| #
3e4f7c7f |
| 19-Jan-2002 |
Andrey A. Chernov <ache@FreeBSD.org> |
Add PAM_CRED_ERR as valid failure case
|
| #
9f5b04e9 |
| 10-Dec-2001 |
David Malone <dwmalone@FreeBSD.org> |
Style improvements recommended by Bruce as a follow up to some
of the recent WARNS commits. The idea is:
1) FreeBSD id tags should follow vendor tags.
2) Vendor tags should not be compiled (though c
Style improvements recommended by Bruce as a follow up to some
of the recent WARNS commits. The idea is:
1) FreeBSD id tags should follow vendor tags.
2) Vendor tags should not be compiled (though copyrights probably should).
3) There should be no blank line between including cdefs and __FBSDIF.
show more ...
|
| #
1a8b24c2 |
| 02-Dec-2001 |
Mark Murray <markm@FreeBSD.org> |
Use __FBSDID(). Also do a bit of cosmetic #if and header-order
cleaning-up.
|
| #
a9648779 |
| 02-Dec-2001 |
Mark Murray <markm@FreeBSD.org> |
Sort includes.
|
| #
d2f6cd8f |
| 01-Dec-2001 |
Mark Murray <markm@FreeBSD.org> |
Style fixups.
Sort function declarations, includes. Make consistent WRT use of _P()
macro (ugh!)
Inspired by: bde
|
| #
e317b970 |
| 01-Dec-2001 |
Mark Murray <markm@FreeBSD.org> |
WARNS=2 fixes.
Reviewed by: bde (a while back)
|
| #
0e80e8b2 |
| 16-Nov-2001 |
Robert Watson <rwatson@FreeBSD.org> |
o Add support for a 'nocheckmail' capability, which (if true) prevents
the 'You have mail.' check. This is useful for sites that rely on
remote mail access, rather than a local mail spool. Due
o Add support for a 'nocheckmail' capability, which (if true) prevents
the 'You have mail.' check. This is useful for sites that rely on
remote mail access, rather than a local mail spool. Due to the
behavior of login_getcapbool(), the negated form is required so as
to have appropriate results.
o This behavior may have to be independently added to sshd due to
redundant implementation.
show more ...
|
| #
2c19b38f |
| 15-Sep-2001 |
Robert Watson <rwatson@FreeBSD.org> |
o Modify NFS rights comment to note that the early credential changes
to test for a home directory don't set up the additional groups, and
as such may limit users conservatively. This does not a
o Modify NFS rights comment to note that the early credential changes
to test for a home directory don't set up the additional groups, and
as such may limit users conservatively. This does not affect the
eventual credentials selected.
show more ...
|
| #
142277ce |
| 30-Aug-2001 |
Mark Murray <markm@FreeBSD.org> |
Like su(1), make PAM use mandatory. Remove parts of the authentication
logic that are handled by PAM. Fix documentation to reflect this.
|
| #
ede8b1c5 |
| 13-Aug-2001 |
Mike Barcroft <mike@FreeBSD.org> |
Fix some bogus strncpy(3) to strlcpy(3) changes I made in the previous
revision. <utmp.h> structures don't leave room for a NUL character.
Also fix "UNKNOWN" which should have just been UNKNOWN.
Po
Fix some bogus strncpy(3) to strlcpy(3) changes I made in the previous
revision. <utmp.h> structures don't leave room for a NUL character.
Also fix "UNKNOWN" which should have just been UNKNOWN.
Pointed out by: bde
show more ...
|
| #
9ab4f412 |
| 12-Aug-2001 |
Mike Barcroft <mike@FreeBSD.org> |
o Replace occurrences of strncpy(3) with strlcpy(3); most of
the uses of it were wrong anyway.
o Always check for NULL returns on strdup(3).
o Fix a possible buffer overflow in strcpy(3).
o Fix a f
o Replace occurrences of strncpy(3) with strlcpy(3); most of
the uses of it were wrong anyway.
o Always check for NULL returns on strdup(3).
o Fix a possible buffer overflow in strcpy(3).
o Fix a format string vulnerability.
o t->ty_type in stypeof() could be NULL and eventually cause
a segmentation fault in setenv(3), so check for that.
Eyeballed by: kris
Reviewed by: murray
MFC after: 3 days
show more ...
|
| #
9567ba9d |
| 28-Jul-2001 |
Mark Murray <markm@FreeBSD.org> |
Fix the environment handling:
However, there's still a bug in login.c
because you copy the environment *before* the call to pam_open_session,
which won't set the necessary variables set by /usr/port
Fix the environment handling:
However, there's still a bug in login.c
because you copy the environment *before* the call to pam_open_session,
which won't set the necessary variables set by /usr/ports/security/pam_ssh.
Submitted by: Volker Stolz <stolz@hyperion.informatik.rwth-aachen.de>
show more ...
|
| #
7bc6d015 |
| 09-Jul-2001 |
Brian Somers <brian@FreeBSD.org> |
Fix the type of the NULL arg to execl()
Idea from: Theo de Raadt <deraadt@openbsd.org>
|
| #
a37b5e8e |
| 22-May-2001 |
Eric Melville <eric@FreeBSD.org> |
Remove an accidentaly added extra blank line.
Approved by: murray
|
| #
5345e89b |
| 21-May-2001 |
Guido van Rooij <guido@FreeBSD.org> |
Disable SIGHUP while getting the login name.
Reviewed by: security-officer
|
| #
5de20e57 |
| 18-May-2001 |
David E. O'Brien <obrien@FreeBSD.org> |
Missed a few things.
|
| #
91a72a92 |
| 18-May-2001 |
David E. O'Brien <obrien@FreeBSD.org> |
In a word -- style(9).
|
| #
078ae588 |
| 18-May-2001 |
David E. O'Brien <obrien@FreeBSD.org> |
Add the "prompt" and "passwd_prompt" fields to /etc/login.conf,
which makes lgoin more like getty in its ability to be configured.
Submitted by: tlambert (code only)
|
| #
40c65ba9 |
| 17-May-2001 |
Eric Melville <eric@FreeBSD.org> |
Check for the expiration of an account and its password in the proper
order.
Reviewed by: -audit (silence)
Approved by: murray
Obtained from: OpenBSD
MFC after: 5 days
|
|
Revision tags: release/4.3.0_cvs, release/4.3.0 |
|
| #
5bc9d93d |
| 27-Mar-2001 |
Mark Murray <markm@FreeBSD.org> |
Add full PAM support for account management and sessions.
The PAM_FAIL_CHECK and PAM_END macros in su.c came from the util-linux
package's PAM patches to the BSD login.c
Submitted by: "David J. Mac
Add full PAM support for account management and sessions.
The PAM_FAIL_CHECK and PAM_END macros in su.c came from the util-linux
package's PAM patches to the BSD login.c
Submitted by: "David J. MacKenzie" <djm@web.us.uu.net>
show more ...
|
| #
17ada684 |
| 09-Feb-2001 |
Jacques Vidrine <nectar@FreeBSD.org> |
Fix login so that it exports environmental variables that are set by PAM
modules (via pam_putenv). The following variables will never be set in
this fashion:
SHELL, HOME, LOGNAME, MAIL, CDPATH,
Fix login so that it exports environmental variables that are set by PAM
modules (via pam_putenv). The following variables will never be set in
this fashion:
SHELL, HOME, LOGNAME, MAIL, CDPATH, IFS, PATH
any variable starting with `LD_'
show more ...
|
| #
8ad26684 |
| 23-Jan-2001 |
Jacques Vidrine <nectar@FreeBSD.org> |
Call pam_setcred.
Reviewed by: markm, months ago
|
|
Revision tags: release/4.2.0, release/4.1.1_cvs, release/4.1.0, release/3.5.0_cvs |
|
| #
69f2cf17 |
| 26-Apr-2000 |
Sheldon Hearn <sheldonh@FreeBSD.org> |
Add braces to avoid ambiguity in a nested conditional (silences a gcc
warning).
|
| #
508d9a5b |
| 25-Apr-2000 |
Sheldon Hearn <sheldonh@FreeBSD.org> |
Fix excessive use of parenthesis in previous commit.
Requested by: bde
|
| #
1806a85c |
| 13-Apr-2000 |
Sheldon Hearn <sheldonh@FreeBSD.org> |
Do not issue a warning when chflags() fails with EOPNOTSUPP.
PR: 17875
Submitted by: Bjoern Fischer <bfischer@Techfak.Uni-Bielefeld.DE>
|