| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Provenzano and me:
* Makefile.in (install): Install correct set of man pages, and check for
failures.
* kshd.M, klogind.M: Renamed from kr*.M versions.
* login.M: New file. Man page for login with some description of new features.
* rlogin.M: Remove references to using program with target hostname as argv[0].
* rsh.M: Ditto. Also document -f, -F, -x options.
* login.c: Massive changes. Split much functionality out of main and into
separate file sections: terminal flag settings, Kerberos 4 and 5 support, UNIX
password support, mail check, signal handler handling, some other support
routines. Revamp controlling tty and process group handling. For AFS
configuration, use setpag and run aklog. Try validating password using krb5.
Always set tty flags, not just for rlogin session. When validating tickets,
treat an existing key file that doesn't contain the key we think we want
(possibly because DNS was spoofed) as an error condition.
* Makefile.in (LOGINLIBS): List libkrb524.a here.
(LIBOBJS): Not here.
(login.krb5): Reverse the order of LIBOBJS and LOGINLIBS.
* configure.in: Check for --with-afs. Add AFS libs and define SETPAG if
supplied.
* login.c (KRB5_GET_TICKETS, KRB4_GET_TICKETS, KRB_RUN_AKLOG): new macros
selecting single signon options. krb5.conf profile support for control over
authentication options, above the compile time selection.
(conf_affirmative): new function, recognize yes/no in profile value.
(login_get_kconf): new function, look for all [login] flags and set them in
appropriate globals (via login_conf_set array.)
(main, sleepexit, destroy_tickets): Check the new login_* flags.
(main): rename KRB4_USE_524 to KRB4_CONVERT.
* configure.in: Added checks for tcsetpgrp, tcgetpgrp, setpgid.
* krlogind.c (control): Use tcgetpgrp if it's available.
* loginpaths.h (RPATH, LPATH, LPATH_root): Define HP/UX 9.04 versions,
conditionalized on __hpux and !hpux.
* login.c and configure.in: instead of checking _IBMR2 and __sgi__, write
configure tests to check for the existence of /etc/environment and
/etc/TIMEZONE files, respectively.
* forward.c (rd_and_store_for_creds) : If chown fails then only pass failure
back if owner is different than intended owner. This is to make rsh.exp test
work without requiring root privlidges.
* login.c (main): Don't set TERM to an empty value.
(stypeof) [__hpux]: Return null if unknown.
* krlogin.c (catchild): remove hp/ux kludge because of aclocal.m4 fix.
(speeds): test __hpux for hpux speed list.
(main): test __hpux for use of FIOSSAIOSTAT and FIOSSAIOOWN
(USE_TERMIO): test __hpux for bsdtty/ptyio headers.
* krlogind.c: test __hpux for bsdtty/ptyio headers.
(doit): test __hpux for use of setpgrp2.
* krcp.c (main): test __hpux as well for remsh vs. rsh.
* krcp.c (des_write): Make sure the buffer for the encrypted data is large
enough. Only return an error in malloc fails.
* krsh.c (main): Always turn on anyport -A option.
* krlogind.c (ptsname): Declare if it's going to be used.
* krshd.c (main): Use basename of argv[0] for progname.
* login.c (dofork): On linux, TIOCNOTTY causes us to die on a SIGHUP, so don't
even try it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7881 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7880 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7879 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7878 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7877 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
| |
use it, instead of duplicating the rest of the code. Use LIBDONE as list to
process, so berk_db will be skipped when not in use. Check exit status of
LIBUPDATE invocation. Remove library before creating as workaround for
libupdate bug.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7876 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
(ser_acontext_test, ser_eblock_test, ser_cksum_test): Use it, instead of
assuming it's valid to treat &FUNCTION as a data pointer.
* conv_princ.c (sconv_list): Now const.
(krb5_*_conv_principal): Use pointer to const for it.
Tue Apr 23 19:39:59 1996 Mark Eichin <eichin@cygnus.com>
* get_creds.c (krb5_get_credentials): this isn't the kernel, so don't return
negative errno values.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7875 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
| |
* Makefile.in (check-unix): Use $(RM).
* t_an_to_ln.c (main): Print principal name when an error is detected.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7874 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7873 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
* Makefile.in (autoconf.h): Use timestamp file to prevent repeated rebuilding
if file timestamp is out of date but contents wouldn't change.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7872 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7871 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7870 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7869 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
| |
(was originally in k5-int.h).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7868 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
cryptosystem is properly included. Removed Macintosh definitions of
PROVIDE_* since that is done in mac/libaries/KerberosHeaders.h.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7867 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
| |
wrong.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7866 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
| |
Temporary workaround to avoid getting multiple versions of .o files in libs.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7865 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7864 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
failures.
* kshd.M, klogind.M: Renamed from kr*.M versions.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7863 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
| |
multiple names and multiple "host" keys.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7861 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7860 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7858 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
| |
executables on the build tree.
The built executables should not look in the build tree for shared libraries...
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7857 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
variable initialization; initialization has been corrected to
allow either checksumming or ignoring the checksum.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7855 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
have time to implement the rest of his comments to the document as a
whole.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7853 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
| |
defined, incorrect messages were being displayed for V4 clients.
Additionally, various errors were not being displayed with the
trailing newline.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7852 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7851 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
from its name, because it doesn't any more. Same for kshd.
* Document and implement -i option to ignore checksums. Restore
default mode to accept and process checksums if provided.
* Bring back the warning about only using -c with Kerberos5. The
documentation (both install.texi and the man pages) clearly state that
the -c option shouldnot be used in conjunction with Kerberos4, so warn
users if they try.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7849 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
in particular talking about checksums and other
confusing issues.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7848 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7845 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
| |
with vendor logins and packet mode on systems that don't
support it.
Also, clean up spaces in Makefile.in, replacing with tabs.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7844 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7839 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7838 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
| |
using its fully qualified domain name as its local hostname. We now
check to make sure that FTP banner contains $localhostname, plus
optional characters (which can be the domainname depending on the
system.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7824 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
longer necessary.
krcp.c (verifydir, allocbuf, rsource, source, sink): Don't use
sys_errlist[]; just call error_message() instead, since we depend on
com_err anyway.
krshd.c (recvauth):
krlogind.c (recvauth): Don't actually check the checksum unless it is
required. Old (pre-beta 5) clients sent a checksum of random garbage
(such as their pid) which is impossible to actually check on the
server side. (Grad student stupidity strikes again.)
(fatalperror): Don't use sys_errlist[] to get the right error
message; just depend on com_err instead, since we're using it anyway.
krshd.c (doit):
krlogind.c (do_krb_login): Fix logic so that if checksums are
required, and the checksum is valid, don't syslog the stupid warning
message about "Checksums are only required for v5 clients...."
krcp.c, krshd.c, krlogind.c: Miscellaneous -Wall cleanups
krlogind.c (getpty): Removed dead code.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7823 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
This really ought to be something that's configurable in the
profile...
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7822 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7821 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
* libupdate.sh: $ARCHIVE does not delete when creating. Explicitly remove
$library when using --force.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7820 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
for examining utmp/wtmp files when comparing behavior against system software.
* update_utmp.c (pty_update_utmp): Always use id "cons" for console. For
HP-UX, omit "kl" prefix. Reindent for readability.
* update_wtmp.c (ptyint_update_wtmp): For HP-UX, copy ut_id and ut_type from
input utmp structure. Reindent for readability.
Wed Mar 27 21:14:33 1996 Marc Horowitz <marc@mit.edu>
* init_slave.c (pty_initialize_slave): Spurious signal stuff which did nothing
deleted.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7819 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
| |
* Changes to abort the session if telnetd receives certain options
such as environment or DISPLAY options before authentication and
encryption is negotiated or not negotiated.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7818 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7817 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
| |
may break on HPUX10 depending on how you should get the name of the pts side
of /dev/ptym/clone. I don't have an HPUX10 system
to test on.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7816 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7815 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7814 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
| |
so that the right controlling terminal can be used; needed
on HP and others possibly.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7813 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
|
|
|
| |
as libpty deals.
Use setsid() instead of setpgrp() in krshd
if possible.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7812 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7811 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
|
|
| |
an unusual location, so they are not likely to be reused by other sessions.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7810 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7809 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7806 dc483132-0cff-0310-8789-dd5450dbe970
|