summaryrefslogtreecommitdiffstats
path: root/src/appl/gssftp
Commit message (Collapse)AuthorAgeFilesLines
...
* * ftp.c (do_auth): Remove debugging printf which I inadvertantlyEzra Peisach2000-10-102-1/+5
| | | | | | introduced. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12749 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (login): Return of krb5_cc_get_name is now const char *Ezra Peisach2000-10-032-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12716 dc483132-0cff-0310-8789-dd5450dbe970
* renamed getmode() and setmode() to get_mode() and set_mode() to avoid a ↵Alexandra Ellwood2000-08-294-6/+13
| | | | | | collision with Mac OS X file permission bits manipulation functions of the same name which get included through unistd.h git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12633 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpcmd.y: Fix up grammar so that single character token namesTom Yu2000-08-262-37/+45
| | | | | | | | | | | | are no longer used; this was breaking the build using bison on HP/UX because some system headers declare structures with members having all-uppercase field names and bison puts the token name #define statements in front of the C declarations section in the output, causing them to be in force while those headers get #included. There doesn't seem to be much purpose in not just using character constants, anyway. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12632 dc483132-0cff-0310-8789-dd5450dbe970
* * secure.h (myaddr): For secure data stream, pass the port numberEzra Peisach2000-08-224-2/+10
| | | | | | | | | | | of the data stream and not the control stream to krb_mk_priv. This would result in the occasional time out of bounds error when ftping to the same machine. (mk_priv and rd_priv have some amusing negating of timestamps depending on address and port of sockets). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12628 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (auth_data): Iterate over all krb4 services instead ofEzra Peisach2000-08-222-17/+22
| | | | | | | trying to examine the srvtab file for a particular key (which failes when falling back on the v5 keytab for des3 services). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12625 dc483132-0cff-0310-8789-dd5450dbe970
* * domacro.c: Compiler warning cleanups and fix the overflow fix toEzra Peisach2000-08-1714-352/+562
| | | | | | | | | | | | | | | | index the proper array. * cmds.c, cmdtab.c, ftp.c, ftp_var.h, getpass.c, glob.c, main.c, radix.c, ruserpass.c, secure.c, secure.h: Compiler warning cleanups including providing prototypes, cleanup of assignments in conditionals, including unistd.h and stdlib.h (if present), declaring local functions as static. * Makefile.in: Do not compile pclose.c - the code is not used. About 600 warnings down.... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12622 dc483132-0cff-0310-8789-dd5450dbe970
* 1.2-beta4 pullupKen Raeburn2000-06-3012-34/+103
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12470 dc483132-0cff-0310-8789-dd5450dbe970
* Change wsanchez@apple -> tritan@mitWilfredo Sanchez2000-06-013-6/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12331 dc483132-0cff-0310-8789-dd5450dbe970
* Volatile decls as needed.Ken Raeburn2000-02-198-28/+53
| | | | | | | Format attribute declarations for gcc. Deleting some unused variables. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12058 dc483132-0cff-0310-8789-dd5450dbe970
* log tritan's changesTom Yu1999-10-263-0/+21
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11877 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up usage of CFLAGS, CPPFLAGS, DEFS, DEFINES, LOCAL_INCLUDES suchWilfredo Sanchez1999-10-263-12/+9
| | | | | | | that one can override CFLAGS from the command line without losing CPP search patchs and defines. Some associated Makefile cleanup. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11876 dc483132-0cff-0310-8789-dd5450dbe970
* Don't fclose(NULL). Don't declare string functions that are macrosKen Raeburn1999-09-214-2/+23
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11836 dc483132-0cff-0310-8789-dd5450dbe970
* disable krb5-mech2 for now; from 1.1 branchKen Raeburn1999-09-012-2/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11773 dc483132-0cff-0310-8789-dd5450dbe970
* * ftp.c: Inclusion of gssapi_krb5.h requires gssapi_generic.hEzra Peisach1999-05-112-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11435 dc483132-0cff-0310-8789-dd5450dbe970
* configure.in: Check to see if we need to pull in the util library inTheodore Tso1999-04-142-0/+7
| | | | | | order to find logwtmp(). (Needed for Linux/glibc 2.1.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11356 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (login): Check that the luid is not the uid we want toTom Yu1999-03-262-1/+8
| | | | | | | change to prior to calling setluid() so that we can run as non-root. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11316 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Check for sys/sockio.h for systems that need itTom Yu1999-03-242-1/+6
| | | | | | for SIOCATMARK. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11307 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpcmd.y (urgsafe_getc): New function; like getc() except itTom Yu1999-03-242-4/+39
| | | | | | | | | retries once if SIOCATMARK returns TRUE. (getline): Use urgsafe_getc() rather than getc() to avoid problems with certain Mac clients that cause the urgent pointer to end up in a location that results in EOF from getc(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11306 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (user): Remove extra "%s" in call to sprintf() to avoidTom Yu1999-03-122-1/+6
| | | | | | dereferencing stack garbage. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11268 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.M: Resync with realityTom Yu1999-03-094-29/+105
| | | | | | | | | | * Makefile.in (ftpd): Add libpty to link line. Remove mention of logwtmp files. * ftpd.c: Fix up hostname logging to use pty_make_sane_hostname(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11253 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (reply): Don't call secure_gss_error() or secure_error()Tom Yu1999-02-262-0/+12
| | | | | | | from within reply() to avoid setting up an infinite loop. [krb5-appl/684] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11230 dc483132-0cff-0310-8789-dd5450dbe970
* * secure.c (secure_putbuf): Revert Sam's last change; ifTom Yu1999-02-262-1/+10
| | | | | | | | | | FUDGE_FACTOR is wrong, then badness can happen. Also, if out_buf.length != nbytes+FUDGE_FACTOR, heap corruption could happen. We really should be using gss_wrap_size_limit() or something like that, but doing so would require substantial amounts of reworking. [krb5-appl/685] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11228 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Add check for setluidTom Yu1999-02-182-0/+15
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11183 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (login): Add call to setluid() if necessaryTom Yu1999-02-182-0/+15
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11182 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c: strcat -> strncatTom Yu1999-02-132-5/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11172 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: Set the myfulldir and mydir variables (which are relativeTheodore Tso1998-11-136-0/+21
| | | | | | to buildtop and thisconfigdir, respectively.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11029 dc483132-0cff-0310-8789-dd5450dbe970
* pull up 3des implementation from the marc-3des branchMarc Horowitz1998-10-302-25/+73
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11001 dc483132-0cff-0310-8789-dd5450dbe970
* Add -A (require authentication but not necessarily authorization) andDan Winship1998-10-265-160/+381
| | | | | | | | | | -C (user wants local credentials) flags to ftpd. If -C is set, write out forwarded credentials to disk and use krb524 to get krb4 tickets as well. If user doesn't forward credentials, require a password even if auth was successful and use that to get credentials. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10993 dc483132-0cff-0310-8789-dd5450dbe970
* * ftp.M: Add documentation for new ccc and cprotect commands.Geoffrey King1998-10-263-23/+77
| | | | | | | | | | Also, add previously omitted command line options -u and -t and "passive" command to the man page. * main.c (main): Print out a usage message instead of just "unknown option." git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10992 dc483132-0cff-0310-8789-dd5450dbe970
* ftpd.c (pass): Wait 5 seconds before returning "passwordTheodore Tso1998-10-243-10/+36
| | | | | | | | | | | | incorrect", and only allow three bad passwords. Then return an 421 reply code before closing the connection and going away. ftpcmd.y (cmd): Don't allow the PORT command to accept a port number lower than 1024; this prevents some nasty ftp "bounce attacks" to SMTP ports, etc. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10990 dc483132-0cff-0310-8789-dd5450dbe970
* update ftpd man page to fully match reality (-a, -c, -u, CCC)Dan Winship1998-10-202-6/+24
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10973 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c: Add support for restricted users, as requested inGeoffrey King1998-10-082-16/+59
| | | | | | | | [krb5-appl/481]. Users that appear in /etc/ftpusers, followed by the keyword "restrict" will be granted access, but a chroot() will be done to their home directory. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10970 dc483132-0cff-0310-8789-dd5450dbe970
* cmdtab.c: Update help message for passive mode so that itTheodore Tso1998-10-023-2/+9
| | | | | | | | indicates that the "passive" command toggles passive mode. main.c (main): Make passive mode off by default. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10956 dc483132-0cff-0310-8789-dd5450dbe970
* Don't use h_errno, it's not fully portable, and it's not worth itTheodore Tso1998-09-292-2/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10949 dc483132-0cff-0310-8789-dd5450dbe970
* Of course, the following sentence actually refers to the login function,Geoffrey King1998-08-291-4/+3
| | | | | | | | | | | not the pass function: Don't reply 230 "User logged in" if the user didn't send a PASS command; this causes the client to get a bit confused. ChangeLog: git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10900 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (login): New function. Essentially, the old passGeoffrey King1998-08-292-21/+74
| | | | | | | | | | | | | | | | | | | function has been split into its two logical components, pass and login. (pass): If auth_ok is true, reply with code 202 to tell the user that a PASS command is not necessary. Also, don't reply 230 "User logged in" if the user didn't send a PASS command; this causes the client to get a bit confused. (auth_ok): New function that returns true if either gss_ok or kerb_ok is true (all the #ifdefs were beginning to clutter things, and it's a good abstraction in case other auth types are ever added in the future). (user): If GSSAPI or Kerberos v4 authentication succeeds, call login immediately, instead of waiting for the client to send "PASS dummy." Also, use #ifdef PARANOID instead of "some paranoid sites may wish to uncomment this" git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10899 dc483132-0cff-0310-8789-dd5450dbe970
* * cmds.c (user): Replace "oldlevel" with the more descriptiveGeoffrey King1998-08-283-6/+25
| | | | | | | | | | "oldclevel". Also, replace all occurrences of "dlevel" in this function with "clevel". * ftp.c (login): Test whether or not the server actually requires "PASS dummy" by first sending "PWD" and checking the return value. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10898 dc483132-0cff-0310-8789-dd5450dbe970
* Add optional support for the CCC (Clear Command Channel) command.Geoffrey King1998-08-193-14/+55
| | | | | | | | | | | | | | | | | | | This command is dangerous, since it allows commands to be transmitted without integrity checking, so the default behavior without the -c option is still for the server to refuse to accept unprotected commands. * ftpd.c: Add a new command line option, -c, which tells the server to accept the CCC command. * ftpcmd.y: If the -c option was given, check to make sure the CCC command itself was integrity protected, and then set ccc_ok to allow future commands to be transmitted as cleartext. (getline): Now that CCC is potentially allowed, we must check to see if we are parsing an unprotected command even if a security context is established (i.e. auth_type is set). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10846 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpcmd.y, ftpd.c: Replace global variable level with clevel andGeoffrey King1998-08-123-21/+30
| | | | | | | dlevel to allow independence of command and data channel protection levels. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10805 dc483132-0cff-0310-8789-dd5450dbe970
* * ftp.c, cmds.c, cmdtab.c, main.c, secure.c, ftp_var.h: ReplaceGeoffrey King1998-08-127-69/+166
| | | | | | | | | | | | | | | global variable level with separate variables clevel and dlevel for the control channel and data channel protection levels, respectively, so that the user may specify separate protection levels for each channel. Similarly, functions such as getlevel and setlevel are now getclevel/getdlevel, and setclevel/setdlevel. * cmdtab.c: Add new FTP commands "cprotect" to allow the user to set the control channel protection level (similar to "protect"), and "ccc" (Clear Command Channel) which sets the control channel protection level to clear (per the RFC). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10804 dc483132-0cff-0310-8789-dd5450dbe970
* Tue Aug 11 04:30:59 1998 Matthew D Hancher <mdh@mit.edu>Matthew Hancher1998-08-112-7/+55
| | | | | | | | * ftpd.c: Add support for extended logging as per PR#481. Using the 'l' command line option twice now logs the major file commands, and using it thrice logs bytecounts for RETR and STOR as well. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10801 dc483132-0cff-0310-8789-dd5450dbe970
* Fri Aug 7 00:56:30 1998 Matthew D Hancher <mdh@mit.edu>Matthew Hancher1998-08-082-6/+9
| | | | | | | * ftpcmd.y: Replace old KERBEROS #ifdef's with KRB5_KRB4_COMPAT so that K4 compatibility support actually gets compiled in. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10792 dc483132-0cff-0310-8789-dd5450dbe970
* Forgot to check in the ChangeLog. :)Matthew Hancher1998-08-081-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10791 dc483132-0cff-0310-8789-dd5450dbe970
* Fri Aug 7 22:39:47 1998 Matthew D Hancher <mdh@mit.edu>Matthew Hancher1998-08-081-2/+2
| | | | | | | * ftp.c (do_auth): Make verbosity not disappear if GSSAPI fails. (getreply): Move 'S:' and 'P:' from verbose to debug. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10790 dc483132-0cff-0310-8789-dd5450dbe970
* * ftp.c (getreply): Restore proper setting of safe. This variableTom Yu1998-08-072-1/+9
| | | | | | | | | was previously being set to the value of code rather than to the boolean expression (code == 631), which it had been previously. The bug resulted in all replies from the server being parsed as krb_safe messages even when they were krb_priv messages. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10788 dc483132-0cff-0310-8789-dd5450dbe970
* Fri Aug 7 00:56:30 1998 Matthew D Hancher <mdh@mit.edu>Matthew Hancher1998-08-072-15/+38
| | | | | | | | | | * ftpd.c: (pass): Make daemon not lose for homedirs on root-squashing filesystems. (auth_data): Fix that godawful "error: No error" message when gss_acquire_cred() fails. (user): Fix getusershell() code so it works more than once. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10785 dc483132-0cff-0310-8789-dd5450dbe970
* Preliminary fixes for AIX4.3:Sam Hartman1998-07-122-1/+5
| | | | | | | | | | | * Fix static libs on platforms using .a for shared libs * Fix utmp handling for non-hpux platforms with ut_exit different from utmpx. * Include librarymacros in ss configure.in * Remove declarations of h_errno git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10632 dc483132-0cff-0310-8789-dd5450dbe970
* logwtmp.c: Include paths.h if present, and use _PATH_WTMP to determineTheodore Tso1998-05-272-1/+14
| | | | | | WTMPFILE. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10594 dc483132-0cff-0310-8789-dd5450dbe970
* configure.in: Add check for paths.hTheodore Tso1998-05-272-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10593 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-09-26 20:51:29 +0000