6eb9304782
- (dtucker) [configure.ac] Add sanity test after system-dependant compiler
...
flag modifications.
2003-06-29 21:30:41 +10:00
cc9fd54a36
- (dtucker) Bug #602 : move #include of netdb.h to after in.h (fixes compiler
...
warnings on Solaris 2.5.1).
2003-06-29 21:23:37 +10:00
3b08df9da7
Same day...
2003-06-29 21:20:04 +10:00
723569b257
- (djm) Bug #593 : Sanity check OpenSC card reader number; patch from
...
aj@dungeon.inka.de
2003-06-28 18:08:16 +10:00
4a8e284855
- (djm) Bug #591 : use PKCS#15 private key label as a comment in case
...
of OpenSC. Report and patch from larsch@trustcenter.de
2003-06-28 18:02:47 +10:00
a3020db6b4
- (dtucker) [configure.ac] Bug #570 : Have ./configure --enable-FEATURE
...
actually enable the feature, for those normally disabled. Patch by
openssh (at) roumenpetrov.info.
2003-06-28 12:54:33 +10:00
b611c12e67
- (dtucker) [regress/dynamic-forward.sh] Import new regression test.
2003-06-28 12:42:09 +10:00
a99c1b77ab
- markus@cvs.openbsd.org 2003/06/26 20:08:33
...
[readconf.c]
do not dump core for 'ssh -o proxycommand host'; ok deraadt@
2003-06-28 12:40:12 +10:00
a6612d43cf
- miod@cvs.openbsd.org 2003/06/25 22:39:36
...
[sftp-server.c]
Typo police: attribute is better written with an 'r'.
2003-06-28 12:39:03 +10:00
502d384b74
- markus@cvs.openbsd.org 2003/06/24 08:23:46
...
[auth2-hostbased.c auth2-pubkey.c auth2.c channels.c key.c key.h
monitor.c packet.c packet.h serverloop.c sshconnect2.c sshd.c]
int -> u_int; ok djm@, deraadt@, mouring@
2003-06-28 12:38:01 +10:00
674f71d77e
- markus@cvs.openbsd.org 2003/06/23 09:02:44
...
[ssh_config.5]
document EnableSSHKeysign; bugzilla #599 ; ok deraadt@, jmc@
2003-06-28 12:33:12 +10:00
a0472e095d
- (dtucker) Have configure refer the user to config.log and
...
contrib/findssl.sh for OpenSSL header/library mismatches.
2003-06-24 20:22:09 +10:00
89b249be64
Missed a line cut-and-pasting the ChangeLog
2003-06-22 21:22:04 +10:00
b8dae8ece0
20030622
...
- (dtucker) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/20 05:48:21
[sshd_config]
sync some implemented options; ok markus@
2003-06-22 20:48:45 +10:00
91cf261bd5
20030622
...
- (dtucker) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/20 05:47:58
[sshd_config.5]
sync description of protocol 2 cipher proposal; ok markus
2003-06-22 20:46:53 +10:00
a251f809a0
- (dtucker) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/06/18 11:28:11
[ssh-rsa.c]
backout last change, since it violates pkcs#1
switch to share/misc/license.template
2003-06-22 20:45:15 +10:00
6cf1a2cfe8
- (dtucker) [openbsd-compat/setproctitle.c] Ensure SPT_TYPE is defined before
...
testing its value.
When HAVE_SETPROCTITLE is defined (at least on NetBSD, gcc 2.95.3) the test
"#if SPT_TYPE == SPT_REUSEARGV" is not true (probably because SPT_TYPE or
SPT_REUSEARGV is not defined). This results in the following build error:
$ gcc [flags] setproctitle.c
setproctitle.c: In function `compat_init_setproctitle':
setproctitle.c:102: `argv_start' undeclared (first use in this function)
2003-06-22 18:32:10 +10:00
e0194e52ca
- (dtucker) OpenBSD CVS Sync (regress/)
...
- markus@cvs.openbsd.org 2003/06/21 09:14:05
[reconfigure.sh]
missing $SUDO; from dtucker@zip.com.au
- (dtucker) [regress/authorized_keys_root] Remove temp data file from CVS.
2003-06-22 12:33:27 +10:00
50cea67222
- (dtucker) OpenBSD CVS Sync (regress/)
...
- markus@cvs.openbsd.org 2003/06/12 15:43:32
[Makefile]
test -HUP; dtucker at zip.com.au
2003-06-18 22:45:34 +10:00
76437600b2
- (dtucker) OpenBSD CVS Sync (regress/)
...
- markus@cvs.openbsd.org 2003/06/12 15:40:01
[try-ciphers.sh]
add ctr
2003-06-18 22:43:13 +10:00
c43362c89a
- (dtucker) OpenBSD CVS Sync (regress/)
...
- mouring@cvs.openbsd.org 2003/05/15 04:07:12
[sftp-cmds.sh]
Advanced put/get testing for sftp. OK @djm
2003-06-18 22:41:41 +10:00
ee5f83d3ea
- (dtucker) OpenBSD CVS Sync (regress/)
...
- markus@cvs.openbsd.org 2003/05/14 22:08:27
[ssh-com-client.sh ssh-com-keygen.sh ssh-com-sftp.sh ssh-com.sh]
test against some new commerical versions
2003-06-18 22:36:48 +10:00
a4040f5904
- (dtucker) OpenBSD CVS Sync (regress/)
...
- djm@cvs.openbsd.org 2003/04/04 09:34:22
[Makefile sftp-cmds.sh]
More regression tests, including recent directory rename bug; ok markus@
2003-06-18 22:35:11 +10:00
d57a76eec5
- (dtucker) OpenBSD CVS Sync (regress/)
...
- markus@cvs.openbsd.org 2003/04/02 12:21:13
[Makefile]
enable rekey test
2003-06-18 22:32:51 +10:00
3a222ac0d0
- (dtucker) [regress/copy.1 regress/copy.2] Remove temp data files from CVS.
2003-06-18 22:21:33 +10:00
fc8a7ea202
- (dtucker) [reconfigure.sh rekey.sh sftp-badcmds.sh]
...
Import new regression tests from OpenBSD
2003-06-18 22:18:57 +10:00
0275b52387
- markus@cvs.openbsd.org 2003/06/17 18:14:23
...
[cipher-ctr.c]
use license from /usr/share/misc/license.template for new code
2003-06-18 20:29:35 +10:00
80163e1b72
- markus@cvs.openbsd.org 2003/06/16 10:22:45
...
[ssh-add.c]
print out key comment on each prompt; make ssh-askpass more useable; ok djm@
2003-06-18 20:29:18 +10:00
8c1d2e3926
- markus@cvs.openbsd.org 2003/06/16 08:22:35
...
[ssh-rsa.c]
make sure the signature has at least the expected length (don't
insist on len == hlen + oidlen, since this breaks some smartcards)
bugzilla #592 ; ok djm@
2003-06-18 20:29:01 +10:00
56a0bb07c4
- markus@cvs.openbsd.org 2003/06/12 19:12:03
...
[scard.c scard.h ssh-agent.c ssh.c]
add sc_get_key_label; larsch at trustcenter.de; bugzilla#591
2003-06-18 20:28:40 +10:00
b2cdcb50a2
- nino@cvs.openbsd.org 2003/06/12 15:34:09
...
[scp.c]
Typo. Ok markus@.
2003-06-18 20:26:34 +10:00
116aabbb66
- djm@cvs.openbsd.org 2003/06/12 12:22:47
...
[LICENCE]
mention more copyright holders; ok markus@
2003-06-18 20:26:13 +10:00
469954debd
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/06/12 07:57:38
[monitor.c sshlogin.c sshpty.c]
typos; dtucker at zip.com.au
2003-06-18 20:25:33 +10:00
53950b68bf
- (djm) Update license on fake-rfc2553.[ch]; ok itojun@
2003-06-14 08:43:22 +10:00
af63951c57
- (djm) Put licenses on substantial header files
2003-06-11 22:51:32 +10:00
141efa7036
- (djm) Mention portable copyright holders in LICENSE
2003-06-11 22:50:56 +10:00
4bfeb14742
- (djm) Sync LICENSE against OpenBSD
2003-06-11 22:08:36 +10:00
d94f20d28e
- djm@cvs.openbsd.org 2003/06/11 11:18:38
...
[authfd.c authfd.h ssh-add.c ssh-agent.c]
make agent constraints (lifetime, confirm) work with smartcard keys;
ok markus@
2003-06-11 22:06:33 +10:00
0e1b937f13
- jakob@cvs.openbsd.org 2003/06/11 10:18:47
...
[dns.c]
sync with check_host_key() change
2003-06-11 22:05:45 +10:00
7392ae6270
- jakob@cvs.openbsd.org 2003/06/11 10:16:16
...
[sshconnect.c]
clean up check_host_key() and improve SSHFP feedback. ok markus@
2003-06-11 22:05:25 +10:00
2b92d32e19
- deraadt@cvs.openbsd.org 2003/06/10 22:20:52
...
[packet.c progressmeter.c]
mostly ansi cleanup; pval ok
2003-06-11 22:05:06 +10:00
f1ce505daf
- jmc@cvs.openbsd.org 2003/06/10 09:12:11
...
[scp.1 sftp-server.8 ssh.1 ssh-add.1 ssh-agent.1 ssh_config.5]
[sshd.8 sshd_config.5 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8]
- section reorder
- COMPATIBILITY merge
- macro cleanup
- kill whitespace at EOL
- new sentence, new line
ssh pages ok markus@
2003-06-11 22:04:39 +10:00
78f2e5ca98
- (djm) Re-merge OpenSC info into README.smartcard
2003-06-10 21:09:09 +10:00
c18c06e131
- (djm) Sync README.smartcard with OpenBSD -current
2003-06-10 18:55:22 +10:00
400b8786d6
- (dtucker) [uidswap.c] Fix setreuid and add missing args to fatal(). ok djm@
2003-06-06 10:46:04 +10:00
881753bef2
- (dtucker) Define EAI_NONAME in fake-rfc2553.h (used by fake-rfc2553.c).
2003-06-05 22:20:11 +10:00
4aff13f1e7
- (dtucker) Add includes.h to fake-rfc2553.c so it will build.
2003-06-05 19:37:30 +10:00
76b5c8a83a
- (djm) Bug #589 - scard-opensc: load only keys with a private keys
...
Patch from larsch@trustcenter.de
2003-06-05 19:19:35 +10:00
f49078dfdf
- (djm) Bug #588 - Add scard-opensc.o back to Makefile.in
...
Patch from larsch@trustcenter.de
2003-06-05 18:53:42 +10:00
c28e38d23a
- (djm) Merge all the openbsd/fake-* into fake-rfc2553.[ch]
2003-06-05 18:52:47 +10:00
b95bb7f9b1
- (djm) Don't use xmalloc() or pull in toplevel headers in fake-* code
2003-06-05 10:04:12 +10:00
5fe46a45c8
- (djm) Implement paranoid priv dropping checks, based on:
...
"SetUID demystified" - Hao Chen, David Wagner and Drew Dean
Proceedings of USENIX Security Symposium 2002
2003-06-05 09:53:31 +10:00
10eac0cf8f
- (djm) Support AI_NUMERICHOST in fake-getaddrinfo.c. Needed for recent
...
canohost.c changes.
2003-06-05 09:48:32 +10:00
0cbb9dea05
- (djm) Always use mysignal() for SIGALRM
2003-06-04 22:56:15 +10:00
cc685c1cbe
- djm@cvs.openbsd.org 2003/06/04 12:41:22
...
[sftp.c]
kill ssh process on receipt of signal; ok markus@
2003-06-04 22:51:38 +10:00
b69aaa8db7
- djm@cvs.openbsd.org 2003/06/04 12:40:39
...
[scp.c]
kill ssh process upon receipt of signal, bz #241 .
based on patch from esb AT hawaii.edu; ok markus@
2003-06-04 22:51:24 +10:00
65d1f5765f
- djm@cvs.openbsd.org 2003/06/04 12:18:49
...
[scp.c]
ansify; ok markus@
2003-06-04 22:51:08 +10:00
9fc7c699af
- djm@cvs.openbsd.org 2003/06/04 12:03:59
...
[serverloop.c]
remove bitrotten commet; ok markus@
2003-06-04 22:50:54 +10:00
4c322482bb
- (djm) Update to fix of bug #584 : lock card before return.
...
From larsch@trustcenter.de
2003-06-04 22:12:17 +10:00
31b3a0a98f
- djm@cvs.openbsd.org 2003/06/04 10:23:48
...
[sshd.c]
remove duplicated group-dropping code; ok markus@
2003-06-04 20:32:12 +10:00
941ac459ce
- (djm) OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2003/06/04 08:25:18
[sshconnect.c]
disable challenge/response and keyboard-interactive auth methods
upon hostkey mismatch. based on patch from fcusack AT fcusack.com.
bz #580 ; ok markus@
2003-06-04 20:31:53 +10:00
2527f5755a
- (djm) Bug #584 : scard-opensc.c doesn't work without PIN. Patch from
...
larsch@trustcenter.de ; ok markus@
2003-06-04 19:22:06 +10:00
485397c48d
- (djm) Bug #577 - wrong flag in scard-opensc.c sc_private_decrypt.
...
ok markus@
2003-06-04 19:15:10 +10:00
865173ee03
- (djm) Bug #573 - Remove unneeded Krb headers and compat goop. Patch from
...
simon@sxw.org.uk (Also matches a change in OpenBSD a while ago)
2003-06-04 19:06:59 +10:00
d311c4e54b
change "No more 4-term BSD licenses in our tree" to
...
"No more 4-term BSD licenses in linked code"
mdoc2man.pl is 4-term BSDL
2003-06-03 13:09:16 +10:00
dafb12ed28
a - millert@cvs.openbsd.org 2003/06/03 02:56:16
...
[scp.c]
Remove the advertising clause in the UCB license which Berkeley
rescinded 22 July 1999. Proofed by myself and Theo.
2003-06-03 13:06:18 +10:00
eb28cbc399
- (dtucker) [port-aix.c bsd-cray.c] Fix uses of verify_reverse_mapping.
2003-06-03 12:45:27 +10:00
048d88d5aa
trim prior to 3.6p1
2003-06-03 12:43:14 +10:00
329638e49c
- (djm) Sync openbsd-compat with OpenBSD CVS.
...
- No more 4-term BSD licenses in our tree
2003-06-03 12:12:50 +10:00
3a961dc0d3
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/06/02 09:17:34
[auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c]
[canohost.c monitor.c servconf.c servconf.h session.c sshd_config]
[sshd_config.5]
deprecate VerifyReverseMapping since it's dangerous if combined
with IP based access control as noted by Mike Harding; replace with
a UseDNS option, UseDNS is on by default and includes the
VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@
ok deraadt@, djm@
- (djm) Fix portable-specific uses of verify_reverse_mapping too
2003-06-03 10:25:48 +10:00
35276253a6
- (djm) Replace setproctitle replacement with code derived from
...
UCB sendmail
2003-06-03 10:14:28 +10:00
eacbb4fcc1
- jakob@cvs.openbsd.org 2003/06/02 08:31:10
...
[ssh_config.5]
VerifyHostKeyDNS is v2 only. ok markus@
2003-06-02 19:10:41 +10:00
61d3680aca
- deraadt@cvs.openbsd.org 2003/05/29 16:58:45
...
[sshd.c uidswap.c]
seteuid and setegid; markus ok
2003-06-02 19:09:48 +10:00
ab2db41b61
- djm@cvs.openbsd.org 2003/05/26 12:54:40
...
[sshconnect.c]
fix format strings; ok markus@
2003-06-02 19:09:13 +10:00
f46844214d
- (djm) Sync license on openbsd-compat/bindresvport.c with OpenBSD CVS
2003-06-02 18:59:08 +10:00
dcc8312a19
- (djm) Fix use of macro before #define in cipher-aes.c
2003-06-02 18:57:59 +10:00
dba5950820
- (djm) Remove "noip6" option from RedHat spec file. This may now be
...
set at runtime using AddressFamily option.
2003-06-02 17:43:19 +10:00
237ca4ab08
openbsd-compat/xmmap.[ch] License clarifications. Add missing CVS ID.
2003-06-01 19:25:27 -07:00
f2e3e9deba
- (djm) Always use saved_argv in sshd.c as compat_init_setproctitle may
...
clobber
2003-06-02 12:15:54 +10:00
f3bff94957
- (djm) Fix segv from bad reordering in auth-pam.c
2003-06-02 12:13:40 +10:00
2972d6c045
- (dtucker) Define SSHD_ACQUIRES_CTTY for NCR MP-RAS and Reliant Unix.
...
I'm pretty sure these are required. I also want to add -D_XOPEN_SOURCE=1
-D_XOPEN_SOURCE_EXTENDED=1 to CPPFLAGS for MP-RAS but I haven't had confirmation
that it will not break anything else.
2003-05-30 17:43:42 +10:00
3cb84e5ec8
- (dtucker) Add missing semicolon in md5crypt.c, patch from openssh at
...
roumenpetrov.info
2003-05-30 16:58:22 +10:00
a6a7c19dcb
- (djm) Avoid auth2-chall.c warning when compiling without
...
PAM, BSD_AUTH and SKEY
2003-05-26 21:36:13 +10:00
04bd8b0bcc
- djm@cvs.openbsd.org 2003/05/24 09:30:40
...
[authfile.c monitor.c sftp-common.c sshpty.c]
cast some types for printing; ok markus@
2003-05-25 14:38:33 +10:00
c11fe255ab
- (djm) OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2003/05/24 09:02:22
[log.c]
pass logged data through strnvis; ok markus
2003-05-25 14:38:02 +10:00
6014578b90
- (dtucker) Correct --osfsia in INSTALL. Patch by skeleten at shillest.net
2003-05-24 11:41:16 +10:00
08293fa435
- djm@cvs.openbsd.org 2003/05/23 08:29:30
...
[sshconnect.c]
fix leak; ok markus@
2003-05-23 18:44:41 +10:00
fbf486b4a6
- jmc@cvs.openbsd.org 2003/05/20 12:09:31
...
[ssh.1 ssh_config.5 sshd.8 sshd_config.5 ssh-keygen.1]
new sentence, new line
2003-05-23 18:44:23 +10:00
5067792a72
- (djm) OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2003/05/20 12:03:35
[sftp.1]
- new sentence, new line
- added .Xr's
- typos
ok djm@
2003-05-23 18:44:04 +10:00
d419bdae77
- (djm) Use VIS_SAFE on logged strings rather than default strnvis
...
encoding (which encodes many more characters)
2003-05-23 18:43:40 +10:00
1340ec297b
- (djm) Configure logic to detect syslog_r and friends
2003-05-20 09:24:42 +10:00
74a3442d10
- deraadt@cvs.openbsd.org 2003/05/18 23:22:01
...
[log.c]
use syslog_r() in a signal handler called place; markus ok
2003-05-20 09:24:17 +10:00
eb0e969a4f
- (djm) Sync auth-pam.h with what we actually implement
2003-05-19 11:28:44 +10:00
5b5ca19ef0
- (djm) KNF on auth-sia.[ch]
2003-05-19 00:50:02 +10:00
e7fb103192
- (djm) KNF on md5crypt.c
2003-05-19 00:46:46 +10:00
317412502b
- (djm) Big KNF on openbsd-compat/
2003-05-19 00:13:38 +10:00
e323df6c48
- (djm) Sync openbsd-compat/ with OpenBSD CVS head
2003-05-18 22:24:09 +10:00
0b8e9006d8
- (djm) Tidy and trim TODO
2003-05-18 21:44:07 +10:00
f5399c24dc
- markus@cvs.openbsd.org 2003/05/17 04:27:52
...
[cipher.c cipher-ctr.c myproposal.h]
experimental support for aes-ctr modes from
http://www.ietf.org/internet-drafts/draft-ietf-secsh-newmodes-00.txt
ok djm@
2003-05-18 20:53:59 +10:00
a9825785e8
- itojun@cvs.openbsd.org 2003/05/17 03:25:58
...
[auth-rhosts.c]
just in case, put numbers to sscanf %s arg.
2003-05-18 20:53:10 +10:00
7e1bbc55af
- (djm) Remove IPv4 by default hack now that we can specify AF in config
2003-05-18 20:52:40 +10:00
20a8f97b03
- djm@cvs.openbsd.org 2003/05/16 03:27:12
...
[readconf.c ssh_config ssh_config.5 ssh-keysign.c]
add AddressFamily option to ssh_config (like -4, -6 on commandline).
Portable bug #534 ; ok markus@
2003-05-18 20:50:30 +10:00
25d9342f04
- (djm) Return of the dreaded PAM_TTY_KLUDGE, which went missing in
...
recent merge
2003-05-18 20:45:47 +10:00
4c9e9ab165
- (bal) strcat -> strlcat on openbsd-compat/realpath.c (rev 1.8 OpenBSD)
2003-05-18 01:22:43 +00:00
e27c6cc3ad
- (djm) Guard free_pam_environment against NULL argument. Works around
...
HP/UX PAM problems debugged by dtucker
2003-05-16 18:21:01 +10:00
c46b6bc4f7
- (djm) A few type mismatch fixes from Bug #565
2003-05-16 15:51:44 +10:00
6ac2c48a19
- (djm) Add warning for UsePAM when built without PAM support
2003-05-16 11:42:35 +10:00
b78d5eb6c5
- djm@cvs.openbsd.org 2003/05/15 14:55:25
...
[readconf.c readconf.h ssh_config ssh_config.5 sshconnect.c]
add a ConnectTimeout option to ssh, based on patch from
Jean-Charles Longuet (jclonguet at free.fr); portable #207 ok markus@
2003-05-16 11:39:04 +10:00
99b4b88aba
- markus@cvs.openbsd.org 2003/05/15 14:09:21
...
[auth2-krb5.c]
fix 64bit issue; report itojun@
2003-05-16 11:38:46 +10:00
f9b3feb847
- jakob@cvs.openbsd.org 2003/05/15 14:02:47
...
[readconf.c servconf.c]
warn for unsupported config option. ok markus@
2003-05-16 11:38:32 +10:00
6e80c36e2a
- (djm) OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2003/05/15 13:52:10
[ssh.c]
Make "ssh -V" print the OpenSSL version in a human readable form. Patch
from Craig Leres (mindrot at ee.lbl.gov); ok markus@
2003-05-16 11:38:00 +10:00
5d0ccf3b24
- (dtucker) HP-UX needs to include <sys/strtio.h> for TIOCSBRK
2003-05-15 21:42:59 +10:00
eff041d19e
- (djm) Bug #444 : Wrong paths after reconfigure
2003-05-15 21:33:46 +10:00
04cb536054
- (djm) Bug #529 : sshd doesn't work correctly after SIGHUP (copy argv
...
correctly)
2003-05-15 21:29:10 +10:00
b10f1cd878
- (djm) Only build getrrsetbyname replacement when using --with-dns
2003-05-15 20:55:27 +10:00
46a7b40d1e
- markus@cvs.openbsd.org 2003/05/15 04:08:41
...
[ssh.1]
~B is ssh2 only
2003-05-15 14:17:28 +10:00
156cbe8c67
- (djm) Enable UsePAM when built --with-pam
2003-05-15 14:16:41 +10:00
d248b5bd1b
- jakob@cvs.openbsd.org 2003/05/15 04:08:44
...
[readconf.c servconf.c]
disable kerberos when not supported. ok markus@
2003-05-15 14:15:23 +10:00
ffda4cb218
- (djm) Avoid uuencode.c warnings
2003-05-15 13:57:51 +10:00
34bb56743a
- mouring@cvs.openbsd.org 2003/05/15 03:43:59
...
[sftp-int.c sftp.c]
Teach ls how to display multiple column display and allow users
to return to single column format via 'ls -1'. OK @djm
2003-05-15 13:49:58 +10:00
19c8f2b310
- mouring@cvs.openbsd.org 2003/05/15 03:43:59
...
[sftp-int.c]
Teach ls how to display multiple column display and allow users
to return to single column format via 'ls -1'. OK @djm
2003-05-15 13:49:21 +10:00
4962ed6ab4
- mouring@cvs.openbsd.org 2003/05/15 03:39:07
...
[sftp-int.c]
Make put/get (globed and nonglobed) code more consistant. OK djm@
2003-05-15 13:48:59 +10:00
ed12a26f0d
- djm@cvs.openbsd.org 2003/05/15 03:10:52
...
[ssh-keygen.c]
avoid warning; ok jakob@
2003-05-15 13:37:43 +10:00
3a3261ff99
- markus@cvs.openbsd.org 2003/05/15 03:08:29
...
[cipher.c cipher-bf1.c cipher-aes.c cipher-3des1.c]
split out custom EVP ciphers
2003-05-15 13:37:19 +10:00
b0622653ba
- jakob@cvs.openbsd.org 2003/05/15 02:27:15
...
[dns.c]
add missing freerrset
2003-05-15 13:27:28 +10:00
5975cf12c3
- (djm) Adapt README.dns for portable
2003-05-15 13:23:36 +10:00
a47f526dd7
- (djm) Tidy Makefile clean targets
2003-05-15 13:23:07 +10:00
d9ec370ac3
- (djm) Import getrrsetbyname() function from OpenBSD libc (for DNS support)
2003-05-15 12:27:08 +10:00
2aa0ab463f
- jakob@cvs.openbsd.org 2003/05/15 01:48:10
...
[readconf.c readconf.h servconf.c servconf.h]
always parse kerberos options. ok djm@ markus@
- (djm) Always parse UsePAM
2003-05-15 12:05:28 +10:00
f842fcb296
- markus@cvs.openbsd.org 2003/05/15 00:28:28
...
[sshconnect2.c]
cleanup unregister of per-method packet handlers; ok djm@
2003-05-15 12:01:28 +10:00
7abe09bf86
- (djm) Configure glue for DNS support (code doesn't work in portable yet)
2003-05-15 10:53:49 +10:00
54c459866e
- markus@cvs.openbsd.org 2003/05/14 22:24:42
...
[clientloop.c session.c ssh.1]
allow to send a BREAK to the remote system; ok various
2003-05-15 10:20:13 +10:00
37876e913a
- jakob@cvs.openbsd.org 2003/05/14 18:16:20
...
[key.c key.h readconf.c readconf.h ssh_config.5 sshconnect.c]
[dns.c dns.h README.dns ssh-keygen.1 ssh-keygen.c]
add experimental support for verifying hos keys using DNS as described
in draft-ietf-secsh-dns-xx.txt. more information in README.dns.
ok markus@ and henning@
2003-05-15 10:19:46 +10:00
abbae980e7
- (djm) OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2003/05/14 13:11:56
[ssh-agent.1]
setup -> set up;
from wiz@netbsd
2003-05-15 10:16:21 +10:00
1ea7166019
- (djm) Bug #258 : sscanf("[0-9]") -> sscanf("[0123456789]") for portability
2003-05-14 22:33:58 +10:00
abef5628e8
- (dtucker) Set ai_socktype and ai_protocol in fake-getaddrinfo.c. ok djm@
2003-05-14 21:48:51 +10:00
be64d43d01
- markus@cvs.openbsd.org 2003/05/14 08:57:49
...
[monitor.c]
http://bugzilla.mindrot.org/show_bug.cgi?id=560
Privsep child continues to run after monitor killed.
Pass monitor signals through to child; Darren Tucker
2003-05-14 19:31:12 +10:00
d6ead282db
- jmc@cvs.openbsd.org 2003/05/14 08:25:39
...
[sftp.1]
- better formatting in SYNOPSIS
- whitespace at EOL
ok djm@
2003-05-14 19:30:38 +10:00
4d99519535
- (djm) Avoid KrbV leak for MIT Kerberos
2003-05-14 19:23:56 +10:00
9d507dac1f
- (djm) Die screaming if start_pam() is called when UsePAM=no
2003-05-14 15:31:12 +10:00
4e448a31ae
- (djm) Add new UsePAM configuration directive to allow runtime control
...
over usage of PAM. This allows non-root use of sshd when built with
--with-pam
2003-05-14 15:11:48 +10:00
9c617693c2
- (djm) Make portable build with MIT krb5 (some issues remain)
2003-05-14 14:31:11 +10:00
3ab496b3dd
- markus@cvs.openbsd.org 2003/05/14 02:15:47
...
[auth2.c monitor.c sshconnect2.c auth2-krb5.c]
implement kerberos over ssh2 ("kerberos-2@ssh.com"); tested with jakob@
server interops with commercial client; ok jakob@ djm@
2003-05-14 13:47:37 +10:00
fb7508edc8
- djm@cvs.openbsd.org 2003/05/14 01:00:44
...
[sftp.1]
emphasise the batchmode functionality and make reference to pubkey auth,
both of which are FAQs; ok markus@
2003-05-14 13:47:07 +10:00
935063553a
- markus@cvs.openbsd.org 2003/05/12 18:35:18
...
[ssh-keyscan.1]
typo: DSA keys are of type ssh-dss; Brian Poole
2003-05-14 13:46:33 +10:00
280ecfb6e4
- markus@cvs.openbsd.org 2003/05/12 16:55:37
...
[sshconnect2.c]
for pubkey authentication try the user keys in the following order:
1. agent keys that are found in the config file
2. other agent keys
3. keys that are only listed in the config file
this helps when an agent has many keys, where the server might
close the connection before the correct key is used. report & ok pb@
2003-05-14 13:46:00 +10:00
b1ca8bb159
- markus@cvs.openbsd.org 2003/05/11 20:30:25
...
[channels.c clientloop.c serverloop.c session.c ssh.c]
make channel_new() strdup the 'remote_name' (not the caller); ok theo
2003-05-14 13:45:42 +10:00
db2747259c
- markus@cvs.openbsd.org 2003/05/11 16:56:48
...
[authfile.c ssh-keygen.c]
change key_load_public to try to read a public from:
rsa1 private or rsa1 public and ssh2 keys.
this makes ssh-keygen -e fail for ssh1 keys more gracefully
for example; report from itojun (netbsd pr 20550).
2003-05-14 13:45:22 +10:00
3155432cd9
- david@cvs.openbsd.org 2003/04/30 20:41:07
...
[sshd.8]
fix invalid .Pf macro usage introduced in previous commit
ok jmc@ mouring@
2003-05-14 13:44:58 +10:00
049245d260
- mouring@cvs.openbsd.org 2003/04/30 01:16:20
...
[sshd.8 sshd_config.5]
Escape ?, * and ! in .Ql for nroff compatibility. OpenSSH Portable
Bug #550 and * escaping suggested by jmc@.
2003-05-14 13:44:42 +10:00
Darren Tucker
Damien Miller
Tim Rice
Ben Lindstrom