9fe1a5aaab
After some thinking implement alternative way:if it is impossible
...
to confirm password, don't tell that s/key required, but
ask for password in anycase. It looks like non-s/key system
from outside.
1996-10-18 16:52:33 +00:00
4737abd588
Make PERMIT_CONSOLE to work not only from
...
/dev/console, but from syscons vty's too
1996-10-17 21:49:34 +00:00
6903b42cd8
Change "nope" to ":"
...
Previous variant not work well, if you have a user with name nope
1996-10-17 16:47:22 +00:00
811a3c8d54
Prevent namespace pollution cause by this library by splitting to
...
API and non-API functions and giving _sk_ prefix for all non-API
functions. Old names will be available by _SKEY_INTERNAL define
it allows not change anything in keyinit & key, only -D_SKEY_INTERNAL required.
Staticise some things.
1996-10-17 15:22:46 +00:00
590b04e005
If 1) regular Unix passwords not permitted and 2) skey database
...
for this user not activated, there no correct password exist,
so don't bother ask for it and return "" immediately
1996-10-17 13:43:58 +00:00
96b74d637f
Make it work in localized environment, replace strftime's %b which can be
...
in national form with months names table
1996-10-17 12:45:39 +00:00
345be915f7
cmp -s || install -c ==> install -C
1996-08-30 02:12:07 +00:00
51295a4d3e
General -Wall warning cleanup, part I.
...
Submitted-By: Kent Vander Velden <graphix@iastate.edu>
1996-07-12 18:57:58 +00:00
711e38f8ed
/etc/skeykeys was basically suffering from the same vulnerability
...
as any non-shadowed /etc/passwd. Ironically, all programs using S/Key
have already been setuid root except keyinfo(1).
This modification creates /etc/skeykeys with mode 0600 to prevent it
from being examined by ordinary users.
1996-04-26 21:33:18 +00:00
a5b996a7ec
recording cvs-1.6 file death
1995-12-30 19:02:48 +00:00
48cfb668fc
Change `install' to `${INSTALL}' so that default install flags can be
...
specified in the top level Makefiles.
Previously I missed dozens of Makefiles that skip the install after
using `cmp -s' to decide that the install isn't necessary.
1995-08-06 12:24:38 +00:00
d3628763db
Merge RELENG_2_0_5 into HEAD
1995-06-11 19:33:05 +00:00
6c06b4e2aa
Remove trailing whitespace.
1995-05-30 05:51:47 +00:00
c8448f10eb
Change strtok() to strsep(), strtok() usage is depricated
...
in libraries.
1995-03-24 17:27:22 +00:00
ab1a62c2a2
Remove extra newline.
1994-10-27 18:15:42 +00:00
6d7d1e5932
new file does skey_getpass() support
1994-10-19 00:14:32 +00:00
2ddadf840c
Include most of the logdaemon v4.4 S/key changes
1994-10-19 00:03:45 +00:00
bd5d6eecd0
Move skey.h back where it belongs
1994-09-29 19:27:35 +00:00
d7e9de5e6e
Install improved skey access code
1994-09-29 18:58:39 +00:00
9826cd3dfa
Don't define LITTLE_ENDIAN is already defined.
1994-09-23 06:53:03 +00:00
3653271054
Move skey.h to /usr/include so other packages will be able to use
...
libskey. (such as wu-ftp and xdm).
Editted skey so it matches the standard /usr/include way.
1994-06-02 20:25:30 +00:00
0d92fee747
Clean up S/key library (libskey.a) so that filename access is via the
...
standard 4.4bsd pathnames mechanism.
Also document a potential security hole vs backwards compatibility tradeoff.
1994-05-27 07:50:08 +00:00
dbd34b8383
Put md5.c copyright on md4.c. I contacted RSA inc. for that some time ago
...
but forgot to do it.
-Guido
1994-05-20 06:44:56 +00:00
110af3d672
1) Added s/key support .
...
2 Added optional excessive login logging.
3) Added login acces control on a per host/tty base.
4) See skey(1) for skey descriptions and src/usr.bin/login/README
for the logging and access control features.
-Guido
1994-05-19 18:13:11 +00:00
Andrey A. Chernov
Peter Wemm
Jordan K. Hubbard
Joerg Wunsch
Bruce Evans
Rodney W. Grimes
Paul Traina
David Greenman
Guido van Rooij