summaryrefslogtreecommitdiffstats
path: root/libexec/security (follow)
Commit message (Expand)AuthorAgeFilesLines
* Don't skip file systems just because the parent fs is nodev and nosuid.millert2020-10-111-8/+13
* afs, nnpfs, and procfs are no longer supported,schwarze2020-09-171-3/+3
* Do not bother scanning file systems that are both nodev and nosuidschwarze2020-09-141-3/+4
* Remove user uucp and group news from base.jca2016-12-271-3/+2
* When checking ownership and modes of files in /var/mail/,schwarze2016-10-221-1/+2
* When reading untrusted user files, don't risk blocking, such thatschwarze2015-07-211-3/+6
* When diff(1) finds differences, it returns an exit status of 1.schwarze2015-04-211-2/+6
* In mount(8) output, do not misparse lines where fs_spec ends with theschwarze2015-03-271-2/+2
* If /etc/passwd contains incomplete lines ending before theschwarze2015-03-271-3/+12
* AnonCVS is designed to work with a user account that has no password and aschwarze2014-12-041-2/+3
* The file /etc/exports is now optional and not installed by default,schwarze2014-07-141-1/+2
* Do not redirect STDERR of the main security(8) script to /dev/null,schwarze2014-06-261-7/+3
* The Perl close() function, when called on pipe file descriptors,schwarze2014-06-241-9/+17
* Do not try to pass potentially non-existent array elements intoschwarze2014-06-241-8/+10
* tedu ~/.klogindcoppa2014-04-291-3/+3
* check perms on .ssh/id_ed25519; Fritjof Bornebuschsthen2014-04-211-2/+2
* check_hosts_equiv -> check_hosts_lpdajacoutot2014-04-201-15/+11
* don't check ftpusers in security(8), from gsoares@, ok afresh1@ schwarze@sthen2014-03-231-16/+1
* Correct the last change to untaint $fmt; it caused the final parameter ofsthen2013-03-211-3/+3
* Untaint a variable used in an sprintf format string by using a regex and back-sthen2013-03-191-2/+2
* create an empty %skip even if SUIDSKIP is not set, newer perl complains.sthen2013-03-181-2/+4
* Enclose qw()...) literals in parentheses where required; this was historicallysthen2013-03-181-8/+8
* To detect changes of system files, use SHA-256 rather than MD5,schwarze2012-07-081-24/+25
* Also check permissions of .ssh/id_ecdsa.pascal2012-05-171-2/+3
* During mailbox and special file checks, skip all files that can'tschwarze2011-07-201-7/+10
* In lists of setuid/setgid files and devices, do not pad the last columnschwarze2011-07-201-1/+2
* Restore changelist(5) wildcard support that we inadvertently killedschwarze2011-06-201-10/+27
* Fix two bugs where race conditions might cause stat(2) to fail,schwarze2011-05-251-7/+9
* Do not complain about an /etc/group line "+\n" as "wrong number of fields",schwarze2011-05-101-2/+9
* When a device or setuid file is owned by a nonexistent user or group,schwarze2011-04-231-8/+8
* Very nice bugfix from Andrew Fresh, who writes:schwarze2011-04-231-11/+10
* remove a bogus blank line; from Andrew Freshschwarze2011-04-171-2/+2
* Keep the exact format of the message:schwarze2011-04-171-4/+5
* Reviewing my version of the code, Andrew Fresh found an elegant way toschwarze2011-04-101-4/+9
* implement one last check that Andrew overlookedschwarze2011-04-091-8/+26
* implementation of the remaining checks;schwarze2011-04-091-22/+432
* style cleanup:schwarze2011-03-301-14/+14
* umask and path checks;schwarze2011-03-261-1/+126
* home directory checks;schwarze2011-03-251-1/+89
* fix "german" typo; from <markus dot lude at gmx dot de>schwarze2011-03-241-2/+2
* Work in progress to replace /etc/security, not yet linked to the build.schwarze2011-03-232-0/+262
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.