Commit Graph

1353 Commits

Author SHA1 Message Date
Ben Lindstrom aafff9cc76 - stevesk@cvs.openbsd.org 2001/05/05 13:42:52
[sftp.1 ssh-add.1 ssh-keygen.1]
     typos, grammar
2001-05-06 03:01:02 +00:00
Ben Lindstrom 93d1fe8112 - (bal) Add 'seed_rng()' to ssh-add.c 2001-05-06 02:57:20 +00:00
Ben Lindstrom 5428bea574 - (bal) White Space and #ifdef sync with OpenBSD 2001-05-06 02:53:25 +00:00
Damien Miller 5bf5f2c8f8 - (djm) Update config.guess and config.sub with latest versions (from
ftp://ftp.gnu.org/gnu/config/) to allow configure on ia64-hpux.
   Suggested by Jason Mader <jason@ncac.gwu.edu>
2001-05-06 10:54:15 +10:00
Ben Lindstrom 99c73b377a - markus@cvs.openbsd.org 2001/05/04 23:47:34
[channels.c channels.h clientloop.c nchan.c nchan.h serverloop.c ssh.c]
     move to Channel **channels (instead of Channel *channels), fixes realloc
     problems.  channel_new now returns a Channel *, favour Channel * over
     channel id.  remove old channel_allocate interface.
2001-05-05 04:09:47 +00:00
Ben Lindstrom c8cb8c0405 - markus@cvs.openbsd.org 2001/05/04 14:34:34
[channels.c]
     channel_new() reallocs channels[], we cannot use Channel *c after calling
     channel_new(), XXX fix this in the future...
2001-05-04 22:40:28 +00:00
Ben Lindstrom f0609f8bd3 - stevesk@cvs.openbsd.org 2001/05/04 14:21:56
[ssh.1 sshd.8]
     typos
2001-05-04 22:38:43 +00:00
Ben Lindstrom 4529b70b4c - mouring@cvs.openbsd.org 2001/05/03 23:09:53
[misc.c misc.h scp.c sftp.c]
     Move colon() and cleanhost() to misc.c where I should I have put it in
     the first place
2001-05-03 23:39:53 +00:00
Ben Lindstrom 3524d69737 - (bal) Avoid socket file security issues in ssh-agent for Cygwin.
Patch by Egor Duda <deo@logos-m.ru>
2001-05-03 22:59:24 +00:00
Ben Lindstrom 834417afa5 - (bal) Updated Cygwin README by Corinna Vinschen <vinschen@redhat.com> 2001-05-03 22:45:21 +00:00
Ben Lindstrom a6218b81ca - stevesk@cvs.openbsd.org 2001/05/03 21:43:01
[servconf.c]
     remove "\n" from fatal()
2001-05-03 22:39:11 +00:00
Ben Lindstrom 60402fd42a - markus@cvs.openbsd.org 2001/05/03 15:45:15
[session.c]
     exec shell -c /bin/sh .ssh/sshrc, from abartlet@pcug.org.au
2001-05-03 22:37:26 +00:00
Ben Lindstrom 2b45180b2e - stevesk@cvs.openbsd.org 2001/05/03 15:07:39
[channels.c]
     typo in debug() string
2001-05-03 22:35:32 +00:00
Ben Lindstrom 8a1371347b - markus@cvs.openbsd.org 2001/05/02 16:41:20
[ssh-add.c]
     fix prompt for ssh-add.
2001-05-02 22:40:12 +00:00
Ben Lindstrom 6d849315ff - mouring@cvs.openbsd.org 2001/05/02 01:25:39
[readpass.c]
     Put the 'const' back into ssh_askpass() function.  Pointed out
     by Mark Miller <markm@swoon.net>.  OK Markus
2001-05-02 01:30:32 +00:00
Ben Lindstrom aebd0b66fd - markus@cvs.openbsd.org 2001/04/30 16:02:49
[compat.c]
     ssh-2.0.10 has the weak-key-bug, too.
2001-04-30 23:09:45 +00:00
Ben Lindstrom 8c96392255 - markus@cvs.openbsd.org 2001/04/30 15:50:46
[compat.c compat.h kex.c]
     allow interop with weaker key generation used by ssh-2.0.x, x < 10
2001-04-30 23:06:57 +00:00
Tim Rice 67bf50e23a - (tim) [contrib/caldera/openssh.spec] add Requires line for Caldera 3.1 2001-04-30 11:00:11 -07:00
Ben Lindstrom e0f8804194 - markus@cvs.openbsd.org 2001/04/30 11:18:52
[readconf.c readconf.h ssh.1 ssh.c sshconnect.c]
     implement 'ssh -b bind_address' like 'telnet -b'
2001-04-30 13:06:24 +00:00
Damien Miller 8a188a8027 - (djm) Add .cvsignore files, suggested by Wayne Davison <wayne@blorf.net> 2001-04-30 13:55:37 +10:00
Tim Rice 4534492aec - (tim) New version of mdoc2man.pl from Mark D. Roth <roth+openssh@feep.net> 2001-04-29 18:01:51 -07:00
Ben Lindstrom f343674d5e - markus@cvs.openbsd.org 2001/04/29 19:16:52
[channels.c clientloop.c compat.c compat.h serverloop.c]
     more ssh.com-2.0.x bug-compat; from per@appgate.com
2001-04-29 19:52:00 +00:00
Ben Lindstrom 2f0304c768 - markus@cvs.openbsd.org 2001/04/29 18:32:52
[serverloop.c]
     fix whitespace
2001-04-29 19:49:14 +00:00
Damien Miller d240122ee8 Release 2001-04-29 20:45:50 +10:00
Ben Lindstrom a4c02d8004 - (bal) Updated INSTALL. PCRE moved to a new place. 2001-04-28 16:32:10 +00:00
Tim Rice a8c7a62ad4 - (tim) update contrib/caldera files with what Caldera is using.
<sps@caldera.de>
2001-04-26 22:50:48 -07:00
Ben Lindstrom bb34625b6c - (bal) version.h synced, RPM specs updated for 2.9 2001-04-27 02:15:00 +00:00
Ben Lindstrom 0f85348e89 - (bal) Cygwin lacks setgroups() API. Patch by Corinna Vinschen
<vinschen@redhat.com>
2001-04-27 02:10:15 +00:00
Ben Lindstrom 26f33893a6 - (bal) Add /etc/sysconfig/sshd support to redhat's sshd.init. Patch by
Pekka Savola <pekkas@netcore.fi>
2001-04-27 00:46:17 +00:00
Ben Lindstrom e39867df6d - (bal) arpa/nameser.h does not exist on Cygwin. Patch by Corinna
Vinschen <vinschen@redhat.com>
2001-04-27 00:34:44 +00:00
Ben Lindstrom 3886218d5f - (bal) Build manpages and config files once unless changed. Patch by
Carson Gaspar <carson@taltos.org>
2001-04-27 00:31:07 +00:00
Ben Lindstrom 4468b260cf - (bal) Fixed uidswap.c so it should work on non-posix complient systems.
patch based on 2.5.2 version by djm.
2001-04-26 23:03:37 +00:00
Tim Rice 07183b8e17 - tim@mindrot.org 2001/04/25 21:38:01 [configure.in]
man page detection fixes for SCO
2001-04-25 21:40:28 -07:00
Damien Miller da2ed56f61 - (djm) Include crypt.h if available in auth-passwd.c 2001-04-25 22:50:18 +10:00
Damien Miller f815442116 - (djm) Add new server configuration directive 'PAMAuthenticationViaKbdInt'
(default: off), implies KbdInteractiveAuthentication. Suggestion from
   markus@
2001-04-25 22:44:14 +10:00
Ben Lindstrom 768f975b13 - (bal) Whitespace resync w/ OpenBSD for uidswap.c 2001-04-25 06:27:11 +00:00
Ben Lindstrom 3035860f24 - markus@cvs.openbsd.org 2001/04/23 22:14:13
[ssh-keygen.c]
     remove debug
2001-04-24 16:59:28 +00:00
Ben Lindstrom 46c264f2ae - markus@cvs.openbsd.org 2001/04/23 21:57:07
[ssh-keygen.1 ssh-keygen.c]
     allow public key for -e, too
2001-04-24 16:56:58 +00:00
Ben Lindstrom 4adb091c29 - (bal) Fixed contrib/postinstall.in. Patch by wsanders@wsanders.net 2001-04-24 00:03:58 +00:00
Ben Lindstrom 3432834ca4 - (bal) sys/queue.h is bogus for NCR platform. Patch by Daniel Carroll
<dan@mesastate.edu>
2001-04-23 22:39:42 +00:00
Kevin Steves 706e7a9cf9 - (stevesk) auth-pam.c: use PERMIT_NO_PASSWD 2001-04-23 18:38:37 +00:00
Kevin Steves 265fb440e7 start_pam() not pam_start() 2001-04-23 17:55:26 +00:00
Kevin Steves 5f3b9b9091 - (stevesk) pam_start() doesn't use DNS now for sshd -u0. 2001-04-23 17:28:28 +00:00
Ben Lindstrom c65e6a0fec - markus@cvs.openbsd.org 2001/04/22 23:58:36
[ssh-keygen.1 ssh.1 sshd.8]
     document hostbased and other cleanup
2001-04-23 13:02:16 +00:00
Ben Lindstrom 2857d9cf77 - markus@cvs.openbsd.org 2001/04/22 13:41:02
[ssh-keygen.1 ssh-keygen.c]
     style, noted by stevesk; sort flags in usage
2001-04-22 17:19:46 +00:00
Ben Lindstrom 160ec62dce - markus@cvs.openbsd.org 2001/04/22 13:32:27
[sftp-server.8 sftp.1 ssh.1 sshd.8]
     xref draft-ietf-secsh-*
2001-04-22 17:17:46 +00:00
Ben Lindstrom 5a70782576 - markus@cvs.openbsd.org 2001/04/22 13:25:37
[ssh-keygen.1 ssh-keygen.c]
     rename arguments -x -> -e (export key), -X -> -i (import key)
     xref draft-ietf-secsh-publickeyfile-01.txt
2001-04-22 17:15:46 +00:00
Ben Lindstrom 4eda71d3de - markus@cvs.openbsd.org 2001/04/22 12:34:05
[scp.c]
     scp > 2GB; niles@scyld.com; ok deraadt@, djm@
2001-04-22 17:13:20 +00:00
Ben Lindstrom f8d245756b - djm@cvs.openbsd.org 2001/04/22 08:13:30
[ssh.1]
     typos spotted by stevesk@; ok deraadt@
2001-04-22 17:11:56 +00:00
Ben Lindstrom 8376ac354a - mouring@cvs.openbsd.org 2001/04/21 00:55:57
[sftp.1]
     Spelling
2001-04-22 17:10:11 +00:00
Ben Lindstrom ee2786a2a1 - markus@cvs.openbsd.org 2001/04/20 16:32:22
[uidswap.c]
     set non-privileged gid before uid; tholo@ and deraadt@
2001-04-22 17:08:00 +00:00
Tim Rice b8fbb8eca0 fix perl test, fix nroff test, fix Makefile to build outside source tree 2001-04-21 14:31:52 -07:00
Kevin Steves 32c97c3712 - (stevesk) document PAM service name change in INSTALL 2001-04-20 20:56:21 +00:00
Kevin Steves 85ecbe767e - (stevesk) set the default PAM service name to __progname instead
of the hard-coded value "sshd"; from Mark D. Roth <roth@feep.net>
2001-04-20 17:43:47 +00:00
Damien Miller c3d0071552 - Update RPM spec files for CVS version.h 2001-04-20 23:19:37 +10:00
Ben Lindstrom 9ffdcb5478 - djm@cvs.openbsd.org 2001/04/20 07:17:51
[clientloop.c ssh.1]
     Split out and improve escape character documentation, mention ~R in
     ~? help text; ok markus@
2001-04-20 12:50:51 +00:00
Ben Lindstrom 82f077d0dc - (bal) Put scp-common.h back into scp.c (it exists in the upstream
tree) pointed out by Tom Holroyd <tomh@po.crl.go.jp>
2001-04-20 04:59:22 +00:00
Ben Lindstrom 3f36496e33 - markus@cvs.openbsd.org 2001/04/19 00:05:11
[auth2.c]
     use local variable, no function call needed.
     (btw, hostbased works now with ssh.com >= 2.0.13)
2001-04-19 20:50:07 +00:00
Ben Lindstrom 648772faf5 - markus@cvs.openbsd.org 2001/04/18 23:44:51
[authfile.c]
     error->debug; noted by fries@
2001-04-19 20:47:10 +00:00
Ben Lindstrom 671388f233 - markus@cvs.openbsd.org 2001/04/18 23:43:26
[auth2.c compat.c sshconnect2.c]
     more ssh v2 hostbased-auth interop: ssh.com >= 2.1.0 works now
     (however the 2.1.0 server seems to work only if debug is enabled...)
2001-04-19 20:40:45 +00:00
Ben Lindstrom 4aa603c150 - markus@cvs.openbsd.org 2001/04/18 22:48:26
[auth2.c]
     no longer const
2001-04-19 20:38:06 +00:00
Ben Lindstrom 2bffd6fd1b - markus@cvs.openbsd.org 2001/04/18 22:03:45
[auth2.c sshconnect2.c]
     use FDQN with trailing dot in the hostbased auth packets, ok deraadt@
2001-04-19 20:35:40 +00:00
Ben Lindstrom 5eb97b6f3d - markus@cvs.openbsd.org 2001/04/18 21:57:42
[readpass.c ssh-add.c]
     call askpass from ssh, too, based on work by roth@feep.net, ok deraadt
2001-04-19 20:33:07 +00:00
Ben Lindstrom f73e05eca8 - ian@cvs.openbsd.org 2001/04/18 16:21:05
[ssh-keyscan.1]
     Fix typo reported in PR/1779
2001-04-19 20:31:02 +00:00
Ben Lindstrom bc70992058 - (bal) Makfile day... Cleaned up multiple mantype support (Patch by
Mark D. Roth <roth+openssh@feep.net>), and fixed PIDDIR support.
2001-04-18 18:04:21 +00:00
Ben Lindstrom e2e66a27a7 - (bal) renabled 'catman-do:' and fixed it. So now catman pages should
be working again.
2001-04-18 15:46:01 +00:00
Ben Lindstrom 121c7852fe - markus@cvs.openbsd.org 2001/04/18 14:15:00
[canohost.c]
     debug->debug3
2001-04-18 15:32:44 +00:00
Ben Lindstrom 005dd22c97 - markus@cvs.openbsd.org 2001/04/17 19:34:25
[session.c]
     move auth_approval to do_authenticated().
     do_child(): nuke hostkeys from memory
     don't source .ssh/rc for subsystems.
2001-04-18 15:29:33 +00:00
Ben Lindstrom 2b261b9035 - markus@cvs.openbsd.org 2001/04/17 12:55:04
[channels.c ssh.c]
     undo socks5 and https support since they are not really used and
     only bloat ssh.  remove -D from usage(), since '-D' is experimental.
2001-04-17 18:14:34 +00:00
Ben Lindstrom 982dbbcfda - markus@cvs.openbsd.org 2001/04/17 10:53:26
[key.c key.h readconf.c readconf.h ssh.1 sshconnect2.c]
     add HostKeyAlgorithms; based on patch from res@shore.net; ok provos@
2001-04-17 18:11:36 +00:00
Ben Lindstrom 4c8cff14dd - markus@cvs.openbsd.org 2001/04/17 09:52:48
[clientloop.c]
     handle EINTR/EAGAIN on read; ok deraadt@
2001-04-17 18:09:42 +00:00
Ben Lindstrom 9cb59afb90 - markus@cvs.openbsd.org 2001/04/17 08:14:01
[sshconnect1.c]
     check for key!=NULL, thanks to costa
2001-04-17 18:08:15 +00:00
Ben Lindstrom 459d1913bf - deraadt@cvs.openbsd.org 2001/04/16 08:26:04
[key.c]
     better safe than sorry in later mods; yongari@kt-is.co.kr
2001-04-17 18:06:14 +00:00
Ben Lindstrom 04eeadea1d Spelling. 2001-04-17 17:58:55 +00:00
Ben Lindstrom 47e0c0b100 - (bal) Add perl5 check for HP/UX, Removed GNUness from Makefile.in
and temporary commneted out catman-do: since it's broken.  Patches
    for the first two by Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-04-17 17:57:09 +00:00
Damien Miller 364a9bd9ce - Fix OSF SIA support displaying too much information for quiet
logins and logins where access was denied by SIA. Patch from Chris Adams
   <cmadams@hiwaay.net>
2001-04-16 18:37:05 +10:00
Damien Miller cf205e8f35 - djm@cvs.openbsd.org 2001/04/16 08:19:31
[session.c]
     Split motd and hushlogin checks into seperate functions, helps for
     portable. From Chris Adams <cmadams@hiwaay.net>; ok markus@
2001-04-16 18:29:15 +10:00
Damien Miller 0b1e0a1218 - deraadt@cvs.openbsd.org 2001/04/16 08:05:34
[xmalloc.c]
     xrealloc dealing with ptr == nULL; mouring
2001-04-16 18:27:07 +10:00
Damien Miller 21134b5b09 - (djm) OpenBSD CVS Sync
- mouring@cvs.openbsd.org 2001/04/16 02:31:44
     [scp.c sftp.c]
     IPv6 support for sftp (which I bungled in my last patch) which is
     borrowed from scp.c.  Thanks to Markus@ for pointing it out.
2001-04-16 18:26:41 +10:00
Ben Lindstrom b5cdc66438 - stevesk@cvs.openbsd.org 2001/04/15 21:28:35
[readconf.c servconf.c]
     use fatal() or error() vs. fprintf(); ok markus@
2001-04-16 02:13:26 +00:00
Ben Lindstrom bdc2beb678 - (bal) CVS ID fix up and slight manpage fix from OpenBSD tree. 2001-04-16 02:11:52 +00:00
Ben Lindstrom a8f3972ce6 - stevesk@cvs.openbsd.org 2001/04/15 19:41:21
[sshd.8]
     some ClientAlive cleanup; ok markus@
2001-04-16 02:03:49 +00:00
Ben Lindstrom 302ea6f2f9 - markus@cvs.openbsd.org 2001/04/15 17:16:00
[clientloop.c]
     set stdin/out/err to nonblocking in SSH proto 1, too. suggested by ho@
     should fix some of the blocking problems for rsync over SSH-1
2001-04-16 02:01:25 +00:00
Ben Lindstrom 15f33866a6 - markus@cvs.openbsd.org 2001/04/15 16:58:03
[authfile.c ssh-keygen.c sshd.c]
     don't use errno for key_{load,save}_private; discussion w/ solar@openwall
2001-04-16 02:00:02 +00:00
Damien Miller 897741eeaa - (djm) Convert mandoc manpages to man automatically. Patch from Mark D.
Roth <roth+openssh@feep.net>
2001-04-16 10:41:46 +10:00
Ben Lindstrom 206941fdd8 - markus@cvs.openbsd.org 2001/04/15 08:43:47
[dh.c sftp-glob.c sftp-glob.h sftp-int.c sshconnect2.c sshd.c]
     some unused variable and typos; from tomh@po.crl.go.jp
2001-04-15 14:27:16 +00:00
Ben Lindstrom ac2f003903 - OpenBSD CVS Sync
- stevesk@cvs.openbsd.org 2001/04/15 01:35:22
     [ttymodes.c]
     fix comments
2001-04-15 14:25:12 +00:00
Ben Lindstrom e626cf8b4a - Missed sshtty.[ch] in Sync. 2001-04-14 23:21:50 +00:00
Ben Lindstrom f719a20110 - stevesk@cvs.openbsd.org 2001/04/14 17:04:42
[scp.c]
     'T' handling rcp/scp sync; ok markus@
2001-04-14 23:14:22 +00:00
Ben Lindstrom ae8e2d30db - stevesk@cvs.openbsd.org 2001/04/14 16:33:20
[clientloop.c packet.h session.c ssh.c ttymodes.c ttymodes.h]
     protocol 2 tty modes support; ok markus@
2001-04-14 23:13:02 +00:00
Ben Lindstrom 7457f2af01 - markus@cvs.openbsd.org 2001/04/14 16:27:57
[ssh-add.c]
     use clear_pass instead of xfree()
2001-04-14 23:10:09 +00:00
Ben Lindstrom d334b2768b - markus@cvs.openbsd.org 2001/04/14 16:17:14
[channels.c]
     remove some channels that are not appropriate for keepalive.
2001-04-14 23:08:36 +00:00
Ben Lindstrom da5d9b1225 - deraadt@cvs.openbsd.org 2001/04/14 04:31:01
[ssh-add.c]
     do not double free
2001-04-14 23:07:16 +00:00
Ben Lindstrom 5744dc421d - beck@cvs.openbsd.org 2001/04/13 22:46:54
[channels.c channels.h servconf.c servconf.h serverloop.c sshd.8]
     Add options ClientAliveInterval and ClientAliveCountMax to sshd.
     This gives the ability to do a "keepalive" via the encrypted channel
     which can't be spoofed (unlike TCP keepalives). Useful for when you want
     to use ssh connections to authenticate people for something, and know
     relatively quickly when they are no longer authenticated. Disabled
     by default (of course). ok markus@
2001-04-13 23:28:01 +00:00
Damien Miller 402b331945 - Cygwin sftp/sftp-server binary mode patch from Corinna Vinschen
<vinschen@redhat.com>
2001-04-14 00:28:42 +10:00
Damien Miller 6e77a538ca - Sync with OpenBSD glob.c, strlcat.c and vis.c changes 2001-04-14 00:22:33 +10:00
Ben Lindstrom 92d4a02001 - stevesk@cvs.openbsd.org 2001/04/13 01:26:17
[ssh.c]
     missing \n in error message
2001-04-13 04:44:37 +00:00
Ben Lindstrom 63667f6568 - mouring@cvs.openbsd.org 2001/04/12 23:17:54
[sftp-int.c sftp-int.h sftp.1 sftp.c]
     Add support for:
        sftp [user@]host[:file [file]]  - Fetch remote file(s)
        sftp [user@]host[:dir[/]]       - Start in remote dir/
     OK deraadt@
2001-04-13 00:00:14 +00:00
Ben Lindstrom 19066a112b - stevesk@cvs.openbsd.org 2001/04/12 20:09:38
[misc.c misc.h readconf.c servconf.c ssh.c sshd.c]
     robust port validation; ok markus@ jakob@
2001-04-12 23:39:26 +00:00
Ben Lindstrom d69dab3cde - markus@cvs.openbsd.org 2001/04/12 19:39:27
[readconf.c]
     typo
2001-04-12 23:36:05 +00:00
Ben Lindstrom 5eabda303a - markus@cvs.openbsd.org 2001/04/12 19:15:26
[auth-rhosts.c auth.h auth2.c buffer.c canohost.c canohost.h
      compat.c compat.h hostfile.c pathnames.h readconf.c readconf.h
      servconf.c servconf.h ssh.c sshconnect.c sshconnect.h sshconnect1.c
      sshconnect2.c sshd_config]
     implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2)
     similar to RhostRSAAuthentication unless you enable (the experimental)
     HostbasedUsesNameFromPacketOnly option.  please test. :)
2001-04-12 23:34:34 +00:00
Ben Lindstrom 0998872972 - (bal) Added openbsd-compat/inet_ntop.[ch] since HP/UX (and others)
lack it.
2001-04-12 21:35:52 +00:00
Ben Lindstrom 2b646528cb - markus@cvs.openbsd.org 2001/04/12 14:29:09
[ssh.c]
     show debug output during option processing, report from
     pekkas@netcore.fi
2001-04-12 16:16:57 +00:00
Ben Lindstrom 9fce9f02e8 - lebel@cvs.openbsd.org 2001/04/11 16:25:30
[sshd.8 sshd.c]
     implement the -e option into sshd:
      -e      When this option is specified, sshd will send the output to the
              standard error instead of the system log.
     markus@ OK.
2001-04-11 23:10:09 +00:00
Ben Lindstrom 6fa9d10ed5 - markus@cvs.openbsd.org 2001/04/11 13:56:13
[channels.c ssh.c]
     https-connect and socks5 support. i feel so bad.
2001-04-11 23:08:17 +00:00
Ben Lindstrom 146edb9832 - markus@cvs.openbsd.org 2001/04/11 10:59:01
[ssh.c]
     use strtol() for ports, thanks jakob@
2001-04-11 23:06:28 +00:00
Ben Lindstrom 23d9a6d38e - djm@cvs.openbsd.org 2001/04/11 07:06:22
[sftp-int.c]
     'mget' and 'mput' aliases; ok markus@
2001-04-11 23:05:17 +00:00
Ben Lindstrom c486d88bf8 - markus@cvs.openbsd.org 2001/04/10 12:15:23
[channels.c]
     debug cleanup
2001-04-11 16:08:34 +00:00
Ben Lindstrom 18a82ac029 - itojun@cvs.openbsd.org 2001/04/10 09:13:22
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
     document id_rsa{.pub,}.  markus ok
2001-04-11 15:59:35 +00:00
Ben Lindstrom b392151685 - markus@cvs.openbsd.org 2001/04/10 07:46:58
[channels.c]
     cleanup socks4 handling
2001-04-11 15:57:50 +00:00
Ben Lindstrom 1a598a4597 - stevesk@cvs.openbsd.org 2001/04/09 18:00:15
[sshd.8]
     ListenAddress mandoc from aaron@
2001-04-10 02:48:50 +00:00
Ben Lindstrom 12de61680e - markus@cvs.openbsd.org 2001/04/09 15:19:49
[ssh-add.1]
     ssh-add retries the last passphrase...
2001-04-10 02:46:54 +00:00
Ben Lindstrom ee61794620 - markus@cvs.openbsd.org 2001/04/09 15:12:23
[ssh-add.c]
     passphrase caching: ssh-add tries last passphrase, clears passphrase if
     not successful and after last try.
     based on discussions with espie@, jakob@, ... and code from jakob@ and
     wolfgang@wsrcc.com
2001-04-10 02:45:32 +00:00
Ben Lindstrom 8ffeacfb2d - stevesk@cvs.openbsd.org 2001/04/09 00:42:05
[sftp.1]
     spelling
2001-04-10 02:43:57 +00:00
Ben Lindstrom 4b3564e6f2 - stevesk@cvs.openbsd.org 2001/04/08 23:28:27
[sshd.8]
     spelling
2001-04-10 02:41:56 +00:00
Ben Lindstrom 9492484a27 - deraadt@cvs.openbsd.org 2001/04/08 20:52:55
[sftp.c]
     do not modify an actual argv[] entry
2001-04-10 02:40:17 +00:00
Kevin Steves cb17e99fae - (stevesk) use setresgid() for setegid() if needed 2001-04-09 14:50:52 +00:00
Kevin Steves 393d2f782d - (stevesk) configure.in: typo 2001-04-08 22:50:43 +00:00
Ben Lindstrom f52373f732 - markus@cvs.openbsd.org 2001/04/08 11:24:33
[uidswap.c]
     KNF
2001-04-08 18:38:04 +00:00
Ben Lindstrom 3bb4f9da73 - markus@cvs.openbsd.org 2001/04/07 08:55:18
[buffer.c channels.c channels.h readconf.c ssh.c]
     allow the ssh client act as a SOCKS4 proxy (dynamic local
     portforwarding).  work by Dan Kaminsky <dankamin@cisco.com> and me.
     thanks to Dan for this great patch: use 'ssh -D 1080 host' and make
     netscape use localhost:1080 as a socks proxy.
2001-04-08 18:30:26 +00:00
Ben Lindstrom 3fcf1a22b5 - markus@cvs.openbsd.org 2001/04/06 21:00:17
[auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth2.c channels.c session.c
      ssh.c sshconnect.c sshconnect.h uidswap.c uidswap.h]
     do gid/groups-swap in addition to uid-swap, should help if /home/group
     is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks
     to olar@openwall.com is comments.  we had many requests for this.
2001-04-08 18:26:59 +00:00
Ben Lindstrom d344763643 - markus@cvs.openbsd.org 2001/04/08 11:27:33
[clientloop.c]
     leave_raw_mode if ssh2 "session" is closed
2001-04-08 18:07:22 +00:00
Ben Lindstrom d5730a8b85 - markus@cvs.openbsd.org 2001/04/08 13:03:00
[ssh-add.c]
     init pointers with NULL, thanks to danimal@danimal.org
2001-04-08 18:04:36 +00:00
Ben Lindstrom 49e57a871a - stevesk@cvs.openbsd.org 2001/04/08 16:01:36
[sshd.8]
     document ListenAddress addr:port
2001-04-08 18:02:43 +00:00
Ben Lindstrom c510af40e3 - stevesk@cvs.openbsd.org 2001/04/06 22:25:25
[servconf.c]
     in addition to:
     ListenAddress host|ipv4_addr|ipv6_addr
     permit:
     ListenAddress [host|ipv4_addr|ipv6_addr]:port
     ListenAddress host|ipv4_addr:port
     sshd.8 updates coming.  ok markus@
2001-04-07 17:25:48 +00:00
Ben Lindstrom ab0cedc587 - stevesk@cvs.openbsd.org 2001/04/06 22:12:47
[hostfile.c]
     unused; typo in comment
2001-04-07 17:23:43 +00:00
Ben Lindstrom d47cf4d53c - deraadt@cvs.openbsd.org 2001/04/06 16:46:59
[scp.c]
     remove trailing / from source paths; fixes pr#1756
2001-04-07 01:14:38 +00:00
Ben Lindstrom e34ab4c04e - markus@cvs.openbsd.org 2001/04/05 23:39:20
[serverloop.c]
     keep the ssh session even if there is no active channel.
     this is more in line with the protocol spec and makes
        ssh -N -L 1234:server:110 host
     more useful.
     based on discussion with <mats@mindbright.se> long time ago
     and recent mail from <res@shore.net>
2001-04-07 01:12:11 +00:00
Ben Lindstrom 8248d116c4 - (bal) CVS ID Resync of version.h 2001-04-07 01:08:46 +00:00
Kevin Steves be48f2b4b1 - (stevesk) Makefile.in: log.o is in libssh.a 2001-04-06 01:58:37 +00:00
Ben Lindstrom 4c3f77dd3b - markus@cvs.openbsd.org 2001/04/05 21:05:24
[clientloop.c ssh.c]
     don't request a session for 'ssh -N', pointed out slade@shore.net
2001-04-05 23:37:36 +00:00
Ben Lindstrom d7dd23ffed - markus@cvs.openbsd.org 2001/04/05 21:02:46
[buffer.c]
     better error message
2001-04-05 23:36:01 +00:00
Ben Lindstrom 11bd89936d - markus@cvs.openbsd.org 2001/04/05 20:01:10
[clientloop.c]
     for ~R print message if server does not support rekeying. (and fix ~R).
2001-04-05 23:34:29 +00:00
Ben Lindstrom f15a386511 - stevesk@cvs.openbsd.org 2001/04/05 15:48:18
[canohost.c canohost.h session.c]
     move get_remote_name_or_ip() to canohost.[ch]; for portable.  ok markus@
2001-04-05 23:32:17 +00:00
Ben Lindstrom f327235f65 - markus@cvs.openbsd.org 2001/04/05 15:45:43
[ssh.1]
     ssh defaults to protocol v2; from quisar@quisar.ambre.net
2001-04-05 23:29:59 +00:00
Ben Lindstrom a8baf36d41 - markus@cvs.openbsd.org 2001/04/05 11:09:17
[clientloop.c compat.c compat.h]
     add SSH_BUG_NOREKEY and detect broken (=all old) openssh versions.
2001-04-05 23:28:36 +00:00
Ben Lindstrom a3700050ec - markus@cvs.openbsd.org 2001/04/05 10:42:57
[auth-chall.c authfd.c channels.c clientloop.c kex.c kexgex.c key.c
      mac.c packet.c serverloop.c sftp-client.c sftp-client.h sftp-glob.c
      sftp-glob.h sftp-int.c sftp-server.c sftp.c ssh-keygen.c sshconnect.c
      sshconnect2.c sshd.c]
     fix whitespace: unexpand + trailing spaces.
2001-04-05 23:26:32 +00:00
Ben Lindstrom a6c20148f5 - markus@cvs.openbsd.org 2001/04/05 10:39:48
[version.h]
     temporary version 2.5.4 (supports rekeying).
     this is not an official release.
2001-04-05 23:22:25 +00:00
Ben Lindstrom fb50cdfdb8 - markus@cvs.openbsd.org 2001/04/05 10:39:03
[compress.c compress.h packet.c]
     reset compress state per direction when rekeying.
2001-04-05 23:20:46 +00:00
Ben Lindstrom 4f3ae4c550 - markus@cvs.openbsd.org 2001/04/05 10:00:06
[compat.c]
     2.3.x does old  GEX, too; report jakob@
2001-04-05 23:19:21 +00:00
Kevin Steves ff8b4959d9 - (stevesk) logintest.c: fix for systems without __progname 2001-04-05 23:05:22 +00:00
Kevin Steves 86a52b3dc8 - (stevesk) don't use vhangup() if defined(HAVE_DEV_PTMX); also removes
BROKEN_VHANGUP
2001-04-05 17:15:08 +00:00
Ben Lindstrom 5ba23b39bf - markus@cvs.openbsd.org 2001/04/04 23:09:18
[dh.c kex.c packet.c]
     clear+free keys,iv for rekeying.
     + fix DH mem leaks. ok niels@
2001-04-05 02:05:21 +00:00
Ben Lindstrom 8e312f3db0 - markus@cvs.openbsd.org 2001/04/04 22:04:35
[kex.c kexgex.c serverloop.c]
     parse full kexinit packet.
     make server-side more robust, too.
2001-04-04 23:50:21 +00:00
Ben Lindstrom 0cae04005e - markus@cvs.openbsd.org 2001/04/04 20:32:56
[auth2.c]
     we don't care about missing bannerfiles; from tsoome@ut.ee, ok deraadt@
2001-04-04 23:47:52 +00:00
Ben Lindstrom be2cc43c3a - markus@cvs.openbsd.org 2001/04/04 20:25:38
[channels.c channels.h clientloop.c kex.c kex.h serverloop.c
      sshconnect2.c sshd.c]
     more robust rekeying
     don't send channel data after rekeying is started.
2001-04-04 23:46:07 +00:00
Ben Lindstrom 78c261ab4a - markus@cvs.openbsd.org 2001/04/04 15:50:55
[compat.c]
     f-secure 1.3.2 does not handle IGNORE; from milliondl@ornl.gov
2001-04-04 23:43:26 +00:00
Ben Lindstrom 8ac9106c3d - markus@cvs.openbsd.org 2001/04/04 14:34:58
[clientloop.c kex.c kex.h serverloop.c sshconnect2.c sshd.c]
     enable server side rekeying + some rekey related clientup.
     todo: we should not send any non-KEX messages after we send KEXINIT
2001-04-04 17:57:54 +00:00
Ben Lindstrom 238abf6a14 - markus@cvs.openbsd.org 2001/04/04 09:48:35
[kex.c kex.h kexdh.c kexgex.c packet.c sshconnect2.c sshd.c]
     don't sent multiple kexinit-requests.
     send newkeys, block while waiting for newkeys.
     fix comments.
2001-04-04 17:52:53 +00:00
Ben Lindstrom 22b19b43e4 - (bal) Oops.. Missed including kexdh.c and kexgex.c in OpenBSD sync. 2001-04-04 17:39:19 +00:00
Ben Lindstrom f28f634a3a - markus@cvs.openbsd.org 2001/04/04 00:06:54
[clientloop.c sshconnect2.c]
     enable client rekeying
        (1) force rekeying with ~R, or
        (2) if the server requests rekeying.
     works against ssh-2.0.12/2.0.13/2.1.0/2.2.0/2.3.0/2.3.1/2.4.0
2001-04-04 02:03:04 +00:00
Ben Lindstrom 2d90e00309 - markus@cvs.openbsd.org 2001/04/03 23:32:12
[kex.c kex.h packet.c sshconnect2.c sshd.c]
     undo parts of recent my changes: main part of keyexchange does not
     need dispatch-callbacks, since application data is delayed until
     the keyexchange completes (if i understand the drafts correctly).
     add some infrastructure for re-keying.
2001-04-04 02:00:54 +00:00
Ben Lindstrom 9323d96479 - todd@cvs.openbsd.org 2001/04/03 21:19:38
[ssh_config]
     id_rsa1/2 -> id_rsa; ok markus@
2001-04-04 01:58:48 +00:00
Ben Lindstrom 20d7c7b02c - markus@cvs.openbsd.org 2001/04/03 19:53:29
[dh.c dh.h kex.c kex.h sshconnect2.c sshd.c]
     move kex to kex*.c, used dispatch_set() callbacks for kex. should
     make rekeying easier.
2001-04-04 01:56:17 +00:00
Ben Lindstrom 86ebcb6cf5 - stevesk@cvs.openbsd.org 2001/04/03 13:56:11
[sftp-glob.c ssh-agent.c ssh-keygen.c]
     free() -> xfree()
2001-04-04 01:53:20 +00:00
Ben Lindstrom 0d3e8fafa4 - deraadt@cvs.openbsd.org 2001/04/02 17:32:23
[ssh-agent.1]
     grammar; slade@shore.net
2001-04-04 01:51:25 +00:00
Kevin Steves efe5fd811b - (stevesk) nchan.c: remove ostate checks and add EINVAL to
shutdown(SHUT_RD) error() bypass for HP-UX.
2001-04-03 13:02:48 +00:00
Ben Lindstrom 3704c2612a - stevesk@cvs.openbsd.org 2001/04/02 14:20:23
[readconf.c servconf.c]
     correct comment; ok markus@
2001-04-02 18:20:03 +00:00
Ben Lindstrom 55b99e35c7 - stevesk@cvs.openbsd.org 2001/04/02 14:15:31
[sshd.8]
     typo; ok markus@
2001-04-02 18:18:21 +00:00
Kevin Steves 6189e1905c - (stevesk) sshpty.h openbsd sync; PTY_H -> SSHPTY_H 2001-04-02 14:02:55 +00:00
Kevin Steves edcd5762e2 - (stevesk) log.c openbsd sync; missing newlines 2001-04-02 13:45:00 +00:00
Damien Miller ff75ac4d68 - OpenBSD CVS Sync
- djm@cvs.openbsd.org 2001/03/29 23:42:01
     [sshd.c]
     Protocol 1 key regeneration log => verbose, some KNF; ok markus@
2001-03-30 10:50:32 +10:00
Damien Miller 9709f90684 - OpenBSD CVS Sync
- markus@cvs.openbsd.org 2001/03/29 21:17:40
     [dh.c dh.h kex.c kex.h]
     prepare for rekeying: move DH code to dh.c
2001-03-30 10:50:10 +10:00
Damien Miller a0ff466d80 - OpenBSD CVS Sync
- stevesk@cvs.openbsd.org 2001/03/29 21:06:21
     [sshconnect2.c sshd.c]
     need to set both STOC and CTOS for SSH_BUG_BIGENDIANAES; ok markus@
2001-03-30 10:49:35 +10:00
Damien Miller 653ae11c4a - OpenBSD CVS Sync
- provos@cvs.openbsd.org 2001/03/29 14:24:59
     [sshconnect2.c]
     use recommended defaults
2001-03-30 10:49:05 +10:00
Damien Miller 5d57e50730 - OpenBSD CVS Sync
- markus@cvs.openbsd.org 2001/03/28 22:43:31
     [auth.h auth2.c auth2-chall.c]
     check auth_root_allowed for kbd-int auth, too.
2001-03-30 10:48:31 +10:00
Damien Miller 23e526e271 - OpenBSD CVS Sync
- provos@cvs.openbsd.org 2001/03/28 22:04:57
     [dh.c]
     more sanity checking on primes file
2001-03-30 10:47:43 +10:00
Damien Miller 2557bfc5d7 - (djm) OpenBSD CVS Sync
- provos@cvs.openbsd.org 2001/03/28 21:59:41
     [kex.c kex.h sshconnect2.c sshd.c]
     forgot to include min and max params in hash, okay markus@
2001-03-30 10:47:14 +10:00
Damien Miller d8f72ca6d5 - (djm) Another openbsd-compat/glob.c sync 2001-03-30 10:23:17 +10:00
Ben Lindstrom 7de696e798 - markus@cvs.openbsd.org 2001/03/28 20:50:45
[sshd.c]
     call refuse() before close(); from olemx@ans.pl
2001-03-29 00:45:12 +00:00
Ben Lindstrom ff2618c80f - stevesk@cvs.openbsd.org 2001/03/28 20:04:38
[scp.c]
     usage more like rcp and add missing -B to usage; ok markus@
2001-03-29 00:43:54 +00:00
Ben Lindstrom bd47226987 - stevesk@cvs.openbsd.org 2001/03/28 19:56:23
[scp.c]
     start to sync scp closer to rcp; ok markus@
2001-03-29 00:39:55 +00:00
Ben Lindstrom df221391e6 - provos@cvs.openbsd.org 2001/03/27 17:46:50
[compat.c compat.h dh.c dh.h ssh2.h sshconnect2.c sshd.c version.h]
     make dh group exchange more flexible, allow min and max group size,
     okay markus@, deraadt@
2001-03-29 00:36:16 +00:00
Ben Lindstrom 60a4381f1a - markus@cvs.openbsd.org 2001/03/27 10:57:00
[compat.c compat.h ssh-rsa.c]
     some older systems use NID_md5 instead of NID_sha1 for RSASSA-PKCS1-v1_5
     signatures in SSH protocol 2, ok djm@
2001-03-29 00:32:56 +00:00
Ben Lindstrom 425fb02f20 - markus@cvs.openbsd.org 2001/03/27 10:34:08
[ssh-rsa.c sshd.c]
     use EVP_get_digestbynid, reorder some calls and fix missing free.
2001-03-29 00:31:20 +00:00
Ben Lindstrom d09fcf5f6e - markus@cvs.openbsd.org 2001/03/26 23:23:24
[rsa.c rsa.h ssh-agent.c ssh-keygen.c]
     try to read private f-secure ssh v2 rsa keys.
2001-03-29 00:29:54 +00:00
Ben Lindstrom c111660896 - markus@cvs.openbsd.org 2001/03/26 23:12:42
[authfile.c]
     KNF
2001-03-29 00:28:37 +00:00
Ben Lindstrom 89b0bd66e2 - stevesk@cvs.openbsd.org 2001/03/26 15:47:59
[ssh.1]
     document more defaults; misc. cleanup.  ok markus@
2001-03-29 00:27:11 +00:00
Damien Miller b68af624a9 - (djm) Sync openbsd-compat/glob.c 2001-03-28 21:05:26 +10:00
Damien Miller 9834474151 - (djm) Rework krbIV tests to get us closer to building on Redhat. Still
doesn't work because of conflicts between krbIV's and OpenSSL's des.h
2001-03-28 14:37:06 +10:00
Damien Miller 18bb473eb0 - (djm) Work around Solaris' broken struct dirent. Diagnosis and suggested
fix from Philippe Levan <levan@epix.net>
2001-03-28 14:35:30 +10:00
Damien Miller c79bc0d75b - (djm) Reorder tests and library inclusion for Krb4/AFS to try to
resolve linking conflicts with libcrypto. Report and suggested fix
   from Holger Trapp <Holger.Trapp@Informatik.TU-Chemnitz.DE>
2001-03-28 13:03:42 +10:00
Damien Miller f9e9300947 - (djm) Reestablish PAM credentials (which can be supplemental group
memberships) after initgroups() blows them away. Report and suggested
   fix from Nalin Dahyabhai <nalin@redhat.com>
2001-03-27 16:12:24 +10:00
Ben Lindstrom d0fca423fc - markus@cvs.openbsd.org 2001/03/26 08:07:09
[authfile.c authfile.h ssh-add.c ssh-keygen.c ssh.c sshconnect.c
      sshconnect.h sshconnect1.c sshconnect2.c sshd.c]
     simpler key load/save interface, see authfile.h
2001-03-26 13:44:06 +00:00
Ben Lindstrom 7bfff36ca3 - stevesk@cvs.openbsd.org 2001/03/25 13:16:11
[servconf.c servconf.h session.c sshd.8 sshd_config]
     PrintLastLog option; from chip@valinux.com with some minor
     changes by me.  ok markus@
2001-03-26 05:45:53 +00:00
Ben Lindstrom 6029432ec5 - djm@cvs.openbsd.org 2001/03/25 00:01:34
[session.c]
     shorten; ok markus@
2001-03-26 05:38:25 +00:00
Ben Lindstrom 9531825dd0 - Fix pointer issues in waitpid() and wait() replaces. Patch by Lutz
Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-03-26 05:35:33 +00:00
Ben Lindstrom 8ca935655e - Attempt sync with sshlogin.c w/ OpenBSD (mainly CVS ID) 2001-03-26 05:32:16 +00:00
Damien Miller b44fe0617d - (djm) Pull out our own SIGPIPE hacks 2001-03-24 15:39:38 +11:00
Ben Lindstrom de71cda078 - markus@cvs.openbsd.org 2001/03/23 14:28:32
[session.c sshd.c]
     ignore SIGPIPE, restore in child, fixes x11-fwd crashes; with djm@
2001-03-24 00:43:26 +00:00
Ben Lindstrom 7527f8b52d - markus@cvs.openbsd.org 2001/03/23 13:10:57
[sftp-int.c]
     fix put, upload to _absolute_ path, ok djm@
2001-03-24 00:39:12 +00:00
Ben Lindstrom 9e2057cb34 - markus@cvs.openbsd.org 2001/03/23 12:02:49
[auth1.c]
     authctxt is now passed to do_authenticated
2001-03-24 00:37:59 +00:00
Ben Lindstrom c8530c7f5c - djm@cvs.openbsd.org 2001/03/23 11:04:07
[compat.c compat.h sshconnect2.c sshd.c]
     Compat for OpenSSH with broken Rijndael/AES. ok markus@
2001-03-24 00:35:19 +00:00
Ben Lindstrom b94f8b2bcb - Fixed permissions ssh-keyscan. Thanks to Christopher Linn <celinn@mtu.edu>. 2001-03-24 00:20:56 +00:00
Ben Lindstrom 69d8c077d4 - deraadt@cvs.openbsd.org 2001/03/22 20:22:55
[sshd.c]
     do not place linefeeds in buffer
2001-03-22 22:45:33 +00:00
Ben Lindstrom d9267454ca - markus@cvs.openbsd.org 2001/03/21 21:06:30
[session.c]
     missing init; from mib@unimelb.edu.au
2001-03-22 02:06:57 +00:00
Ben Lindstrom f1107f5ede - jakob@cvs.openbsd.org 2001/03/21 14:20:45
[ssh-keygen.c]
     add -B flag to usage
2001-03-22 02:05:32 +00:00
Ben Lindstrom 57f82e260b - (bal) scp.c CVS ID resync 2001-03-22 02:04:08 +00:00
Ben Lindstrom b31783d547 - markus@cvs.openbsd.org 2001/03/21 11:43:45
[auth1.c auth2.c session.c session.h]
     merge common ssh v1/2 code
2001-03-22 02:02:12 +00:00
Ben Lindstrom fc9b07de19 - markus@cvs.openbsd.org 2001/03/20 19:21:21
[session.c]
     remove unused arg
2001-03-22 01:27:23 +00:00