Commit Graph

156 Commits

Author SHA1 Message Date
Kurt Zeilenga
8045b54124 Use getpassphrase() instead of getpass() if available. 2000-05-19 18:41:26 +00:00
Kurt Zeilenga
3e82a5309b Add missing copyright notices 2000-05-13 02:43:19 +00:00
Kurt Zeilenga
29d9fa20a2 Y2k copyright update 2000-05-13 02:36:07 +00:00
Kurt Zeilenga
69fbf137aa make ntservice error to string routines static
#undef __RETSTR before #define
2000-05-13 00:48:17 +00:00
Howard Chu
3f618bfe03 Fix ambiguous return value in lutil_passwd 2000-05-13 00:10:24 +00:00
Howard Chu
237b00049a Moved GetLastErrorString to ntservice.c. I missed it before, thought it
was unused but it's needed in ntservice.c
2000-05-12 23:53:14 +00:00
Kurt Zeilenga
304a57740a nt_err.c has moved from lutil to lber 2000-05-12 23:37:28 +00:00
Howard Chu
9a79d03e13 Fix previous change to getRegParam, SERVICE_NAME is only known in slapd. 2000-05-12 21:26:30 +00:00
Howard Chu
3dc83998c0 Moved nt_err from liblutil to liblber, renamed WSAGetErrorString to
ber_pvt_wsa_err2string.
2000-05-12 21:16:15 +00:00
Howard Chu
8d2aba12b4 Fix typo in lutil_debug for NT: file -> log_file 2000-05-12 20:01:40 +00:00
Howard Chu
2e5e4c3f20 More fixes for NT support:
liblutil/ntservice.c change registry key path used for non-default
  	service names.
  slapd/Makefile.in change to generate slapd.syms dynamically
  slapd/daemon.c fix to make NT service ignore SIGBREAK
  slapd/main.c fix to allow NT to retrieve listening url from registry
  slapd/nt_svc.c fix for exported symbols
  slapd/result.c change use of strerror to sock_errstr
  slapd/slapd.syms no longer needed
2000-05-11 20:50:20 +00:00
Howard Chu
7ca81c0a03 Fix one more chk_unix ifdef 2000-05-11 20:00:47 +00:00
Kurt Zeilenga
cdb709fd27 Fix unbalanced #endif 2000-05-11 16:06:41 +00:00
Howard Chu
605832eaa5 Added support for AIX security database:
configure.in: check for AIX security library, set in AUTH_LIBS macro
  top.mk: add AUTH_LIBS macro to SECURITY_LIBS
  portable.h.in: added HAVE_AIX_SECURITY macro (via autoheader)
  passwd.c: use AIX getuserpw in chk_unix. Also fix logic in chk_unix:
  	getpwnam must always succeed for the given user. It is not a
	fatal error if getspnam returns no result for the user: On
	systems that support /etc/shadow, its usage is optional. The
	same logic applies for AIX, SCO/HP SecureWare, etc.
2000-05-11 10:10:53 +00:00
Howard Chu
65d7521be1 Added LBER_OPT_LOG_PRINT_FILE to redirect the output of ber_error_print.
Used mainly on NT since stderr doesn't exist when slapd runs as a service.
2000-05-11 09:39:33 +00:00
Kurt Zeilenga
3553f9aab6 Fix #ifdefs when --disable-crypt 2000-05-10 23:26:42 +00:00
Kurt Zeilenga
f224e69558 Add experimental code to check simple bind passwords
against Cyrus SASLdb.  Like other cleartext mechanisms,
should be protected from eavesdropping.
2000-05-10 04:29:51 +00:00
Kurt Zeilenga
802ee714e4 Framework for authpasswd. Needs work. Behind #ifdef 2000-04-25 13:28:03 +00:00
Kurt Zeilenga
6a4ff3b996 Fix == v != bug 2000-04-19 13:35:43 +00:00
Kurt Zeilenga
4c0be829e1 Fix usage in comment 2000-03-17 02:07:59 +00:00
Kurt Zeilenga
0ba3d75913 Don't chdir("/"). Root may not be writable to daemon.
Only user can select appropriate run directory.  Best left to user.
2000-02-08 04:22:31 +00:00
Kurt Zeilenga
107b22a73c Fix typo 2000-01-25 23:58:44 +00:00
Kurt Zeilenga
5967cc5658 Even more checks around use of crypt(3). 2000-01-17 17:09:33 +00:00
Kurt Zeilenga
c17b89f431 Add additional crypt() sanity checks. 2000-01-17 16:53:15 +00:00
Kurt Zeilenga
10a6e51521 All close and redirect stdin, stdout, stderr. 2000-01-11 08:04:59 +00:00
Kurt Zeilenga
1fb42bf957 Revamp detach code to ensure stdin, stdout, stderr get closed. 2000-01-11 02:20:01 +00:00
Kurt Zeilenga
34fe70cc71 Validate krb5_init_context 2000-01-10 21:37:04 +00:00
Kurt Zeilenga
38f0b890ab Borrowed a bit to literally... s/pop/ldap/ s/popper/slapd/ 2000-01-09 00:20:00 +00:00
Kurt Zeilenga
e988e175a6 Minor fixes. 2000-01-08 18:51:27 +00:00
Kurt Zeilenga
6437785a82 Initial implementation of Kerberos password verification for
simple bind via:
	{KERBEROS}principal
Code is disabled by default (for security reasons).  Use
--enable-kpasswd to enable.  Behind SLAPD_KPASSWD.
Reworked Kerberos detection and split out KBIND as independent
feature (--disable-kbind) (LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND).
KBIND depends upon detection of KRB4 (or KRB425) support.  Detection,
building with eBones (as distributed with FreeBSD 3.4) okay, but
wasn't able to test as I don't have a K4 KDC handy.
--with-kerberos has a number of detection options... most likely
don't work properly.
2000-01-08 18:42:11 +00:00
Kurt Zeilenga
f3a650b8af Add comment about removing HANDSOFF may case alignment problems 1999-12-18 19:51:49 +00:00
Kurt Zeilenga
30411f8402 Add slappasswd to generate rootpw. 1999-12-16 02:18:50 +00:00
Kurt Zeilenga
b1639dadd6 Remove lint
Add copyrights
1999-12-13 04:53:59 +00:00
Kurt Zeilenga
cda19446ef s/generate/hash/ 1999-12-12 05:06:36 +00:00
Kurt Zeilenga
431dad371c Fix slapd SASL/ExternalOps encoding
Add controls to extended ops API signatures, need impl.
Update password to support optional server side generation of
new password, verification of old password, and changing of
non-bound user's passwords.
1999-12-10 04:52:32 +00:00
Kurt Zeilenga
b973e61dda Fix {CRYPT} and {UNIX} passwords 1999-12-09 01:24:38 +00:00
Kurt Zeilenga
5e12c84a6f Add simple password test program.
Rework lutil_passwd routines to use struct berval instead of strings.
1999-12-09 01:11:16 +00:00
Kurt Zeilenga
aeb2de33d7 Found and fixed stupid bug in seeded hash generation. 1999-12-08 19:23:32 +00:00
Kurt Zeilenga
96a126e36a Need to adjust len by saltlen 1999-12-08 07:07:18 +00:00
Kurt Zeilenga
26c7d69e8c Update for new password codes for MSVC5 1999-12-08 06:44:22 +00:00
Kurt Zeilenga
d5edb4bff6 Reengineered ldappasswd(1). Uses extended operation to set
user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.
1999-12-08 04:37:59 +00:00
Kurt Zeilenga
fe591cf679 Remove istty test otherwise we may not detach. 1999-12-05 05:25:02 +00:00
Howard Chu
eaaea51b53 Fixes for NT dynamic linking. 1999-11-27 23:40:08 +00:00
Kurt Zeilenga
357101793b Use lber types instead of uint32 for md5. sha1 still requires
an integer type of exactly 32 bits.
1999-11-17 02:04:06 +00:00
Kurt Zeilenga
14f107e9ed Changes to support NT single debug 1999-11-01 22:17:06 +00:00
Kurt Zeilenga
b7af076fee Use centralized output directories.
Update single debug/release not to use service manager nor event manager.
Likely breaks MINGW32 port.
1999-11-01 21:25:22 +00:00
Kurt Zeilenga
4cc712db53 Add <ac/param.h> to wrap <sys/param.h> 1999-11-01 17:21:24 +00:00
Howard Chu
17e1877a12 Fix broken MSVC builds. The previous round of Mingw32 patches changed some
ifdefs to depend on _WINNT, which is bogus. Added _WIN32 back on these ifs,
and fixed some other include problems.
1999-10-31 02:26:41 +00:00
Kurt Zeilenga
ebc4a8f149 Use uint32 not u_int as code requires 32 bit unsigned integers. 1999-10-30 03:30:10 +00:00
Kurt Zeilenga
5bb1546867 Refine comments. 1999-10-28 17:42:46 +00:00