krb5.git/src/appl/bsd/login.c, branch proxymech MIT Kerberos patches Unbundle applications into separate repository 2009-11-22T14:58:54+00:00 Greg Hudson ghudson@mit.edu 2009-11-22T14:58:54+00:00 14590b7c281e1fbf68afec2f3f4104b87e6010f4 Remove libpty, gssftp, telnet, and the bsd applications from the source tree, build system, and tests. Docs still need to be updated to remove mentions of the applications. The build system should be simplified now that we're down to one configure script and don't need some of the functionality currently in aclocal.m4. ticket: 6583 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23305 dc483132-0cff-0310-8789-dd5450dbe970 
Remove libpty, gssftp, telnet, and the bsd applications from the
source tree, build system, and tests.

Docs still need to be updated to remove mentions of the applications.
The build system should be simplified now that we're down to one
configure script and don't need some of the functionality currently in
aclocal.m4.

ticket: 6583
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23305 dc483132-0cff-0310-8789-dd5450dbe970
make mark-cstyle 2009-10-31T00:48:38+00:00 Tom Yu tlyu@mit.edu 2009-10-31T00:48:38+00:00 02d6bcbc98a214e7aeaaa9f45f0db8784a7b743b make reindent git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23100 dc483132-0cff-0310-8789-dd5450dbe970 
make reindent

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23100 dc483132-0cff-0310-8789-dd5450dbe970
Remove krb4 support in the applications. login's ability to run aklog 2008-12-15T20:29:01+00:00 Greg Hudson ghudson@mit.edu 2008-12-15T20:29:01+00:00 9cefbad7f53cffbe75044262b98bd34ebe3ae2fd has been preserved and made unconditional on krb4 support, since aklog can now do krb5 auth. The config variable is now named krb_run_aklog (as it was sometimes documented), not krb4_run_aklog as it previously was. ticket: 6303 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21450 dc483132-0cff-0310-8789-dd5450dbe970 
has been preserved and made unconditional on krb4 support, since aklog
can now do krb5 auth.  The config variable is now named krb_run_aklog
(as it was sometimes documented), not krb4_run_aklog as it previously
was.

ticket: 6303
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21450 dc483132-0cff-0310-8789-dd5450dbe970
Convert many uses of sprintf to snprintf or asprintf 2008-12-01T17:09:59+00:00 Greg Hudson ghudson@mit.edu 2008-12-01T17:09:59+00:00 0692bffad6dbd696b2817f59ee7dd2e7e38ceb4b ticket: 6200 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21258 dc483132-0cff-0310-8789-dd5450dbe970 
ticket: 6200
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21258 dc483132-0cff-0310-8789-dd5450dbe970
Use strlcpy instead of strcpy in many places 2008-10-24T20:07:00+00:00 Greg Hudson ghudson@mit.edu 2008-10-24T20:07:00+00:00 fcf15c482b582c4f2e5dd7c6222c4e3509bbb7d6 ticket: 6200 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20919 dc483132-0cff-0310-8789-dd5450dbe970 
ticket: 6200
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20919 dc483132-0cff-0310-8789-dd5450dbe970
Use strdup in place of malloc/strcpy in many places 2008-10-20T18:18:49+00:00 Greg Hudson ghudson@mit.edu 2008-10-20T18:18:49+00:00 e4a2f122c3086c1179323c0e24edb3506d3f4758 ticket: 6200 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20898 dc483132-0cff-0310-8789-dd5450dbe970 
ticket: 6200
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20898 dc483132-0cff-0310-8789-dd5450dbe970
fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilities 2006-08-08T19:26:40+00:00 Tom Yu tlyu@mit.edu 2006-08-08T19:26:40+00:00 7b141abe9aa72db8c7243d4f0a30b87e59789579 * src/appl/gssftp/ftpd/ftpd.c (getdatasock, passive): * src/appl/bsd/v4rcp.c (main): * src/appl/bsd/krcp.c (main): * src/appl/bsd/krshd.c (doit): * src/appl/bsd/login.c (main): * src/clients/ksu/main.c (sweep_up): * src/lib/krb4/kuserok.c (kuserok): Check return values from setuid() and related functions to avoid privilege escalation vulnerabilities. Fixes MITKRB5-SA-2006-001. [CVE-2006-3083, VU#580124, CVE-2006-3084, VU#401660] ticket: new target_version: 1.5.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18420 dc483132-0cff-0310-8789-dd5450dbe970 
	* src/appl/gssftp/ftpd/ftpd.c (getdatasock, passive):
	* src/appl/bsd/v4rcp.c (main):
	* src/appl/bsd/krcp.c (main):
	* src/appl/bsd/krshd.c (doit):
	* src/appl/bsd/login.c (main): 
	* src/clients/ksu/main.c (sweep_up):
	* src/lib/krb4/kuserok.c (kuserok): Check return values from
	setuid() and related functions to avoid privilege escalation
	vulnerabilities.  Fixes MITKRB5-SA-2006-001. [CVE-2006-3083,
	VU#580124, CVE-2006-3084, VU#401660]

ticket: new
target_version: 1.5.1
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18420 dc483132-0cff-0310-8789-dd5450dbe970
In verify_krb_v4_tgt, use an unsigned KRB4_32 to store an address rather 2006-06-20T21:45:16+00:00 Russ Allbery rra@stanford.edu 2006-06-20T21:45:16+00:00 e93538b4cd620efd44729ffd4ca51d38cea3b010 than an unsigned long to avoid memcpying past the end of a structure on 64-bit platforms. Ticket: 581 Version_Reported: 1.0.5 Target_Version: 1.5 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18175 dc483132-0cff-0310-8789-dd5450dbe970 
than an unsigned long to avoid memcpying past the end of a structure on
64-bit platforms.

Ticket: 581
Version_Reported: 1.0.5
Target_Version: 1.5
Tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18175 dc483132-0cff-0310-8789-dd5450dbe970
* krlogind.c (doit): Change 0 to (char*)NULL in execl* calls. Patch provided 2005-04-06T00:13:02+00:00 Ken Raeburn raeburn@mit.edu 2005-04-06T00:13:02+00:00 da78d45b12aaf21bc21309fe4d36517e830360c1 by Michael Calmer. * krshd.c (doit): Likewise. * login.c (main): Likewise. ticket: 3000 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17165 dc483132-0cff-0310-8789-dd5450dbe970 
by Michael Calmer.
* krshd.c (doit): Likewise.
* login.c (main): Likewise.

ticket: 3000
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17165 dc483132-0cff-0310-8789-dd5450dbe970
* login.c (main): Don't overwrite "PATH" environment variable if 2004-09-08T20:23:02+00:00 Tom Yu tlyu@mit.edu 2004-09-08T20:23:02+00:00 a756236daa2b356e62dd82cd3b6b0c7618d18227 it's already set. ticket: 427 version_reported: 1.0.1 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16731 dc483132-0cff-0310-8789-dd5450dbe970 
	it's already set.

ticket: 427
version_reported: 1.0.1

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16731 dc483132-0cff-0310-8789-dd5450dbe970