1 2002-09-04 Johan Danielsson <joda@pdc.kth.se>
3 * rsh.c: free some memory
5 2002-09-04 Assar Westerlund <assar@kth.se>
7 * common.c: krb5_crypto_block_size -> krb5_crypto_getblocksize
9 2002-09-04 Johan Danielsson <joda@pdc.kth.se>
13 2002-09-03 Johan Danielsson <joda@pdc.kth.se>
15 * rsh.c: revert to protocol v1 if not asked for specific protocol
17 * rshd.c: handle protocol version 2
19 * rsh.c: handle protocol version 2
21 * common.c: handle protocol version 2
23 * rsh_locl.h: handle protocol version 2
25 2002-02-18 Johan Danielsson <joda@pdc.kth.se>
27 * rshd.c: don't show options that doesn't apply
29 * rsh.c: don't show options that doesn't apply
31 * rsh_locl.h: if we're not building with any kerberos support,
32 just call read/write directly
34 * common.c: if we're not building with any kerberos support, just
35 call read/write directly
37 * rshd.c: make this build without krb5; also use the addrinfo
38 interface to mini_inetd, and set the keepalive option if requested
40 * rsh.c: make this build without krb5
42 * rsh_locl.h: make this build without krb5
44 * common.c: make this build without krb5
46 2001-11-30 Johan Danielsson <joda@pdc.kth.se>
48 * rshd.c: make the syslog messages somewhat more informative
50 2001-08-15 Johan Danielsson <joda@pdc.kth.se>
52 * rsh.c: only complain about encryption flag when old
53 authentication is requested
55 2001-08-07 Johan Danielsson <joda@pdc.kth.se>
57 * rsh.c: don't try broken auth if rresvport failed; try to give
58 some more informative error messages
60 2001-07-31 Johan Danielsson <joda@pdc.kth.se>
62 * rshd.8: add an EXAMPLE
64 * rshd.c: add some compat flags
66 * rsh.c: iff -d, set the SO_DEBUG flags of the stdout and stderr
67 socket; implement parsing user@host
69 2001-07-19 Assar Westerlund <assar@sics.se>
71 * rshd.c (fatal): use vsnprintf correctly
73 2001-02-07 Assar Westerlund <assar@sics.se>
75 * Makefile.am: add login_access
76 * rshd.c (login_access): add prototype
77 (syslog_and_die, fatal): add printf attributes
79 (doit): use login_access
80 based on patches from Ake Sandgren <ake@cs.umu.se>
82 2001-01-09 Assar Westerlund <assar@sics.se>
84 * rshd.c (save_krb5_creds): use krb5_rd_cred2 instead of
87 2000-12-31 Assar Westerlund <assar@sics.se>
89 * rshd.c (main): handle krb5_init_context failure consistently
90 * rsh.c (main): handle krb5_init_context failure consistently
92 2000-12-05 Johan Danielsson <joda@pdc.kth.se>
94 * rshd.c: require encryption if passed -x
96 2000-11-15 Assar Westerlund <assar@sics.se>
98 * rshd.c (loop): check that the fd's aren't too large to select on
99 * rsh.c (loop, proto): check that the fd's aren't too large to
102 2000-08-10 Assar Westerlund <assar@sics.se>
104 * rsh.c: move code to do config/command parsing correctly.
106 2000-08-09 Assar Westerlund <assar@sics.se>
108 * rsh.c (main): only fetch stuff from krb5.conf when no option has
111 2000-08-01 Assar Westerlund <assar@sics.se>
113 * rsh.c (doit): loop until we create an error socket of an
114 supported socket family
116 2000-07-02 Assar Westerlund <assar@sics.se>
118 * rshd.c: DCE stuff from Ake Sandgren <ake@cs.umu.se>
119 do not call syslog with a variable as format string
121 * rsh_locl.h (_PATH_ETC_ENVIRONMENT): add
123 2000-06-09 Assar Westerlund <assar@sics.se>
125 * rsh.c (main): work-around for setuid and capabilities bug fixed
128 2000-06-06 Johan Danielsson <joda@pdc.kth.se>
130 * rsh.c: nuke long option from -z
132 * rsh.c: don't try to encrypt if auth is broken (Daniel Kouril)
134 2000-06-03 Assar Westerlund <assar@sics.se>
136 * rshd.c (doit): check return value of getspnam. From
139 2000-05-23 Assar Westerlund <assar@sics.se>
141 * rsh.c (proto): select on the normal socket when waiting for the
142 daemon to connect back to the stderr port, so that we discover
143 when data arrives there before. when that happens, we assume that
144 the daemon did not manage to connect (because of NAT/whatever) and
145 continue as if `-e' was given
146 * rshd.c (doit): if we fail to connect back to the stderr port,
147 act as if `-e' was given on the client side, i.e. without the
148 special TCP-connection. This tries to make things better when
149 running the head against a NAT wall, for example.
151 2000-02-07 Assar Westerlund <assar@sics.se>
153 * Makefile.am (LDADD): make sure we use the heimdal libdes
155 2000-02-06 Assar Westerlund <assar@sics.se>
157 * *: conditionalize des stuff on KRB4
159 1999-12-16 Assar Westerlund <assar@sics.se>
161 * rsh.c (doit): addrinfo returned from getaddrinfo() is not usable
162 directly as hints. copy it and set AI_PASSIVE.
164 1999-11-20 Assar Westerlund <assar@sics.se>
166 * rsh.c (main): remember to close the priviledged sockets before
169 1999-11-02 Assar Westerlund <assar@sics.se>
171 * rsh.c (main): redo the v4/v5 selection for consistency. -4 ->
172 try only v4 -5 -> try only v5 none, -45 -> try v5, v4
174 1999-10-26 Assar Westerlund <assar@sics.se>
176 * rshd.c (main): ignore SIGPIPE
178 * common.c (do_read): the encoded length can be longer than the
179 buffer being used, allocate memory for it dynamically. From Brian
180 A May <bmay@dgs.monash.edu.au>
182 1999-10-14 Assar Westerlund <assar@sics.se>
184 * rsh.c (proto): be more careful and don't print errno when read()
187 1999-09-20 Assar Westerlund <assar@sics.se>
189 * rshd.c (recv_krb4_auth): set `iv'
191 1999-08-16 Assar Westerlund <assar@sics.se>
193 * common.c (do_read): be careful with the return value from
196 1999-08-05 Assar Westerlund <assar@sics.se>
198 * rsh.c: call freehostent
200 * rsh.c: remove some dead code
202 1999-08-04 Assar Westerlund <assar@sics.se>
204 * rshd.c: re-write the handling of forwarded credentials and
205 stuff. From Miroslav Ruda <ruda@ics.muni.cz>
207 * rsh_locl.h: always include kafs.h
209 * rsh.c: add `-z' and `-G' options
211 * rsh.c (loop): shutdown one side of the TCP connection on EOF.
212 From Brian A May <bmay@dgs.monash.edu.au>
214 * common.c (do_read): handle EOF. From Brian A May
215 <bmay@dgs.monash.edu.au>
217 1999-08-01 Assar Westerlund <assar@sics.se>
221 1999-07-29 Assar Westerlund <assar@sics.se>
227 1999-07-28 Assar Westerlund <assar@sics.se>
229 * rsh_locl.h: move around kafs.h
231 1999-07-24 Assar Westerlund <assar@sics.se>
233 * rsh_locl.h: <shadow.h>
235 * rsh.c, rshd.c: improve forwarding and implement unique ccache on
236 server. From Miroslav Ruda <ruda@ics.muni.cz>
238 1999-07-03 Assar Westerlund <assar@sics.se>
240 * rsh.c (construct_command): handle argc == 0 for generality
242 1999-06-23 Assar Westerlund <assar@sics.se>
244 * rsh.c: new option `-e' for not trying to open an stderr socket
246 1999-06-17 Assar Westerlund <assar@sics.se>
248 * rsh_locl.h (RSH_BUFSIZ): bump to 16 * 1024 to be sure that we
249 don't leave any data inside des_enc_read. (that constant should
250 really be exported in some way...)
252 1999-06-15 Assar Westerlund <assar@sics.se>
254 * rsh.c: use get_default_username and resulting const pollution
256 1999-05-21 Assar Westerlund <assar@sics.se>
258 * rsh.c (main): try $USERNAME
260 1999-05-14 Assar Westerlund <assar@sics.se>
262 * rshd.c (doit): afslog correctly
264 1999-05-11 Assar Westerlund <assar@sics.se>
266 * rsh.c (main): add fallback to rlogin
268 1999-05-10 Assar Westerlund <assar@sics.se>
270 * rsh.c (send_krb5_auth): call krb5_sendauth with ccache == NULL.
271 check return value from krb5_crypto_init
273 * common.c (do_write, do_read): always return -1 for failure
274 (net_write, net_read): remove. they already exist in libroken
276 1999-05-09 Assar Westerlund <assar@sics.se>
278 * rsh.c: make sure it tries with all other authentication methods
280 * rsh.c (main): detect the case of no command given.
282 1999-04-11 Assar Westerlund <assar@sics.se>
284 * rsh.c: new option --forwardable. use print_version
286 Sat Apr 10 17:10:55 1999 Assar Westerlund <assar@sics.se>
288 * rshd.c (setup_copier): use `socketpair' instead of `pipe'. Some
289 shells don't think it's a rsh session if they find a pipe at the
291 (setup_environment): add SSH_CLIENT just to make bash happy
293 * common.c (do_read): use krb5_get_wrapped_length
295 Wed Mar 24 03:59:42 1999 Assar Westerlund <assar@sics.se>
297 * rsh.c (loop): more braces to make gcc happy
299 Tue Mar 23 17:08:32 1999 Johan Danielsson <joda@hella.pdc.kth.se>
303 * rshd.c: add `-P', `-v', and `-L' flags
305 Thu Mar 18 11:37:24 1999 Johan Danielsson <joda@hella.pdc.kth.se>
307 * Makefile.am: include Makefile.am.common
309 Tue Dec 1 14:44:44 1998 Johan Danielsson <joda@hella.pdc.kth.se>
311 * appl/rsh/rshd.c: update to new crypto framework
313 * appl/rsh/rsh_locl.h: update to new crypto framework
315 * appl/rsh/rsh.c: update to new crypto framework
317 * appl/rsh/common.c: update to new crypto framework
319 Mon Nov 2 01:15:06 1998 Assar Westerlund <assar@sics.se>
321 * appl/rsh/rsh.c (main): initialize host
323 * appl/rsh/rshd.c (recv_krb5_auth): disable `do_encrypt' if not
326 Thu Jul 30 23:12:17 1998 Assar Westerlund <assar@sics.se>
328 * appl/rsh/rsh.c: kludges for parsing `rsh hostname -l user'
330 Thu Jul 23 19:49:03 1998 Johan Danielsson <joda@emma.pdc.kth.se>
332 * appl/rsh/rshd.c: use krb5_verify_authenticator_checksum
334 Sat Apr 18 21:13:06 1998 Johan Danielsson <joda@emma.pdc.kth.se>
336 * appl/rsh/rsh.c: Don't try v5 if (only) `-4' is specified.
338 Sun Dec 21 09:44:05 1997 Assar Westerlund <assar@sics.se>
340 * appl/rsh/rshd.c (recv_krb5_auth): swap the order of the
341 `local_user' and the `remote_user'
343 * appl/rsh/rsh.c (send_krb5_auth): swap the order of the
344 `local_user' and the `remote_user'
346 Sat Nov 29 07:10:11 1997 Assar Westerlund <assar@sics.se>
348 * appl/rsh/rshd.c: updated to use getarg.
349 changed `struct fd_set' to `fd_set'.
350 implemented broken/BSD authentication (requires iruserok)
352 Wed Nov 12 02:35:57 1997 Assar Westerlund <assar@sics.se>
354 * appl/rsh/rsh_locl.h: add AUTH_BROKEN and PATH_RSH
356 * appl/rsh/Makefile.am: set BINDIR
358 * appl/rsh/rsh.c: implemented BSD-style reserved port
361 Sun Aug 24 08:06:54 1997 Assar Westerlund <assar@sics.se>
363 * appl/rsh/rshd.c: syslog remote shells
365 Tue Aug 12 01:29:46 1997 Assar Westerlund <assar@sics.se>
367 * appl/rshd/rshd.c: Use `krb5_sock_to_principal'. Send server
368 parameter to krb5_rd_req/krb5_recvauth. Set addresses in
371 Fri Jul 25 17:32:12 1997 Assar Westerlund <assar@sics.se>
373 * appl/rsh/rshd.c: implement forwarding
375 * appl/rsh/rsh.c: Use getarg. Implement forwarding.
377 Sun Jul 13 00:32:16 1997 Assar Westerlund <assar@sics.se>
379 * appl/rsh: Conditionalize the krb4-support.
381 Wed Jul 9 06:58:00 1997 Assar Westerlund <assar@sics.se>
383 * appl/rsh/rsh.c: use the correct user for the checksum
385 Mon Jul 7 11:15:51 1997 Assar Westerlund <assar@sics.se>
387 * appl/rsh/rshd.c: Now works. Also implementd encryption and
390 * appl/rsh/common.c: new file
392 Mon Jun 30 06:08:14 1997 Assar Westerlund <assar@sics.se>
394 * appl/rsh: New program.