1 2003-04-16 Johan Danielsson <joda@pdc.kth.se>
3 * rsh.c: use krb5_appdefault to get defaults for forward and
6 * rshd.c: use ARG_MAX + 1
8 * rshd.c (read_str): return allocated string
10 * rsh_locl.h: set NCARGS to 8k if undefined
12 2003-03-23 Assar Westerlund <assar@kth.se>
14 * rsh.c (loop): only check errsock if it's valid
16 2003-03-18 Love Love Hörnquist Åstrand <lha@it.su.se>
18 * rshd.c: do krb5_afslog when compling with afs support
20 * rsh_locl.h: always include kafs.h
22 2002-11-22 Johan Danielsson <joda@pdc.kth.se>
24 * rshd.8: clarify -x and kerberos 5
26 2002-11-01 Johan Danielsson <joda@pdc.kth.se>
28 * rsh_locl.h: bump COMMAND_SZ to NCARGS+1
30 2002-09-04 Johan Danielsson <joda@pdc.kth.se>
32 * rsh.c: free some memory
34 2002-09-04 Assar Westerlund <assar@kth.se>
36 * common.c: krb5_crypto_block_size -> krb5_crypto_getblocksize
38 2002-09-04 Johan Danielsson <joda@pdc.kth.se>
42 2002-09-03 Johan Danielsson <joda@pdc.kth.se>
44 * rsh.c: revert to protocol v1 if not asked for specific protocol
46 * rshd.c: handle protocol version 2
48 * rsh.c: handle protocol version 2
50 * common.c: handle protocol version 2
52 * rsh_locl.h: handle protocol version 2
54 2002-02-18 Johan Danielsson <joda@pdc.kth.se>
56 * rshd.c: don't show options that doesn't apply
58 * rsh.c: don't show options that doesn't apply
60 * rsh_locl.h: if we're not building with any kerberos support,
61 just call read/write directly
63 * common.c: if we're not building with any kerberos support, just
64 call read/write directly
66 * rshd.c: make this build without krb5; also use the addrinfo
67 interface to mini_inetd, and set the keepalive option if requested
69 * rsh.c: make this build without krb5
71 * rsh_locl.h: make this build without krb5
73 * common.c: make this build without krb5
75 2001-11-30 Johan Danielsson <joda@pdc.kth.se>
77 * rshd.c: make the syslog messages somewhat more informative
79 2001-08-15 Johan Danielsson <joda@pdc.kth.se>
81 * rsh.c: only complain about encryption flag when old
82 authentication is requested
84 2001-08-07 Johan Danielsson <joda@pdc.kth.se>
86 * rsh.c: don't try broken auth if rresvport failed; try to give
87 some more informative error messages
89 2001-07-31 Johan Danielsson <joda@pdc.kth.se>
91 * rshd.8: add an EXAMPLE
93 * rshd.c: add some compat flags
95 * rsh.c: iff -d, set the SO_DEBUG flags of the stdout and stderr
96 socket; implement parsing user@host
98 2001-07-19 Assar Westerlund <assar@sics.se>
100 * rshd.c (fatal): use vsnprintf correctly
102 2001-02-07 Assar Westerlund <assar@sics.se>
104 * Makefile.am: add login_access
105 * rshd.c (login_access): add prototype
106 (syslog_and_die, fatal): add printf attributes
108 (doit): use login_access
109 based on patches from Ake Sandgren <ake@cs.umu.se>
111 2001-01-09 Assar Westerlund <assar@sics.se>
113 * rshd.c (save_krb5_creds): use krb5_rd_cred2 instead of
116 2000-12-31 Assar Westerlund <assar@sics.se>
118 * rshd.c (main): handle krb5_init_context failure consistently
119 * rsh.c (main): handle krb5_init_context failure consistently
121 2000-12-05 Johan Danielsson <joda@pdc.kth.se>
123 * rshd.c: require encryption if passed -x
125 2000-11-15 Assar Westerlund <assar@sics.se>
127 * rshd.c (loop): check that the fd's aren't too large to select on
128 * rsh.c (loop, proto): check that the fd's aren't too large to
131 2000-08-10 Assar Westerlund <assar@sics.se>
133 * rsh.c: move code to do config/command parsing correctly.
135 2000-08-09 Assar Westerlund <assar@sics.se>
137 * rsh.c (main): only fetch stuff from krb5.conf when no option has
140 2000-08-01 Assar Westerlund <assar@sics.se>
142 * rsh.c (doit): loop until we create an error socket of an
143 supported socket family
145 2000-07-02 Assar Westerlund <assar@sics.se>
147 * rshd.c: DCE stuff from Ake Sandgren <ake@cs.umu.se>
148 do not call syslog with a variable as format string
150 * rsh_locl.h (_PATH_ETC_ENVIRONMENT): add
152 2000-06-09 Assar Westerlund <assar@sics.se>
154 * rsh.c (main): work-around for setuid and capabilities bug fixed
157 2000-06-06 Johan Danielsson <joda@pdc.kth.se>
159 * rsh.c: nuke long option from -z
161 * rsh.c: don't try to encrypt if auth is broken (Daniel Kouril)
163 2000-06-03 Assar Westerlund <assar@sics.se>
165 * rshd.c (doit): check return value of getspnam. From
168 2000-05-23 Assar Westerlund <assar@sics.se>
170 * rsh.c (proto): select on the normal socket when waiting for the
171 daemon to connect back to the stderr port, so that we discover
172 when data arrives there before. when that happens, we assume that
173 the daemon did not manage to connect (because of NAT/whatever) and
174 continue as if `-e' was given
175 * rshd.c (doit): if we fail to connect back to the stderr port,
176 act as if `-e' was given on the client side, i.e. without the
177 special TCP-connection. This tries to make things better when
178 running the head against a NAT wall, for example.
180 2000-02-07 Assar Westerlund <assar@sics.se>
182 * Makefile.am (LDADD): make sure we use the heimdal libdes
184 2000-02-06 Assar Westerlund <assar@sics.se>
186 * *: conditionalize des stuff on KRB4
188 1999-12-16 Assar Westerlund <assar@sics.se>
190 * rsh.c (doit): addrinfo returned from getaddrinfo() is not usable
191 directly as hints. copy it and set AI_PASSIVE.
193 1999-11-20 Assar Westerlund <assar@sics.se>
195 * rsh.c (main): remember to close the priviledged sockets before
198 1999-11-02 Assar Westerlund <assar@sics.se>
200 * rsh.c (main): redo the v4/v5 selection for consistency. -4 ->
201 try only v4 -5 -> try only v5 none, -45 -> try v5, v4
203 1999-10-26 Assar Westerlund <assar@sics.se>
205 * rshd.c (main): ignore SIGPIPE
207 * common.c (do_read): the encoded length can be longer than the
208 buffer being used, allocate memory for it dynamically. From Brian
209 A May <bmay@dgs.monash.edu.au>
211 1999-10-14 Assar Westerlund <assar@sics.se>
213 * rsh.c (proto): be more careful and don't print errno when read()
216 1999-09-20 Assar Westerlund <assar@sics.se>
218 * rshd.c (recv_krb4_auth): set `iv'
220 1999-08-16 Assar Westerlund <assar@sics.se>
222 * common.c (do_read): be careful with the return value from
225 1999-08-05 Assar Westerlund <assar@sics.se>
227 * rsh.c: call freehostent
229 * rsh.c: remove some dead code
231 1999-08-04 Assar Westerlund <assar@sics.se>
233 * rshd.c: re-write the handling of forwarded credentials and
234 stuff. From Miroslav Ruda <ruda@ics.muni.cz>
236 * rsh_locl.h: always include kafs.h
238 * rsh.c: add `-z' and `-G' options
240 * rsh.c (loop): shutdown one side of the TCP connection on EOF.
241 From Brian A May <bmay@dgs.monash.edu.au>
243 * common.c (do_read): handle EOF. From Brian A May
244 <bmay@dgs.monash.edu.au>
246 1999-08-01 Assar Westerlund <assar@sics.se>
250 1999-07-29 Assar Westerlund <assar@sics.se>
256 1999-07-28 Assar Westerlund <assar@sics.se>
258 * rsh_locl.h: move around kafs.h
260 1999-07-24 Assar Westerlund <assar@sics.se>
262 * rsh_locl.h: <shadow.h>
264 * rsh.c, rshd.c: improve forwarding and implement unique ccache on
265 server. From Miroslav Ruda <ruda@ics.muni.cz>
267 1999-07-03 Assar Westerlund <assar@sics.se>
269 * rsh.c (construct_command): handle argc == 0 for generality
271 1999-06-23 Assar Westerlund <assar@sics.se>
273 * rsh.c: new option `-e' for not trying to open an stderr socket
275 1999-06-17 Assar Westerlund <assar@sics.se>
277 * rsh_locl.h (RSH_BUFSIZ): bump to 16 * 1024 to be sure that we
278 don't leave any data inside des_enc_read. (that constant should
279 really be exported in some way...)
281 1999-06-15 Assar Westerlund <assar@sics.se>
283 * rsh.c: use get_default_username and resulting const pollution
285 1999-05-21 Assar Westerlund <assar@sics.se>
287 * rsh.c (main): try $USERNAME
289 1999-05-14 Assar Westerlund <assar@sics.se>
291 * rshd.c (doit): afslog correctly
293 1999-05-11 Assar Westerlund <assar@sics.se>
295 * rsh.c (main): add fallback to rlogin
297 1999-05-10 Assar Westerlund <assar@sics.se>
299 * rsh.c (send_krb5_auth): call krb5_sendauth with ccache == NULL.
300 check return value from krb5_crypto_init
302 * common.c (do_write, do_read): always return -1 for failure
303 (net_write, net_read): remove. they already exist in libroken
305 1999-05-09 Assar Westerlund <assar@sics.se>
307 * rsh.c: make sure it tries with all other authentication methods
309 * rsh.c (main): detect the case of no command given.
311 1999-04-11 Assar Westerlund <assar@sics.se>
313 * rsh.c: new option --forwardable. use print_version
315 Sat Apr 10 17:10:55 1999 Assar Westerlund <assar@sics.se>
317 * rshd.c (setup_copier): use `socketpair' instead of `pipe'. Some
318 shells don't think it's a rsh session if they find a pipe at the
320 (setup_environment): add SSH_CLIENT just to make bash happy
322 * common.c (do_read): use krb5_get_wrapped_length
324 Wed Mar 24 03:59:42 1999 Assar Westerlund <assar@sics.se>
326 * rsh.c (loop): more braces to make gcc happy
328 Tue Mar 23 17:08:32 1999 Johan Danielsson <joda@hella.pdc.kth.se>
332 * rshd.c: add `-P', `-v', and `-L' flags
334 Thu Mar 18 11:37:24 1999 Johan Danielsson <joda@hella.pdc.kth.se>
336 * Makefile.am: include Makefile.am.common
338 Tue Dec 1 14:44:44 1998 Johan Danielsson <joda@hella.pdc.kth.se>
340 * appl/rsh/rshd.c: update to new crypto framework
342 * appl/rsh/rsh_locl.h: update to new crypto framework
344 * appl/rsh/rsh.c: update to new crypto framework
346 * appl/rsh/common.c: update to new crypto framework
348 Mon Nov 2 01:15:06 1998 Assar Westerlund <assar@sics.se>
350 * appl/rsh/rsh.c (main): initialize host
352 * appl/rsh/rshd.c (recv_krb5_auth): disable `do_encrypt' if not
355 Thu Jul 30 23:12:17 1998 Assar Westerlund <assar@sics.se>
357 * appl/rsh/rsh.c: kludges for parsing `rsh hostname -l user'
359 Thu Jul 23 19:49:03 1998 Johan Danielsson <joda@emma.pdc.kth.se>
361 * appl/rsh/rshd.c: use krb5_verify_authenticator_checksum
363 Sat Apr 18 21:13:06 1998 Johan Danielsson <joda@emma.pdc.kth.se>
365 * appl/rsh/rsh.c: Don't try v5 if (only) `-4' is specified.
367 Sun Dec 21 09:44:05 1997 Assar Westerlund <assar@sics.se>
369 * appl/rsh/rshd.c (recv_krb5_auth): swap the order of the
370 `local_user' and the `remote_user'
372 * appl/rsh/rsh.c (send_krb5_auth): swap the order of the
373 `local_user' and the `remote_user'
375 Sat Nov 29 07:10:11 1997 Assar Westerlund <assar@sics.se>
377 * appl/rsh/rshd.c: updated to use getarg.
378 changed `struct fd_set' to `fd_set'.
379 implemented broken/BSD authentication (requires iruserok)
381 Wed Nov 12 02:35:57 1997 Assar Westerlund <assar@sics.se>
383 * appl/rsh/rsh_locl.h: add AUTH_BROKEN and PATH_RSH
385 * appl/rsh/Makefile.am: set BINDIR
387 * appl/rsh/rsh.c: implemented BSD-style reserved port
390 Sun Aug 24 08:06:54 1997 Assar Westerlund <assar@sics.se>
392 * appl/rsh/rshd.c: syslog remote shells
394 Tue Aug 12 01:29:46 1997 Assar Westerlund <assar@sics.se>
396 * appl/rshd/rshd.c: Use `krb5_sock_to_principal'. Send server
397 parameter to krb5_rd_req/krb5_recvauth. Set addresses in
400 Fri Jul 25 17:32:12 1997 Assar Westerlund <assar@sics.se>
402 * appl/rsh/rshd.c: implement forwarding
404 * appl/rsh/rsh.c: Use getarg. Implement forwarding.
406 Sun Jul 13 00:32:16 1997 Assar Westerlund <assar@sics.se>
408 * appl/rsh: Conditionalize the krb4-support.
410 Wed Jul 9 06:58:00 1997 Assar Westerlund <assar@sics.se>
412 * appl/rsh/rsh.c: use the correct user for the checksum
414 Mon Jul 7 11:15:51 1997 Assar Westerlund <assar@sics.se>
416 * appl/rsh/rshd.c: Now works. Also implementd encryption and
419 * appl/rsh/common.c: new file
421 Mon Jun 30 06:08:14 1997 Assar Westerlund <assar@sics.se>
423 * appl/rsh: New program.