| #
3a7efd93 |
| 03-May-2017 |
mestre <mestre@openbsd.org> |
Use the safe idiom of cleaning sensitive data from memory with explicit_bzero,
instead of relying on other methods, after readpassphrase. Some programs on
this diff won't benefit that much since it h
Use the safe idiom of cleaning sensitive data from memory with explicit_bzero,
instead of relying on other methods, after readpassphrase. Some programs on
this diff won't benefit that much since it happens near the terminal path, but
someone might copy the unsafe idiom to another program and place it where it
may leak sensitive data.
Discussed aeons ago with tb@, OK deraadt@ and beck@
show more ...
|
| #
fe266b8d |
| 22-Mar-2016 |
bluhm <bluhm@openbsd.org> |
tokenadm(8) is already pledged, do the same for tokeninit(8).
- bring comment in both programms in line
- tokeninit(8) needs "tty" for readpassphrase(3)
- call token_init() after pledge(2)
- fix whit
tokenadm(8) is already pledged, do the same for tokeninit(8).
- bring comment in both programms in line
- tokeninit(8) needs "tty" for readpassphrase(3)
- call token_init() after pledge(2)
- fix whitespace
OK millert@
show more ...
|
| #
af3189ec |
| 12-Feb-2016 |
mmcc <mmcc@openbsd.org> |
hexidecimal -> hexadecimal
|
| #
031569f0 |
| 22-Dec-2015 |
mmcc <mmcc@openbsd.org> |
assign pointers to NULL rather than 0
|
| #
28056f30 |
| 09-Feb-2015 |
deraadt <deraadt@openbsd.org> |
clean up flags++ instances around getopt()
ok florian
|
| #
b9fc9a72 |
| 16-Jan-2015 |
deraadt <deraadt@openbsd.org> |
Replace <sys/param.h> with <limits.h> and other less dirty headers where
possible. Annotate <sys/param.h> lines with their current reasons. Switch
to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_N
Replace <sys/param.h> with <limits.h> and other less dirty headers where
possible. Annotate <sys/param.h> lines with their current reasons. Switch
to PATH_MAX, NGROUPS_MAX, HOST_NAME_MAX+1, LOGIN_NAME_MAX, etc. Change
MIN() and MAX() to local definitions of MINIMUM() and MAXIMUM() where
sensible to avoid pulling in the pollution. These are the files confirmed
through binary verification.
ok guenther, millert, doug (helped with the verification protocol)
show more ...
|
| #
572c5e09 |
| 09-Jul-2008 |
sobrado <sobrado@openbsd.org> |
an ellipsis is not an optional argument.
|
| #
d4acc1c4 |
| 15-Mar-2007 |
jmc <jmc@openbsd.org> |
simplify synopsis/usage() and sort options;
from Igor Sobrado
|
| #
2df81937 |
| 27-May-2002 |
deraadt <deraadt@openbsd.org> |
unsigned to unsigned int
|
| #
46347781 |
| 14-Mar-2002 |
mpech <mpech@openbsd.org> |
Remove \n from err/errx/warn/warnx().
millert@ ok
|
| #
d52e83b8 |
| 24-Oct-2001 |
mpech <mpech@openbsd.org> |
getopt(3) returns -1 when out of args, not EOF.
millert@ ok
|
| #
b4975d76 |
| 20-Dec-2000 |
markus <markus@openbsd.org> |
use arc4random, clear secrets, use readpassphrase in tokeninit; ok millert@
|
| #
851d2d47 |
| 20-Dec-2000 |
millert <millert@openbsd.org> |
Commands for manipulating the token database (ActivCard, CRYPTOCard, or SNK-004)
from BSDi. Will be enabled when BSD authentication is turned on (login_token).
|