by kadmin' and kadmind'. Oddly enough, this
little library is actually exportable (we think) even though it's pretty
useless iwithout the (non-exportable) clients.
1995-01-20 02:02:54 +00:00
wollman
97daf1a19a Don't install kadm.h from here; it's done by the libkadm directory. 1995-01-20 02:01:11 +00:00
wollman
fdec3ba7fb Do all libraries first. Don't do `include' twice. 1995-01-20 02:00:34 +00:00