| Age | Commit message (Collapse) | Author |
|---|
|
method of executing commands remotely. There are no rexec clients in
the FreeBSD tree, and the client function rexec(3) is present only in
libcompat. It has been documented as "obsolete" since 4.3BSD, and its
use has been discouraged in the man page for over 10 years.
Notes:
svn path=/head/; revision=147270
|
|
Noticed by: bde
Notes:
svn path=/head/; revision=145177
|
|
an invalid type pun.
Notes:
svn path=/head/; revision=144795
|
|
Noticed by: tinderbox, stefanf
Pointy hat to: nectar
Notes:
svn path=/head/; revision=144754
|
|
Noticed by: Steve Kargl <sgk@troutmask.apl.washington.edu>
Notes:
svn path=/head/; revision=144680
|
|
during authentication. Thus we need to call getpwnam *after* the user
has been authenticated. Colin mentioned that we should also move the
check for root in that case.
Notes:
svn path=/head/; revision=144668
|
|
5.0-RELEASE), a visually elusive bug was introduced. A comparison
operator was changed to assignment. As a result, rexecd behaved
always as if the `-i' option had been specified. It would allow root
logins. This commit corrects the situation in the obvious way.
A separate bug was introduced at the same time. The PAM library
functions are called between the invocation of getpwnam(3) and the use
of the returned static object. Since many PAM library functions
result in additional getpwnam(3) calls, the contents of the returned
static object could be changed from under rexecd. With this commit,
getpwnam_r(3) is used instead.
Other PAM-using applications should be reviewed for similar errors in
getpw* usage.
Security: rexecd's documented default policy of disallowing root
logins was not enforced.
Reviewed by: cperciva
Notes:
svn path=/head/; revision=144180
|
|
Notes:
svn path=/head/; revision=143907
|
|
use of struct sockaddr_strage * is thought as not good manner. :)
Notes:
svn path=/head/; revision=142900
|
|
struct sockaddr_storage *, there's no point in casting it prematurely
to a struct sockaddr *. This unbreaks WARNS=6 on sparc64.
Notes:
svn path=/head/; revision=142329
|
|
Notes:
svn path=/head/; revision=142317
|
|
socklen_t * argument.
Notes:
svn path=/head/; revision=141918
|
|
Notes:
svn path=/head/; revision=140414
|
|
Notes:
svn path=/head/; revision=131487
|
|
Approved by: das (mentor)
Notes:
svn path=/head/; revision=129658
|
|
Notes:
svn path=/head/; revision=116034
|
|
Notes:
svn path=/head/; revision=99500
|
|
Reviewed by: bde
Notes:
svn path=/head/; revision=95980
|
|
Sponsored by: DARPA, NAI Labs
Notes:
svn path=/head/; revision=95915
|
|
Tested by: kuriyama
Notes:
svn path=/head/; revision=94830
|
|
I dunno if there is an IPv6 supported rexec client. So, it was
tested that this change doesn't break an IPv4.
Tested by: kuriyama (IPv4 only)
Notes:
svn path=/head/; revision=94828
|
|
Hint by: ume
Notes:
svn path=/head/; revision=94824
|
|
o register removal
o use new style prototypes and function definitions
Notes:
svn path=/head/; revision=90377
|
|
are not yet warning-clean. Tested on i386 and alpha.
Notes:
svn path=/head/; revision=90164
|
|
Notes:
svn path=/head/; revision=81118
|
|
definitions are more readable, and it's possible that they're
more portable to pathalogical platforms.
Submitted by: David Hill <david@phobia.ms>
Notes:
svn path=/head/; revision=80381
|
|
Notes:
svn path=/head/; revision=79754
|
|
Notes:
svn path=/head/; revision=79529
|
|
I believe I have done due dilligence on this, but I'd appreciate
decent test scenarios and sucess (or failure) reports.
Notes:
svn path=/head/; revision=79466
|
|
Idea from: Theo de Raadt <deraadt@openbsd.org>
Notes:
svn path=/head/; revision=79452
|
|
Notes:
svn path=/head/; revision=76183
|
|
- MAN[1-9] -> MAN.
Notes:
svn path=/head/; revision=74814
|
|
Notes:
svn path=/head/; revision=74529
|
|
Notes:
svn path=/head/; revision=69313
|
|
Notes:
svn path=/head/; revision=68949
|
|
Submitted by: sheldonh@uunet.co.za
Notes:
svn path=/head/; revision=60594
|
|
(presuming that the user in question is not in /etc/ftpusers and
does not have a null password).
Notes:
svn path=/head/; revision=60507
|
|
Notes:
svn path=/head/; revision=50476
|
|
friends are terminated and allow for a maximum
host name length of MAXHOSTNAMELEN - 1.
Put parenthesis around sizeof args.
Make some variables static.
Fix telnetd -u (broken by my last commit)
Prompted by: bde
Notes:
svn path=/head/; revision=45422
|
|
Notes:
svn path=/head/; revision=45396
|
|
gethostbyaddr() & gethostbyname().
Remove brokeness in ftpd for hosts of MAXHOSTNAMELEN length.
Notes:
svn path=/head/; revision=45393
|
|
Notes:
svn path=/head/; revision=31419
|
|
compatibility problem at the same time. Some buffer made large enough
for worst case hostname.
fixes PR 2593.
Reviewed by: Dan Cross and maybe others
Notes:
svn path=/head/; revision=24189
|
|
Notes:
svn path=/head/; revision=22989
|
|
rev 1.7 deraadt:
buf oflow
Obtained from: OpenBSD
Notes:
svn path=/head/; revision=22457
|
|
This will make a number of things easier in the future, as well as (finally!)
avoiding the Id-smashing problem which has plagued developers for so long.
Boy, I'm glad we're not using sup anymore. This update would have been
insane otherwise.
Notes:
svn path=/head/; revision=21673
|
|
it is both uneeded and breaks certain lock-step timing in the rexec
protocol.
Yes, an attacker can "relay" connections using this trick, but a properly
configured firewall that would make this sort of subterfuge necessary in the
first place (instead of direct packet spoofing) would also thwart useful
attacks based on this.
Notes:
svn path=/head/; revision=19924
|
|
succeeded.
Never allow the reverse channel to be to a privileged port.
Cannidate for: 2.1 and 2.2 branches
Reviewed by: pst (with local cleanups)
Submitted by: Cy Shubert <cy@cwsys.cwent.com>
Obtained from: Jaeger <jaeger@dhp.com> via BUGTRAQ
Notes:
svn path=/head/; revision=19871
|
|
Notes:
svn path=/head/; revision=18471
|
|
Notes:
svn path=/head/; revision=10401
|
