Source Code 1994 March

home *** CD-ROM | disk | FTP | other *** search

/ Source Code 1994 March / Source_Code_CD-ROM_Walnut_Creek_March_1994.iso / netsrcs / pswd_age.2 < prev next >

Wrap

Internet Message Format | 1988-03-13 | 29KB

From gww@beatnix.UUCP Sat Mar 12 19:00:52 1988 Path: uunet!lll-winken!lll-tis!elxsi!beatnix!gww From: gww@beatnix.UUCP (Gary Winiger) Newsgroups: alt.sources Subject: Password aging package for 4.3BSD Part 2 of 3. Message-ID: <744@elxsi.UUCP> Date: 13 Mar 88 00:00:52 GMT Sender: nobody@elxsi.UUCP Reply-To: gww@beatnix.UUCP (Gary Winiger) Organization: ELXSI Super Computers, San Jose Lines: 1060 # This is a shell archive. # Remove everything above and including the cut line. # Then run the rest of the file through sh. -----cut here-----cut here-----cut here-----cut here----- #!/bin/sh # shar: Shell Archiver # Run the following text with /bin/sh to create: # ftpd.c.diff # login.c.diff # passwd.c.diff # su.c.diff # uucpd.c.diff # vipw.c.diff # This archive created: Sat Mar 12 14:58:22 1988 echo shar: extracting ftpd.c.diff '(1032 characters)' sed 's/^XX//' << \SHAR_EOF > ftpd.c.diff XX*** /tmp/,RCSt1007467 Thu Dec 24 11:59:54 1987 XX--- ftpd.c Thu Dec 24 11:59:36 1987 XX*************** XX*** 1,5 **** XX--- 1,8 ---- XX /* XX * $Log: ftpd.c,v $ XX+ * Revision 1.5 87/12/24 11:59:22 gww XX+ * Add shadow password file support. XX+ * XX * Revision 1.4 87/07/31 12:15:56 gww XX * Enable remote command execution if RMTCMD defined. XX * XX*************** XX*** 27,33 **** XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: ftpd.c,v 1.4 87/07/31 12:15:56 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)ftpd.c 5.7 (Berkeley) 5/28/86"; XX #endif not lint XX XX--- 30,36 ---- XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: ftpd.c,v 1.5 87/12/24 11:59:22 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)ftpd.c 5.7 (Berkeley) 5/28/86"; XX #endif not lint XX XX*************** XX*** 186,191 **** XX--- 189,198 ---- XX /* XX * Set up default state XX */ XX+ #ifdef elxsi XX+ if (access(SHADOWPW, F_OK) == 0) XX+ setpwfile(SHADOWPW); XX+ #endif elxsi XX logged_in = 0; XX data = -1; XX type = TYPE_A; SHAR_EOF if test 1032 -ne "`wc -c ftpd.c.diff`" then echo shar: error transmitting ftpd.c.diff '(should have been 1032 characters)' fi echo shar: extracting login.c.diff '(4455 characters)' sed 's/^XX//' << \SHAR_EOF > login.c.diff XX*** /tmp/,RCSt1002049 Thu Mar 10 09:33:08 1988 XX--- login.c Mon Mar 7 17:01:59 1988 XX*************** XX*** 1,5 **** XX--- 1,8 ---- XX /* XX * $Log: login.c,v $ XX+ * Revision 1.2 88/03/07 15:52:53 gww XX+ * Add shadow password file and password aging support. XX+ * XX * Revision 1.1 86/12/17 18:14:13 gww XX * Initial revision XX * XX*************** XX*** 17,23 **** XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: login.c,v 1.1 86/12/17 18:14:13 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)login.c 5.15 (Berkeley) 4/12/86"; XX #endif not lint XX XX--- 20,26 ---- XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: login.c,v 1.2 88/03/07 15:52:53 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)login.c 5.15 (Berkeley) 4/12/86"; XX #endif not lint XX XX*************** XX*** 99,104 **** XX--- 102,110 ---- XX char rpassword[NMAX+1]; XX char name[NMAX+1]; XX char *rhost; XX+ #ifdef elxsi XX+ int spwflag=0; /* is a shadow password file present */ XX+ #endif elxsi XX XX main(argc, argv) XX char *argv[]; XX*************** XX*** 117,122 **** XX--- 123,132 ---- XX signal(SIGINT, SIG_IGN); XX setpriority(PRIO_PROCESS, 0, 0); XX quota(Q_SETUID, 0, 0, 0); XX+ #ifdef elxsi XX+ if (spwflag = (access(SHADOWPW, F_OK) == 0)) XX+ setpwfile(SHADOWPW); XX+ #endif elxsi XX /* XX * -p is used by getty to tell login not to destroy the environment XX * -r is used by rlogind to cause the autologin protocol; XX*************** XX*** 308,313 **** XX--- 318,327 ---- XX write(f, (char *)&utmp, sizeof(utmp)); XX close(f); XX } XX+ #ifdef elxsi XX+ if (spwflag) XX+ check_age(pwd, tty); XX+ #endif elxsi XX if ((f = open("/usr/adm/wtmp", O_WRONLY|O_APPEND)) >= 0) { XX write(f, (char *)&utmp, sizeof(utmp)); XX close(f); XX*************** XX*** 592,594 **** XX--- 606,694 ---- XX XX return (gid); XX } XX+ XX+ #ifdef elxsi XX+ /* check_age - Check the password aging for this user. XX+ * XX+ * Entry pwd = User's shadow password file entry. XX+ * tty = User's tty name. XX+ * XX+ * Exit To caller, if no password change needed. XX+ * To caller, if password change needed and successfully made. XX+ * To exit(1), to abort the login if password change needed and XX+ * not made. XX+ * XX+ * Messages XX+ * XX+ * "Please change your password." = The password aging schema has XX+ * been implemented. Please change your password. XX+ * XX+ * "You have not changed your password in the last password aging XX+ * period." XX+ * "Please do so now." = Your password has become too old and must XX+ * be changed before you will be permitted to login. XX+ * XX+ * "You may not login because you have not changed your XX+ * password." = You did not change your password when you were XX+ * required to do so, thus you may not login. The process XX+ * is aborted by hanging up the phone. XX+ * XX+ * Calls close, exit, fflush, ioctl, printf, sleep, sscanf, syslog, XX+ * system(PASSWD_PROG), time. XX+ * XX+ */ XX+ XX+ check_age(pwd, tty) XX+ XX+ struct passwd *pwd; XX+ char *tty; XX+ XX+ { XX+ int type; /* type of password criteria */ XX+ long age_limit; /* time limit a password is good for */ XX+ long last_time; /* time of last change */ XX+ long current_time; /* right now */ XX+ int tries = 0; XX+ XX+ sscanf(pwd->pw_gecos, "%d,%ld,%ld,", &type, &age_limit, &last_time); XX+ if ((age_limit != 0) && XX+ ((long)time(¤t_time) > (last_time + age_limit))) { XX+ if (last_time == 0) { XX+ printf("\nPlease change your password.\n\n"); XX+ } else { XX+ printf("\nYou have not changed your password "); XX+ printf("in the last %d days.\n", XX+ (current_time - last_time)/(60*60*24)); XX+ printf("Please do so now.\n\n"); XX+ } XX+ fflush(stdout); XX+ XX+ while (system(PASSWD_PROG)) { /* require password change */ XX+ if (++tries >= CHANGE_TRIES) { XX+ printf("You may not login because you have "); XX+ printf("not changed your password.\n"); XX+ fflush(stdout); XX+ if (utmp.ut_host[0]) XX+ syslog(LOG_CRIT, XX+ "EXPIRED PASSWORD UNCHANGED ON %s FROM %.*s, %.*s", XX+ tty, HMAX, utmp.ut_host, XX+ NMAX, utmp.ut_name); XX+ else XX+ syslog(LOG_CRIT, XX+ "EXPIRED PASSWORD UNCHANGED ON %s, %.*s", XX+ tty, NMAX, utmp.ut_name); XX+ ioctl(0, TIOCHPCL, (struct sgttyb *) 0); XX+ close(0); XX+ close(1); XX+ close(2); XX+ sleep(10); XX+ exit(1); XX+ } else { XX+ printf("You did not sucessfully change your "); XX+ printf("password, try again.\n"); XX+ fflush(stdout); XX+ } XX+ } XX+ } XX+ } XX+ #endif elxsi SHAR_EOF if test 4455 -ne "`wc -c login.c.diff`" then echo shar: error transmitting login.c.diff '(should have been 4455 characters)' fi echo shar: extracting passwd.c.diff '(9615 characters)' sed 's/^XX//' << \SHAR_EOF > passwd.c.diff XX*** /tmp/,RCSt1002150 Thu Mar 10 09:41:14 1988 XX--- passwd.c Mon Mar 7 18:20:48 1988 XX*************** XX*** 1,5 **** XX--- 1,8 ---- XX /* XX * $Log: passwd.c,v $ XX+ * Revision 1.4 88/03/07 18:19:19 gww XX+ * Add shadow password file, password aging, strong password criteria. XX+ * XX * Revision 1.3 87/11/17 17:22:01 gww XX * Update chfn examples to read Office information rather than UCB example. XX * XX*************** XX*** 23,29 **** XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: passwd.c,v 1.3 87/11/17 17:22:01 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)passwd.c 4.24 (Berkeley) 5/28/86"; XX #endif not lint XX XX--- 26,32 ---- XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: passwd.c,v 1.4 88/03/07 18:19:19 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)passwd.c 4.24 (Berkeley) 5/28/86"; XX #endif not lint XX XX*************** XX*** 62,67 **** XX--- 65,75 ---- XX char *malloc(); XX char *getusershell(); XX extern int errno; XX+ #ifdef elxsi XX+ int spwflag=0; /* is a shadow password file present */ XX+ char new_gecos[BUFSIZ]='\0'; /* updated gecos field */ XX+ char *getstrpasswd(); /* strict password criteria */ XX+ #endif elxsi XX XX main(argc, argv) XX char *argv[]; XX*************** XX*** 120,125 **** XX--- 128,137 ---- XX uname); XX } else XX uname = *argv++; XX+ #ifdef elxsi XX+ if ((spwflag = (access(SHADOWPW, F_OK) == 0)) && !dochfn) XX+ setpwfile(SHADOWPW); XX+ #endif elxsi XX pwd = getpwnam(uname); XX if (pwd == NULL) { XX fprintf(stderr, "passwd: %s: unknown user.\n", uname); XX*************** XX*** 135,140 **** XX--- 147,170 ---- XX else if (dochsh) XX cp = getloginshell(pwd, u, *argv); XX else XX+ #ifdef elxsi XX+ if (spwflag) { XX+ int type; /* type of password criteria */ XX+ XX+ sscanf(pwd->pw_gecos, "%d", &type); XX+ switch (type) { XX+ XX+ default: XX+ case BSD_CRIT: XX+ cp = getnewpasswd(pwd, u, argc); XX+ break; XX+ XX+ case STR_CRIT: XX+ cp = getstrpasswd(pwd, u, argc); XX+ break; XX+ } XX+ } else XX+ #endif elxsi XX cp = getnewpasswd(pwd, u); XX (void) signal(SIGHUP, SIG_IGN); XX (void) signal(SIGINT, SIG_IGN); XX*************** XX*** 141,147 **** XX--- 171,185 ---- XX (void) signal(SIGQUIT, SIG_IGN); XX (void) signal(SIGTSTP, SIG_IGN); XX (void) umask(0); XX+ #ifndef elxsi XX fd = open(temp, O_WRONLY|O_CREAT|O_EXCL, 0644); XX+ #else XX+ if (spwflag && !dochfn) XX+ fd = open(temp, O_WRONLY|O_CREAT|O_EXCL, 0600); XX+ else XX+ fd = open(temp, O_WRONLY|O_CREAT|O_EXCL, 0644); XX+ updatesh: XX+ #endif !elxsi XX if (fd < 0) { XX err = errno; XX XX*************** XX*** 158,168 **** XX--- 196,216 ---- XX fprintf(stderr, "passwd: fdopen failed?\n"); XX exit(1); XX } XX+ #ifndef elxsi XX if ((dp = dbm_open(passwd, O_RDWR, 0644)) == NULL) { XX+ #else XX+ if ((dp = dbm_open((spwflag&&!dochfn) ? SHADOWPW : passwd, XX+ O_RDWR, XX+ (spwflag&&!dochfn) ? 0600 : 0644)) == NULL) { XX+ #endif !elxsi XX err = errno; XX fprintf(stderr, "Warning: dbm_open failed: "); XX errno = err; XX+ #ifndef elxsi XX perror(passwd); XX+ #else XX+ perror((spwflag&&!dochfn)? SHADOWPW : passwd); XX+ #endif !elxsi XX } else if (flock(dp->dbm_dirf, LOCK_EX) < 0) { XX perror("Warning: lock failed"); XX dbm_close(dp); XX*************** XX*** 184,193 **** XX--- 232,249 ---- XX pwd->pw_gecos = cp; XX else if (dochsh) XX pwd->pw_shell = cp; XX+ #ifndef elxsi XX else XX pwd->pw_passwd = cp; XX if (pwd->pw_gecos[0] == '*') /* ??? */ XX pwd->pw_gecos++; XX+ #else XX+ else { XX+ pwd->pw_passwd = cp; XX+ if (new_gecos[0] != '\0') XX+ pwd->pw_gecos = new_gecos; XX+ } XX+ #endif !elxsi XX replace(dp, pwd); XX } XX fprintf(tf,"%s:%s:%d:%d:%s:%s:%s\n", XX*************** XX*** 211,222 **** XX--- 267,290 ---- XX (void) fclose(tf); XX if (dp != NULL) XX dbm_close(dp); XX+ #ifndef elxsi XX if (rename(temp, passwd) < 0) { XX+ #else XX+ if (rename(temp, (spwflag&&!dochfn) ? SHADOWPW : passwd) < 0) { XX+ #endif !elxsi XX perror("passwd: rename"); XX out: XX (void) unlink(temp); XX exit(1); XX } XX+ #ifdef elxsi XX+ if (spwflag && dochsh) { /* change shell is user password file also */ XX+ spwflag = 0; XX+ setpwfile(passwd); XX+ fd = open(temp, O_WRONLY|O_CREAT|O_EXCL, 0644); XX+ goto updatesh; XX+ } XX+ #endif elxsi XX exit(0); XX } XX XX*************** XX*** 267,275 **** XX--- 335,350 ---- XX } XX XX char * XX+ #ifndef elxsi XX getnewpasswd(pwd, u) XX register struct passwd *pwd; XX int u; XX+ #else XX+ getnewpasswd(pwd, u, argc) XX+ register struct passwd *pwd; XX+ int u; XX+ int argc; XX+ #endif !elxsi XX { XX char saltc[2]; XX long salt; XX*************** XX*** 342,351 **** XX--- 417,532 ---- XX c += 6; XX saltc[i] = c; XX } XX+ XX+ #ifdef elxsi XX+ if (spwflag && (u != 0 || argc < 1)) XX+ check_aging(pwd, pwbuf); XX+ #endif elxsi XX return (crypt(pwbuf, saltc)); XX } XX XX+ #ifdef elxsi XX+ /* getstrpasswd - Get strong password XX+ * XX+ * Entry pwd = Current password structure. XX+ * u = UID executing as. XX+ * argc = Program call arg count - 1. XX+ * XX+ * Exit Encrypted password returned. XX+ * XX+ * Uses None. XX+ * XX+ * Calls check_aging, crypt, exit, getpass, getpid, isdigit, islower, XX+ * isupper, printf, strcmp, strcpy, strlen, time. XX+ */ XX+ XX char * XX+ getstrpasswd(pwd, u, argc) XX+ register struct passwd *pwd; XX+ int u; XX+ int argc; XX+ { XX+ char saltc[2]; XX+ long salt; XX+ int i, insist = 0; XX+ int lower, upper, special; XX+ int c, pwlen; XX+ static char pwbuf[10]; XX+ long time(); XX+ char *crypt(), *pw, *p; XX+ XX+ if (pwd->pw_passwd[0] && u != 0) { XX+ (void) strcpy(pwbuf, getpass("Old password:")); XX+ pw = crypt(pwbuf, pwd->pw_passwd); XX+ if (strcmp(pw, pwd->pw_passwd) != 0) { XX+ printf("Sorry.\n"); XX+ exit(1); XX+ } XX+ } XX+ tryagain: XX+ lower = upper = special = 0; XX+ (void) strcpy(pwbuf, getpass("New password:")); XX+ pwlen = strlen(pwbuf); XX+ if (pwlen == 0) { XX+ printf("Password unchanged.\n"); XX+ exit(1); XX+ } XX+ XX+ /* If called by login, u == 0 and argc == 0, don't bypass check */ XX+ XX+ if (u != 0 || argc < 1) { XX+ p = pwbuf; XX+ while (c = *p++) { XX+ if (islower(c)) XX+ lower++; XX+ else if (isupper(c)) XX+ upper++; XX+ else XX+ special++; XX+ } XX+ XX+ if (insist++ >= 3) { XX+ printf("Sorry.\n"); XX+ exit(1); XX+ } XX+ if (pwlen < 7) { XX+ printf("Password must contain at least seven characters.\n"); XX+ goto tryagain; XX+ } XX+ if ((lower > 4) || (lower < 1) || (upper > 4) || (upper < 1) || XX+ (special > 4) || (special < 1)) { XX+ printf("%s%s%s%s", XX+ "Password must be chosen from a larger alphabet,\n", XX+ "try at least 1 but no more than 4 characters ", XX+ "from lower case, upper case,\n", XX+ "and digits and special characters.\n"); XX+ goto tryagain; XX+ } XX+ } XX+ if (strcmp(pwbuf, getpass("Retype new password:")) != 0) { XX+ printf("Mismatch - password unchanged.\n"); XX+ exit(1); XX+ } XX+ (void) time(&salt); XX+ salt = 9 * getpid(); XX+ saltc[0] = salt & 077; XX+ saltc[1] = (salt>>6) & 077; XX+ for (i = 0; i < 2; i++) { XX+ c = saltc[i] + '.'; XX+ if (c > '9') XX+ c += 7; XX+ if (c > 'Z') XX+ c += 6; XX+ saltc[i] = c; XX+ } XX+ XX+ if (u != 0 || argc < 1) XX+ check_aging(pwd, pwbuf); XX+ return (crypt(pwbuf, saltc)); XX+ } XX+ #endif elxsi XX+ XX+ char * XX getloginshell(pwd, u, arg) XX struct passwd *pwd; XX int u; XX*************** XX*** 699,701 **** XX--- 880,956 ---- XX *str = '\0'; XX return (1); XX } XX+ XX+ #ifdef elxsi XX+ /* check_aging - Check for password aging. XX+ * XX+ * Entry pwd = User password file entry. XX+ * pwbuf = New password. XX+ * XX+ * Exit No action if user's password aging not enabled. XX+ * new_gecos = updated if new password is different from XX+ * old and saved. XX+ * Process aborted if passwords the same. XX+ * XX+ * Messages XX+ * XX+ * "New password must be different from old password - password XX+ * unchanged." = The password that is trying to be set is the XX+ * current password and may not be used again. XX+ * XX+ * "That password was used in the last aging period - password XX+ * unchanged." = The password that is trying to be set was XX+ * already used in the last aging period and may not be XX+ * used again. XX+ * XX+ * Calls crypt, exit, fflush, printf, sprintf, sscanf, strcmp. XX+ */ XX+ XX+ check_aging(pwd, pwbuf) XX+ struct passwd *pwd; XX+ char *pwbuf; /* new password */ XX+ XX+ { XX+ int type; /* type of password criteria */ XX+ long limit; /* aging limit, 0 if no password aging */ XX+ long last_time; /* time of last password change */ XX+ long old_time; /* time old password was saved */ XX+ char old_passwd[20]; /* saved old password (encrypted) */ XX+ long current_time; /* time right now */ XX+ XX+ sscanf(pwd->pw_gecos, "%d,%ld,%ld,%ld,%20s", &type, &limit, &last_time, XX+ &old_time, old_passwd); XX+ XX+ if (limit == 0) /* no password aging for this user */ XX+ return; XX+ XX+ if (*pwd->pw_passwd && XX+ (strcmp(crypt(pwbuf, pwd->pw_passwd), pwd->pw_passwd) == 0)) { XX+ printf("\nNew password must be different from old password"); XX+ printf(" - password unchanged.\n"); XX+ fflush(stdout); XX+ exit(1); XX+ } XX+ XX+ if (strcmp(crypt(pwbuf, old_passwd), old_passwd) == 0) { XX+ printf("\nThat password was used in the last aging period"); XX+ printf(" - password unchanged.\n\n"); XX+ fflush(stdout); XX+ exit(1); XX+ } XX+ XX+ (void)time(¤t_time); /* set new password aging period */ XX+ XX+ if(current_time > (old_time + limit)) XX+ /* save old password for next aging period to prevent reuse */ XX+ sprintf(new_gecos, "%d,%ld,%ld,%ld,%s", type, limit, XX+ current_time, XX+ current_time, XX+ *pwd->pw_passwd ? pwd->pw_passwd : "*******"); XX+ else XX+ sprintf(new_gecos, "%d,%ld,%ld,%ld,%s", type, limit, XX+ current_time, XX+ old_time, XX+ old_passwd); XX+ } XX+ #endif elxsi SHAR_EOF if test 9615 -ne "`wc -c passwd.c.diff`" then echo shar: error transmitting passwd.c.diff '(should have been 9615 characters)' fi echo shar: extracting su.c.diff '(1275 characters)' sed 's/^XX//' << \SHAR_EOF > su.c.diff XX*** /tmp/,RCSt1007109 Thu Dec 24 11:36:10 1987 XX--- su.c Thu Dec 24 11:35:48 1987 XX*************** XX*** 1,5 **** XX--- 1,8 ---- XX /* XX * $Log: su.c,v $ XX+ * Revision 1.2 87/12/24 11:35:38 gww XX+ * Add shadow password file support. XX+ * XX * Revision 1.1 86/12/17 18:14:45 gww XX * Initial revision XX * XX*************** XX*** 17,23 **** XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: su.c,v 1.1 86/12/17 18:14:45 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)su.c 5.4 (Berkeley) 1/13/86"; XX #endif not lint XX XX--- 20,26 ---- XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: su.c,v 1.2 87/12/24 11:35:38 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)su.c 5.4 (Berkeley) 1/13/86"; XX #endif not lint XX XX*************** XX*** 28,33 **** XX--- 31,39 ---- XX #include <sys/types.h> XX #include <sys/time.h> XX #include <sys/resource.h> XX+ #ifdef elxsi XX+ #include <sys/file.h> XX+ #endif elxsi XX XX char userbuf[16] = "USER="; XX char homebuf[128] = "HOME="; XX*************** XX*** 72,77 **** XX--- 78,87 ---- XX user = argv[1]; XX argc--, argv++; XX } XX+ #ifdef elxsi XX+ if (access(SHADOWPW, F_OK) == 0) XX+ setpwfile(SHADOWPW); XX+ #endif elxsi XX if ((pwd = getpwuid(getuid())) == NULL) { XX fprintf(stderr, "Who are you?\n"); XX exit(1); SHAR_EOF if test 1275 -ne "`wc -c su.c.diff`" then echo shar: error transmitting su.c.diff '(should have been 1275 characters)' fi echo shar: extracting uucpd.c.diff '(1363 characters)' sed 's/^XX//' << \SHAR_EOF > uucpd.c.diff XX*** /tmp/,RCSt1002936 Mon Jan 4 14:05:23 1988 XX--- uucpd.c Mon Jan 4 14:04:59 1988 XX*************** XX*** 1,11 **** XX /* XX * $Log: uucpd.c,v $ XX * Revision 1.1 87/06/23 16:58:30 gww XX * Initial revision XX * XX */ XX #ifndef lint XX! static char *ERcsId = "$Header: uucpd.c,v 1.1 87/06/23 16:58:30 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)uucpd.c 5.4 (Berkeley) 6/23/85"; XX #endif XX XX--- 1,14 ---- XX /* XX * $Log: uucpd.c,v $ XX+ * Revision 1.2 88/01/04 14:04:48 gww XX+ * Add shadow password file support. XX+ * XX * Revision 1.1 87/06/23 16:58:30 gww XX * Initial revision XX * XX */ XX #ifndef lint XX! static char *ERcsId = "$Header: uucpd.c,v 1.2 88/01/04 14:04:48 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)uucpd.c 5.4 (Berkeley) 6/23/85"; XX #endif XX XX*************** XX*** 28,33 **** XX--- 31,39 ---- XX #include <sys/ioctl.h> XX #include <pwd.h> XX #include <lastlog.h> XX+ #ifdef elxsi XX+ #include <sys/file.h> XX+ #endif elxsi XX XX #if !defined(BSD4_2) && !defined(BSD2_9) XX --- You must have either BSD4_2 or BSD2_9 defined for this to work XX*************** XX*** 158,163 **** XX--- 164,173 ---- XX char *xpasswd, *crypt(); XX struct passwd *pw, *getpwnam(); XX XX+ #ifdef elxsi XX+ if (access(SHADOWPW, F_OK) == 0) XX+ setpwfile(SHADOWPW); XX+ #endif elxsi XX alarm(60); XX printf("login: "); fflush(stdout); XX if (readline(user, sizeof user) < 0) { SHAR_EOF if test 1363 -ne "`wc -c uucpd.c.diff`" then echo shar: error transmitting uucpd.c.diff '(should have been 1363 characters)' fi echo shar: extracting vipw.c.diff '(6653 characters)' sed 's/^XX//' << \SHAR_EOF > vipw.c.diff XX*** /tmp/,RCSt1002304 Thu Mar 10 10:06:24 1988 XX--- vipw.c Thu Mar 10 10:05:54 1988 XX*************** XX*** 1,5 **** XX--- 1,8 ---- XX /* XX * $Log: vipw.c,v $ XX+ * Revision 1.2 87/12/24 12:16:11 gww XX+ * Add shadow password file support. XX+ * XX * Revision 1.1 87/03/25 13:31:04 gww XX * Initial revision XX * XX*************** XX*** 17,23 **** XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: vipw.c,v 1.1 87/03/25 13:31:04 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)vipw.c 5.1 (Berkeley) 5/28/85"; XX #endif not lint XX XX--- 20,26 ---- XX #endif not lint XX XX #ifndef lint XX! static char *ERcsId = "$Header: vipw.c,v 1.2 87/12/24 12:16:11 gww Exp $ ENIX BSD"; XX static char sccsid[] = "@(#)vipw.c 5.1 (Berkeley) 5/28/85"; XX #endif not lint XX XX*************** XX*** 24,29 **** XX--- 27,35 ---- XX #include <sys/types.h> XX #include <sys/stat.h> XX #include <sys/file.h> XX+ #ifdef elxsi XX+ #include <pwd.h> XX+ #endif elxsi XX XX #include <stdio.h> XX #include <errno.h> XX*************** XX*** 38,43 **** XX--- 44,58 ---- XX char passwd[] = "/etc/passwd"; XX char passwd_pag[] = "/etc/passwd.pag"; XX char passwd_dir[] = "/etc/passwd.dir"; XX+ #ifdef elxsi XX+ char stemp[] = "/etc/sptmp"; XX+ char stemp_pag[] = "/etc/sptmp.pag"; XX+ char stemp_dir[] = "/etc/sptmp.dir"; XX+ char shadow[] = SHADOWPW; XX+ char shadow_pag[] = SHADOWPW_PAG; XX+ char shadow_dir[] = SHADOWPW_DIR; XX+ char temps[] = "/etc/ptmps"; XX+ #endif elxsi XX char buf[BUFSIZ]; XX char *getenv(); XX char *index(); XX*************** XX*** 147,152 **** XX--- 162,218 ---- XX } XX fclose(ft); XX if (ok) { XX+ #ifdef elxsi XX+ if (access(SHADOWPW, F_OK) == 0) { XX+ /* sort temp file by uid */ XX+ XX+ sprintf(buf, "sort -t: +2n -3 +0 -1 %s > %s", XX+ temp, temps); XX+ if (system(buf) != 0) { XX+ fprintf(stderr, "vipw: sort failed\n"); XX+ goto bad; XX+ } XX+ if (rename(temps, temp) < 0) { XX+ fprintf(stderr, "vipw: "); XX+ perror(temps); XX+ goto bad; XX+ } XX+ XX+ /* merge edited passwd file with shadow file */ XX+ XX+ if (merg_pw() < 0) XX+ goto bad; XX+ XX+ if (makedb(stemp) < 0) { XX+ fprintf(stderr, XX+ "vipw: shadow mkpasswd failed\n"); XX+ goto bad; XX+ } XX+ XX+ /* set correct modes */ XX+ XX+ chmod(temp, 0644); XX+ chmod(stemp, 0600); XX+ chmod(stemp_pag, 0600); XX+ chmod(stemp_dir, 0600); XX+ XX+ /* remake shadow hash files and rename temps */ XX+ XX+ if (rename(stemp_pag, shadow_pag) < 0) { XX+ fprintf(stderr, "vipw: "); XX+ perror(stemp_pag); XX+ goto bad; XX+ } else if (rename(stemp_dir, shadow_dir) < 0) { XX+ fprintf(stderr, "vipw: "); XX+ perror(stemp_dir); XX+ goto bad; XX+ } else if (rename(stemp, shadow) < 0) { XX+ fprintf(stderr, "vipw: "); XX+ perror("shadow file"); XX+ goto bad; XX+ } XX+ } XX+ #endif elxsi XX if (makedb(temp) < 0) XX fprintf(stderr, "vipw: mkpasswd failed\n"); XX else if (rename(temp_pag, passwd_pag) < 0) XX*************** XX*** 163,168 **** XX--- 229,240 ---- XX passwd); XX } XX bad: XX+ #ifdef elxsi XX+ unlink(stemp_pag); XX+ unlink(stemp_dir); XX+ unlink(stemp); XX+ unlink(temps); XX+ #endif elxsi XX unlink(temp_pag); XX unlink(temp_dir); XX unlink(temp); XX*************** XX*** 184,186 **** XX--- 256,414 ---- XX status = -1; XX return(status); XX } XX+ XX+ #ifdef elxsi XX+ struct passwd tmpent; /* passwd temp file entry */ XX+ int fd; XX+ FILE *ft, *fp; XX+ XX+ /* pskip - Skip to next password file entry field. XX+ * XX+ * Entry p = Pointer to current field. XX+ * XX+ * Exit Pointer to next field. XX+ * XX+ */ XX+ XX+ static char * XX+ pskip(p) XX+ XX+ register char *p; XX+ { XX+ while (*p && *p != ':' && *p != '\n') XX+ ++p; XX+ if (*p) XX+ *p++ = 0; XX+ return(p); XX+ } XX+ XX+ /* getmpent - Get temp passwd entry (modeled off of getpwent(3)). XX+ * XX+ * XX+ * Entry fp = Temp passwd stream. XX+ * XX+ * Exit 0 = End of stream. XX+ * &tmpent = struct passwd for this temp passwd entry. XX+ * XX+ * Uses buf. XX+ * XX+ * Calls fgets, pskip. XX+ * XX+ */ XX+ XX+ static struct passwd * XX+ getmpent() XX+ { XX+ register char *p; XX+ XX+ if ((p=fgets(buf, BUFSIZ, fp)) == NULL) XX+ return(0); XX+ XX+ tmpent.pw_name = p; XX+ p = pskip(p); XX+ tmpent.pw_passwd = p; XX+ p = pskip(p); XX+ tmpent.pw_uid = atoi(p); XX+ p = pskip(p); XX+ tmpent.pw_gid = atoi(p); XX+ p = pskip(p); XX+ tmpent.pw_gecos = p; XX+ p = pskip(p); XX+ tmpent.pw_dir = p; XX+ p = pskip(p); XX+ tmpent.pw_shell = p; XX+ while (*p && *p != '\n') XX+ p++; XX+ *p = '\0'; XX+ return(&tmpent); XX+ } XX+ XX+ /* merg_pw - Merge updated passwd with shadow file. XX+ * XX+ * Entry stemp = Shadow passwd temp file name. XX+ * shadow = Shadow passwd file name. XX+ * temp = Updated passwd temp file name. XX+ * XX+ * Exit 0 = Merge completed, stemp created. XX+ * -1 = Error, message displayed. XX+ * XX+ * Uses errno, fd, ft, fp. XX+ * XX+ * Calls fclose, fdopen, fopen, fprintf, getmpent, getpwent, open, XX+ * perror, setpwfile. XX+ * XX+ */ XX+ XX+ static XX+ merg_pw () XX+ { XX+ struct passwd *pwd, /* passwd temp file entries */ XX+ *spwd; /* shadow passwd entries */ XX+ XX+ if ((fd = open(stemp, O_WRONLY|O_CREAT|O_EXCL, 0644)) < 0) { XX+ if (errno == EEXIST) XX+ fprintf(stderr, "vipw: password file busy\n"); XX+ else XX+ fprintf(stderr, "vipw: "), XX+ perror(stemp); XX+ exit(1); XX+ } XX+ XX+ if ((ft = fdopen(fd, "w")) == NULL) { XX+ fprintf(stderr, "vipw: "); perror(stemp); XX+ return(-1); XX+ } XX+ XX+ if ((fp = fopen(temp, "r")) == NULL) { XX+ fprintf(stderr, "vipw: "); perror(temp); XX+ return(-1); XX+ } XX+ XX+ setpwfile(shadow); spwd = getpwent(); /* initialize shadow passwd */ XX+ XX+ while ((pwd = getmpent()) != NULL) { XX+ loop: XX+ if ((spwd == NULL) || /* add new user */ XX+ (pwd->pw_uid < spwd->pw_uid) || XX+ (pwd->pw_uid == spwd->pw_uid && XX+ (strcmp(pwd->pw_name, spwd->pw_name) < 0))) { XX+ fprintf(ft, "%s:%s:%d:%d:%d,0,0,0,*******:%s:%s\n", XX+ pwd->pw_name, XX+ pwd->pw_passwd, XX+ pwd->pw_uid, XX+ pwd->pw_gid, XX+ BSD_CRIT, XX+ pwd->pw_dir, XX+ pwd->pw_shell); XX+ continue; XX+ } XX+ if ((pwd->pw_uid == spwd->pw_uid) && /* update current user */ XX+ (strcmp(pwd->pw_name, spwd->pw_name) == 0)) { XX+ fprintf(ft, "%s:%s:%d:%d:%s:%s:%s\n", XX+ pwd->pw_name, XX+ spwd->pw_passwd, XX+ pwd->pw_uid, XX+ pwd->pw_gid, XX+ spwd->pw_gecos, XX+ pwd->pw_dir, XX+ pwd->pw_shell); XX+ spwd = getpwent(); XX+ continue; XX+ } XX+ XX+ /* advance shadow passwd to skip removed users */ XX+ XX+ while (((spwd = getpwent()) != NULL) && XX+ ((pwd->pw_uid > spwd->pw_uid) || XX+ (pwd->pw_uid == spwd->pw_uid && XX+ (strcmp(pwd->pw_name, spwd->pw_name) > 0)))) XX+ continue; XX+ goto loop; XX+ } XX+ XX+ endpwent(); XX+ fclose(ft); XX+ fclose(fp); XX+ return(0); XX+ } XX+ #endif elxsi SHAR_EOF if test 6653 -ne "`wc -c vipw.c.diff`" then echo shar: error transmitting vipw.c.diff '(should have been 6653 characters)' fi # End of shell archive exit 0