diff options
authorAssar Westerlund <assar@FreeBSD.org>2001-05-08 14:57:13 +0000
committerAssar Westerlund <assar@FreeBSD.org>2001-05-08 14:57:13 +0000
commita3204abff5731d69ad1645481011f94a994d7d40 (patch)
parent5ad8ddfb6fdac21b0302d9dae0891ff8babd2f6f (diff)
mdoc(ng) fixes
Submitted by: ru
Notes: svn path=/vendor-crypto/kerberosIV/dist/; revision=76371
22 files changed, 128 insertions, 145 deletions
diff --git a/crypto/kerberosIV/lib/roken/getarg.3 b/crypto/kerberosIV/lib/roken/getarg.3
index 78a88028caf4..fc4ca83c29a1 100644
--- a/crypto/kerberosIV/lib/roken/getarg.3
+++ b/crypto/kerberosIV/lib/roken/getarg.3
@@ -9,13 +9,10 @@
.Nd collect command line options
.Fd #include <getarg.h>
.Ft int
.Fn getarg "struct getargs *args" "size_t num_args" "int argc" "char **argv" "int *optind"
.Ft void
.Fn arg_printusage "struct getargs *args" "size_t num_args" "const char *progname" "const char *extra_string"
.Fn getarg
collects any command line options given to a program in an easily used way.
@@ -45,7 +42,8 @@ take the same
.Fa num_args
as getarg;
-.Fa progname is the name of the program (to be used in the help text), and
+.Fa progname
+is the name of the program (to be used in the help text), and
.Fa extra_string
is a string to print after the actual options to indicate more
arguments. The usefulness of this function is realised only be people
@@ -55,7 +53,6 @@ the code does.
.Fa getargs
struct has the following elements.
.Bd -literal
struct getargs{
const char *long_name;
@@ -176,7 +173,7 @@ and
.Fa *optarg ,
but to do this correct you (more or less) have to know about the inner
workings of getarg.
You can skip parts of arguments by increasing
.Fa *optarg
(you could
@@ -233,8 +230,6 @@ and if you're really confused you can do it multiple times
.Pf ( Fl -no-no-help= Ns Ar false ,
or even
.Fl -no-no-help= Ns Ar maybe ) .
.Bd -literal
#include <stdio.h>
@@ -276,11 +271,11 @@ main(int argc, char **argv)
exit (0);
if (destination == NULL) {
- fprintf(stderr, "%s: must specify destination\n", progname);
+ fprintf(stderr, "%s: must specify destination\en", progname);
if (strcmp(source, destination) == 0) {
- fprintf(stderr, "%s: destination must be different from source\n");
+ fprintf(stderr, "%s: destination must be different from source\en");
/* include more stuff here ... */
@@ -298,7 +293,6 @@ Usage: ship++ [--source=city] [-s city] [--destination=city] [-d city]
-w tons, --weight=tons weight of shippment
-c, --no-catalog include product catalog
It should be more flexible, so it would be possible to use other more
complicated option syntaxes, such as what
diff --git a/crypto/kerberosIV/man/afslog.1 b/crypto/kerberosIV/man/afslog.1
index 625f83130a03..5202a71bb63e 100644
--- a/crypto/kerberosIV/man/afslog.1
+++ b/crypto/kerberosIV/man/afslog.1
@@ -5,8 +5,7 @@
.Nm afslog
-obtains AFS tokens for specified cells
+.Nd "obtains AFS tokens for specified cells"
.Op Fl d
diff --git a/crypto/kerberosIV/man/ftp.1 b/crypto/kerberosIV/man/ftp.1
index e5c21f096145..9ad7f4c9e9b5 100644
--- a/crypto/kerberosIV/man/ftp.1
+++ b/crypto/kerberosIV/man/ftp.1
@@ -913,7 +913,7 @@ if verbose is on, when a file transfer completes, statistics
regarding the efficiency of the transfer are reported.
By default,
verbose is on.
-.It Ic ? Op Ar command
+.It Ic \&? Op Ar command
A synonym for help.
diff --git a/crypto/kerberosIV/man/ftpd.8 b/crypto/kerberosIV/man/ftpd.8
index c51de1ce06dc..745090c3f0e0 100644
--- a/crypto/kerberosIV/man/ftpd.8
+++ b/crypto/kerberosIV/man/ftpd.8
@@ -38,8 +38,7 @@
.Os BSD 4.2
.Nm ftpd
-Internet File Transfer Protocol server
+.Nd Internet File Transfer Protocol server
.Nm ftpd
.Op Fl a Ar authmode
@@ -81,7 +80,7 @@ but only OTP is allowed.
.It Ar ftp
Allow anonymous login.
The following combination modes exists for backwards compatibility:
.Bl -tag -width plain
.It Ar none
@@ -319,7 +318,7 @@ that the
.Dq ftp
subtree be constructed with care, consider following these guidelines
for anonymous ftp.
In general all files should be owned by
.Dq root ,
and have non-write permissions (644 or 755 depending on the kind of
@@ -377,7 +376,7 @@ and
.Xr group 5
files here, ls will be able to produce owner names rather than
numbers. Remember to remove any passwords from these files.
The file
.Pa motd ,
if present, will be printed after a successful login.
@@ -388,7 +387,7 @@ here.
.It Pa ~ftp/pub
Traditional place to put whatever you want to make public.
If you want guests to be able to upload files, create a
.Pa ~ftp/incoming
directory owned by
OTP Specification
.It Cm RFC 2228
FTP Security Extensions.
The server must run as the super-user
to create sockets with privileged port numbers. It maintains
diff --git a/crypto/kerberosIV/man/ftpusers.5 b/crypto/kerberosIV/man/ftpusers.5
index dfd66f94003b..c1960d192beb 100644
--- a/crypto/kerberosIV/man/ftpusers.5
+++ b/crypto/kerberosIV/man/ftpusers.5
@@ -5,8 +5,7 @@
.Pa /etc/ftpusers
-FTP access list file.
+.Nd FTP access list file
.Pa /etc/ftpusers
contains a list of users that should be allowed or denied FTP
@@ -20,7 +19,7 @@ matches any user. Users that has an explicit
.Dq allow ,
or that does not match any line, are allowed access. Anyone else is
denied access.
Note that this is compatible with the old format, where this file
contained a list of users that should be denied access.
diff --git a/crypto/kerberosIV/man/kadmin.8 b/crypto/kerberosIV/man/kadmin.8
index afd91269356b..bc2f43bb7d01 100644
--- a/crypto/kerberosIV/man/kadmin.8
+++ b/crypto/kerberosIV/man/kadmin.8
@@ -4,14 +4,12 @@
.\" For copying and distribution information,
.\" please see the file <mit-copyright.h>.
.Dd February 3, 1998
.Nm kadmin
-network utility for Kerberos database administration
+.Nd "network utility for Kerberos database administration"
.Op Fl p Ar principal
@@ -23,7 +21,7 @@ network utility for Kerberos database administration
.Op Fl -version
.Op Fl h
.Op Fl -help
-.Ar [command]
+.Op Ar command
This utility provides a unified administration interface to the
Kerberos master database. Kerberos administrators use
@@ -64,7 +62,7 @@ for
.It Fl t
Use existing tickets (if any are available), this also disbles
timeout, and doesn't destroy any tickets upon exit.
These tickets have to be for the changepw.kerberos service. Use
.Nm kinit -p
to acquire them.
diff --git a/crypto/kerberosIV/man/kafs.3 b/crypto/kerberosIV/man/kafs.3
index 4a7b5efb8c4f..9afac16e50b3 100644
--- a/crypto/kerberosIV/man/kafs.3
+++ b/crypto/kerberosIV/man/kafs.3
@@ -11,8 +11,8 @@
.Nm k_afs_cell_of_file ,
.Nm krb_afslog ,
.Nm krb_afslog_uid
-\" .Nm krb5_afslog ,
-\" .Nm krb5_afslog_uid
+.\" .Nm krb5_afslog ,
+.\" .Nm krb5_afslog_uid
.Nd AFS library
.Fd #include <kafs.h>
@@ -30,10 +30,10 @@
.Fn krb_afslog "char *cell" "char *realm"
.Ft int
.Fn krb_afslog_uid "char *cell" "char *realm" "uid_t uid"
-\" .Ft krb5_error_code
-\" .Fn krb5_afslog_uid "krb5_context context" "krb5_ccache id" "const char *cell" "krb5_const_realm realm" "uid_t uid"
-\" .Ft krb5_error_code
-\" .Fn krb5_afslog "krb5_context context" "krb5_ccache id" "const char *cell" "krb5_const_realm realm"
+.\" .Ft krb5_error_code
+.\" .Fn krb5_afslog_uid "krb5_context context" "krb5_ccache id" "const char *cell" "krb5_const_realm realm" "uid_t uid"
+.\" .Ft krb5_error_code
+.\" .Fn krb5_afslog "krb5_context context" "krb5_ccache id" "const char *cell" "krb5_const_realm realm"
.Fn k_hasafs
initializes some library internal structures, and tests for the
@@ -41,7 +41,7 @@ presense of AFS in the kernel, none of the other functions should be
called before
.Fn k_hasafs
is called, or if it fails.
.Fn krb_afslog ,
.Fn krb_afslog_uid
@@ -66,22 +66,22 @@ field in the token,
.Fn krb_afslog_uid
will use
.Fa uid .
-\" .Fn krb5_afslog ,
-\" and
-\" .Fn krb5_afslog_uid
-\" are the Kerberos 5 equivalents of
-\" .Fn krb_afslog ,
-\" and
-\" .Fn krb_afslog_uid .
-\" The extra arguments are the ubiquitous context, and the cache id where
-\" to store any obtained tickets. Since AFS servers normally can't handle
-\" Kerberos 5 tickets directly, these functions will first obtain version
-\" 5 tickets for the requested cells, and then convert them to version 4
-\" tickets, that can be stashed in the kernel. To convert tickets the
-\" .Fn krb524_convert_creds_kdc
-\" function will be used.
+.\" .Fn krb5_afslog ,
+.\" and
+.\" .Fn krb5_afslog_uid
+.\" are the Kerberos 5 equivalents of
+.\" .Fn krb_afslog ,
+.\" and
+.\" .Fn krb_afslog_uid .
+.\" The extra arguments are the ubiquitous context, and the cache id where
+.\" to store any obtained tickets. Since AFS servers normally can't handle
+.\" Kerberos 5 tickets directly, these functions will first obtain version
+.\" 5 tickets for the requested cells, and then convert them to version 4
+.\" tickets, that can be stashed in the kernel. To convert tickets the
+.\" .Fn krb524_convert_creds_kdc
+.\" function will be used.
+.\" .Pp
.Fn k_afs_cell_of_file
will in
.Fa cell
@@ -89,23 +89,22 @@ return the cell of a specified file, no more than
.Fa len
characters is put in
.Fa cell .
.Fn k_pioctl
does a
.Fn pioctl
syscall with the specified arguments. This function is equivalent to
.Fn lpioctl .
.Fn k_setpag
initializes a new PAG.
.Fn k_unlog
removes destroys all tokens in the current PAG.
The following environment variable affect the mode of operation of
.Nm kafs :
-.Bl -tag
+.Bl -tag -width AFS_SYSCALL
.Nm kafs
diff --git a/crypto/kerberosIV/man/kauth.1 b/crypto/kerberosIV/man/kauth.1
index 2efb709636e6..72146e6b3d05 100644
--- a/crypto/kerberosIV/man/kauth.1
+++ b/crypto/kerberosIV/man/kauth.1
@@ -5,8 +5,7 @@
.Nm kauth
-overworked Kerberos login program
+.Nd overworked Kerberos login program
.Op Fl n Ar name
diff --git a/crypto/kerberosIV/man/kauthd.8 b/crypto/kerberosIV/man/kauthd.8
index 4978ff2c5c71..541e696286d0 100644
--- a/crypto/kerberosIV/man/kauthd.8
+++ b/crypto/kerberosIV/man/kauthd.8
@@ -5,8 +5,7 @@
.Nm kauthd
-remote Kerberos login daemon
+.Nd remote Kerberos login daemon
@@ -19,7 +18,7 @@ Options supported by
.Bl -tag -width Ds
.It Fl i
Interactive. Do not expect to be started by
-.Nm inetd,
+.Nm inetd ,
but allocate and listen to the socket yourself. Handy for testing
and debugging.
diff --git a/crypto/kerberosIV/man/kerberos.8 b/crypto/kerberosIV/man/kerberos.8
index 5d89635d4fbf..0ad1a4ac92d3 100644
--- a/crypto/kerberosIV/man/kerberos.8
+++ b/crypto/kerberosIV/man/kerberos.8
@@ -5,7 +5,7 @@
.Nm kerberos
-.Nd The kerberos daemon
+.Nd the kerberos daemon
.Op Fl mns
@@ -52,7 +52,8 @@ port specification follows the format:
.Ar port
can be either a symbolic port name (from
-.Pa /etc/services), or a number;
+.Pa /etc/services ) ,
+or a number;
.Ar protocol can be either
.Li udp ,
@@ -71,13 +72,12 @@ Run as a server for realm
Set slave parameters. This will enable check to see if data is
getting too stale relative to the master.
If no
.Ar database
is given a default datbase will be used, normally
.Pa /var/kerberos/principal .
The server logs several messages in a log file
.Pf ( Pa /var/run/kerberos.log
by default). The logging mechanism opens and closes the log file for
@@ -115,7 +115,6 @@ An initial (password authenticated) request was received.
A tgt-based request for a ticket was made.
.Ss Error messages
These messages reflects misconfigured clients, invalid requests, or
possibly attepted attacks.
@@ -167,7 +166,6 @@ because of a broken client, or possibly an attack.
.It Li KRB protocol version mismatch ( Ar number )
The server received a request with an unknown version number.
.Ss Fatal error messages
The following messages indicate problems when starting the server.
.Bl -tag -width xxxxx
@@ -186,7 +184,6 @@ The database doesn't contain a
.Sq krbtgt.REALM
for the local realm.
.Xr kprop 8 ,
.Xr kpropd 8
diff --git a/crypto/kerberosIV/man/kprop.8 b/crypto/kerberosIV/man/kprop.8
index 376f71592bd5..45a6a2b098cc 100644
--- a/crypto/kerberosIV/man/kprop.8
+++ b/crypto/kerberosIV/man/kprop.8
@@ -5,8 +5,7 @@
.Nm kprop
-the kerberos slave server update client
+.Nd "the kerberos slave server update client"
.Op Fl force
@@ -20,9 +19,8 @@ the master server through the
service. To propagate these changes to the slave servers,
should be run regularly on the master server.
The following options are recognised.
.Bl -tag -width -force
.It Fl force
Propagate even if there hasn't been an update to the dump file since
@@ -38,14 +36,13 @@ default is
Contains the names of the slave servers. Default is
.Pa /var/kerberos/slaves .
will use the principal
.Nm rcmd.kerberos
to authenticate to the master servers. This principal has to be added
to the database, and it should also be put into the service key file
on the master server.
.Bl -tag -width indent -compact
.It Pa /var/kerberos/slave_dump
diff --git a/crypto/kerberosIV/man/kpropd.8 b/crypto/kerberosIV/man/kpropd.8
index d1dbd16d4e62..c916e0f4ec86 100644
--- a/crypto/kerberosIV/man/kpropd.8
+++ b/crypto/kerberosIV/man/kpropd.8
@@ -5,8 +5,7 @@
.Nm kpropd
-the kerberos slave server update facility
+.Nd "the kerberos slave server update facility"
.Op Fl i
@@ -24,9 +23,8 @@ responds to database update requests from the
command. It can either be started from
.Nm inetd
or as an ordinary program.
The following options are recognised:
.Bl -tag -width xxxx
.It Fl i
Run stand-alone. If this flag is not given, it is assumed to have
diff --git a/crypto/kerberosIV/man/krb.equiv.5 b/crypto/kerberosIV/man/krb.equiv.5
index e38f94bf6179..511dbf09f25b 100644
--- a/crypto/kerberosIV/man/krb.equiv.5
+++ b/crypto/kerberosIV/man/krb.equiv.5
@@ -5,8 +5,7 @@
.Nm krb.equiv
-Kerberos equivalent hosts file
+.Nd Kerberos equivalent hosts file
contains a list of IP addresses that is to be considered being the
diff --git a/crypto/kerberosIV/man/krb.extra.5 b/crypto/kerberosIV/man/krb.extra.5
index 38569fdcd805..565232376ded 100644
--- a/crypto/kerberosIV/man/krb.extra.5
+++ b/crypto/kerberosIV/man/krb.extra.5
@@ -5,8 +5,7 @@
.Nm krb.extra
-Kerberos misc configuration file
+.Nd Kerberos misc configuration file
contains a number of settings that are used by the kerberos library,
diff --git a/crypto/kerberosIV/man/ksrvutil.8 b/crypto/kerberosIV/man/ksrvutil.8
index fdc99e6efe65..7d175e9d5188 100644
--- a/crypto/kerberosIV/man/ksrvutil.8
+++ b/crypto/kerberosIV/man/ksrvutil.8
@@ -7,10 +7,9 @@
.Dd May 4, 1996
.Nm ksrvutil
-host kerberos keyfile (srvtab) manipulation utility
+.Nd "host kerberos keyfile (srvtab) manipulation utility"
.Op Fl f Pa keyfile
@@ -19,7 +18,6 @@ host kerberos keyfile (srvtab) manipulation utility
.Op Fl p Ar principal
.Op Fl r Ar realm
.Ar operation
allows a system manager to list or change keys currently in his
@@ -75,10 +73,9 @@ and could supply an initial password. Then, he could use
to add the key to the keyfile and then to change the key so that it
will be random and unknown to either the system manager or the
kerberos administrator.
always makes a backup copy of the keyfile before making any changes.
@@ -89,16 +86,14 @@ where
.Pa filename
is the name of the keyfile, and a copy of the file with all new
keys changed or added so far can be found in
-.Pa filename Ns .work.
+.Pa filename Ns .work .
The original keyfile is left unmodified until the program exits at
which point it is removed and replaced it with the workfile.
Appending the workfile to the backup copy and replacing the keyfile
with the result should always give a usable keyfile, although the
resulting keyfile will have some out of date keys in it.
.Xr kadmin 8 ,
.Xr ksrvtgt 1
Emanuel Jay Berkenbilt, MIT Project Athena
diff --git a/crypto/kerberosIV/man/login.1 b/crypto/kerberosIV/man/login.1
index b05a6a4dce61..dcdc91927e08 100644
--- a/crypto/kerberosIV/man/login.1
+++ b/crypto/kerberosIV/man/login.1
@@ -43,7 +43,7 @@
.Op Fl h Ar hostname
.Op Ar user
-.Sy Note:
+.Sy Note :
this manual page describes the original login program for
NetBSD. Everything in here might not be true.
diff --git a/crypto/kerberosIV/man/login.access.5 b/crypto/kerberosIV/man/login.access.5
index 28d423c9156c..da93b9d54140 100644
--- a/crypto/kerberosIV/man/login.access.5
+++ b/crypto/kerberosIV/man/login.access.5
@@ -1,10 +1,10 @@
.\" this is comment
.Dd April 30, 1994
-.Os FreeBSD 1.2
+.Os FreeBSD
.Nm login.access
-.Nd Login access control table
+.Nd login access control table
.Nm login.access
@@ -21,7 +21,7 @@ be accepted or refused.
Each line of the login access control table has three fields separated by a
":" character: permission : users : origins
The first field should be a "+" (access granted) or "-" (access denied)
character. The second field should be a list of one or more login names,
group names, or ALL (always matches). The third field should be a list
@@ -30,9 +30,9 @@ names (begin with "."), host addresses, internet network numbers (end
with "."), ALL (always matches) or LOCAL (matches any string that does
not contain a "." character). If you run NIS you can use @netgroupname
in host or user patterns.
The EXCEPT operator makes it possible to write very compact rules.
The group file is searched only when a name does not match that of the
logged-in user. Only groups are matched in which users are explicitly
listed: the program does not look at a user's primary group id value.
diff --git a/crypto/kerberosIV/man/pagsh.1 b/crypto/kerberosIV/man/pagsh.1
index cd95f8bfc90c..2208fc87df09 100644
--- a/crypto/kerberosIV/man/pagsh.1
+++ b/crypto/kerberosIV/man/pagsh.1
@@ -5,18 +5,21 @@
.Nm pagsh
-execute a command without authentication
+.Nd execute a command without authentication
.Nm pagsh
-.Op Oo Fl c Oc Nm command Ar args
+.Op Fl c
+.Ar command Ar args
Starts a new subprocess that is detached from any Kerberos ticket
-cache and AFS tokens. Without
-.Nm command
+cache and AFS tokens.
+.Ar command
a new shell is started.
-.Bl -tag -width Fl
+.Bl -tag -width $SHELL
Default shell.
diff --git a/crypto/kerberosIV/man/rcp.1 b/crypto/kerberosIV/man/rcp.1
index cc5efd0c7b4f..c52258e49764 100644
--- a/crypto/kerberosIV/man/rcp.1
+++ b/crypto/kerberosIV/man/rcp.1
@@ -47,7 +47,7 @@
.Nm rcp
.Op Fl Kprx
.Op Fl k Ar realm
-.Ar file ...
.Ar directory
.Nm Rcp
diff --git a/crypto/kerberosIV/man/rlogin.1 b/crypto/kerberosIV/man/rlogin.1
index 3e1fd8d06e37..c2d8b77f96ae 100644
--- a/crypto/kerberosIV/man/rlogin.1
+++ b/crypto/kerberosIV/man/rlogin.1
@@ -98,7 +98,7 @@ This specification may be as a literal character, or as an octal
value in the form \ennn.
.It Fl k
-.FL k
+.Fl k
option requests rlogin to obtain tickets for the remote host
in realm
.Ar realm
diff --git a/crypto/kerberosIV/man/telnet.1 b/crypto/kerberosIV/man/telnet.1
index 2b3198ec110a..962783f7ce98 100644
--- a/crypto/kerberosIV/man/telnet.1
+++ b/crypto/kerberosIV/man/telnet.1
@@ -98,7 +98,7 @@ BINARY option to be negotiated on output.
.It Fl S Ar tos
Sets the IP type-of-service (TOS) option for the telnet
connection to the value
-.Ar tos,
+.Ar tos ,
which can be a numeric TOS value
or, on systems that support it, a symbolic
TOS name found in the /etc/iptos file.
@@ -134,7 +134,7 @@ Sets the initial
.Nm telnet
escape character to
-.Ar escape char.
+.Ar escape char .
.Ar escape char
is omitted, then
@@ -304,12 +304,12 @@ auth command are as follows:
.It Ic disable Ar type
Disables the specified type of authentication. To
obtain a list of available types, use the
-.Ic auth disable \&?
+.Ic auth disable ?\&
.It Ic enable Ar type
Enables the specified type of authentication. To
obtain a list of available types, use the
-.Ic auth enable \&?
+.Ic auth enable ?\&
.It Ic status
Lists the current status of the various types of
@@ -336,18 +336,22 @@ option is not supported outside of the United States and Canada.
Valid arguments for the encrypt command are as follows:
.Bl -tag -width Ar
-.It Ic disable Ar type Ic [input|output]
+.It Ic disable Ar type Xo
+.Op Cm input | output
Disables the specified type of encryption. If you
omit the input and output, both input and output
are disabled. To obtain a list of available
types, use the
-.Ic encrypt disable \&?
+.Ic encrypt disable ?\&
-.It Ic enable Ar type Ic [input|output]
+.It Ic enable Ar type Xo
+.Op Cm input | output
Enables the specified type of encryption. If you
omit input and output, both input and output are
enabled. To obtain a list of available types, use the
-.Ic encrypt enable \&?
+.Ic encrypt enable ?\&
.It Ic input
This is the same as the
@@ -365,18 +369,18 @@ command.
This is the same as the
.Ic encrypt stop output
-.It Ic start Ic [input|output]
+.It Ic start Op Cm input | output
Attempts to start encryption. If you omit
.Ic input
-.Ic output,
+.Ic output ,
both input and output are enabled. To
obtain a list of available types, use the
-.Ic encrypt enable \&?
+.Ic encrypt enable ?\&
.It Ic status
Lists the current status of encryption.
-.It Ic stop Ic [input|output]
+.It Ic stop Op Cm input | output
Stops encryption. If you omit input and output,
encryption is on both input and output.
.It Ic type Ar type
@@ -387,7 +391,7 @@ or
.Ic encrypt stop
-.It Ic environ Ar arguments...
+.It Ic environ Ar arguments ...
.Ic environ
command is used to manipulate the
@@ -416,7 +420,7 @@ command are:
Define the variable
.Ar variable
to have a value of
-.Ar value.
+.Ar value .
Any variables defined by this command are automatically exported.
.Ar value
@@ -441,7 +445,7 @@ Those marked with a
.Cm *
will be sent automatically,
other variables will only be sent if explicitly requested.
-.It Ic \&?
+.It Ic ?\&
Prints out help information for the
.Ic environ
@@ -522,17 +526,15 @@ option.
This requires that the
option be enabled.
-.It Ic \&?
+.It Ic ?\&
Prints out help information for the
.Ic mode
.It Xo
.Ic open Ar host
-.Oo Op Fl l
-.Ar user
-.Oc Ns Oo Fl
-.Ar port Oc
+.Op Fl l Ar user
+.Op Oo Fl Oc Ns Ar port
Open a connection to the named host.
If no port number
@@ -692,10 +694,10 @@ command.
can also be either
.Ic help
-.Ic \&?
+.Ic ?\&
to print out help information, including
a list of known symbolic names.
-.It Ic \&?
+.It Ic ?\&
Prints out help information for the
.Ic send
@@ -996,7 +998,7 @@ The initial value for the worderase character is taken to be
the terminal's
.Ic worderase
-.It Ic \&?
+.It Ic ?\&
Displays the legal
.Ic set
.Pq Ic unset
@@ -1040,7 +1042,7 @@ The remote default characters are those of the remote system
at the time when the
connection was established.
-.It Ic \&?
+.It Ic ?\&
Prints out help information for the
.Ic slc
@@ -1251,10 +1253,12 @@ has ever been enabled, then
is sent as
.Ic abort ,
-.Ic eof and
-.B suspend
+.Ic eof
+.Ic suspend
are sent as
-.Ic eof and
+.Ic eof
.Ic susp ,
.Ic send
@@ -1293,7 +1297,7 @@ skips the reading of the
file in the users home
directory when connections are opened. The initial
value for this toggle is
+.Dv FALSE .
.It Ic termdata
Toggles the display of all terminal data (in hexadecimal format).
The initial value for this toggle is
@@ -1306,7 +1310,7 @@ toggle is
prints out a message each time encryption is enabled or
disabled. The initial value for this toggle is
+.Dv FALSE .
Note: Because of export controls, data encryption
is not supported outside of the United States and Canada.
.It Ic \&?
@@ -1325,7 +1329,7 @@ system. If
.Ic command
is omitted, then an interactive
subshell is invoked.
-.It Ic \&? Op Ar command
+.It Ic ?\& Op Ar command
Get help. With no arguments,
.Nm telnet
prints a help summary.
diff --git a/crypto/kerberosIV/man/telnetd.8 b/crypto/kerberosIV/man/telnetd.8
index b26d8ddf1619..6609a4837348 100644
--- a/crypto/kerberosIV/man/telnetd.8
+++ b/crypto/kerberosIV/man/telnetd.8
@@ -95,7 +95,7 @@ has been compiled with support for the
There are several valid values for
-.Ar authmode:
+.Ar authmode :
.Bl -tag -width debug
.It debug
Turns on authentication debugging code.
@@ -153,7 +153,7 @@ to the connection, allowing the user to see what
.Nm telnetd
is doing.
There are several possible values for
-.Ar debugmode:
+.Ar debugmode :
.Bl -tag -width exercise
.It Cm options
Prints information about the negotiation of
@@ -166,7 +166,7 @@ information, plus some additional information
about what processing is going on.
.It Cm netdata
Displays the data stream received by
-.Nm telnetd.
+.Nm telnetd .
.It Cm ptydata
Displays data written to the pty.
.It Cm exercise
@@ -194,12 +194,12 @@ be reached may be cleaned up.
This option is only enabled when
.Nm telnetd
is compiled for
It specifies an inclusive range of pseudo-terminal devices to
use. If the system has sysconf variable
configured, the default pty search range is 0 to
otherwise, the default range is 0 to 128. Either
.Ar lowpty
@@ -298,7 +298,9 @@ DO TIMING-MARK
The pseudo-terminal allocated to the client is configured
-to operate in \*(lqcooked\*(rq mode, and with
+to operate in
+.Dq cooked
+mode, and with
.Dv XTABS and
enabled (see
@@ -336,7 +338,7 @@ Indicates that the client is willing to send a
of the Network Virtual Terminal.
Indicates that it will not be sending
-.Dv IAC GA,
+.Dv IAC GA ,
go ahead, commands.
Indicates a willingness to send the client, upon
@@ -382,7 +384,7 @@ characters remotely.
This is not really supported, but is sent to identify a 4.2BSD
.Xr telnet 1
client, which will improperly respond with
If a
is received, a
@@ -394,7 +396,7 @@ name of the type of terminal that is attached
to the client side of the connection.
.It "DO SGA"
Indicates that it does not need to receive
-.Dv IAC GA,
+.Dv IAC GA ,
the go ahead command.
Requests that the client inform the server when
@@ -423,9 +425,9 @@ Only sent if
.Nm telnetd
is compiled with support for both linemode and
kludge linemode, and the client responded with
If the client responds with
+.Dv WILL TM ,
the it is assumed that the client supports
kludge linemode.
Note that the
@@ -443,6 +445,7 @@ Only sent if
is compiled with support for data encryption, and
indicates a willingness to decrypt
the data stream.
.Pa /etc/services
@@ -501,6 +504,7 @@ Telnet Authentication: SPX
Telnet Environment Option Interoperability Issues
.It Cm RFC-1572
Telnet Environment Option