53c5d467c3
- (djm) Fixes to lastlog code for Irix
...
- (djm) Use atomicio in loginrec
2000-06-28 00:50:50 +10:00
dd47aa21fa
- (djm) Formatting
2000-06-27 11:18:27 +10:00
f8af08d7cb
- (djm) Fixes to login code - not setting li->uid, cleanups
2000-06-27 09:40:06 +10:00
0800647391
Fix fixed egd code
2000-06-26 13:55:31 +10:00
6468125052
- (djm) Make EGD failures non-fatal if OpenSSL's entropy pool is still OK
...
based on patch from Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2000-06-26 13:01:33 +10:00
1f335fb8d8
- (djm) Account expiry support from Andreas Steinmetz <ast@domdv.de>
...
- (djm) Added password expiry checking (no password change support)
2000-06-26 11:31:33 +10:00
c0fd17fdca
- OpenBSD CVS update
...
- provos@cvs.openbsd.org 2000/06/25 14:17:58
[channels.c]
correct check for bad channel ids; from Wei Dai <weidai@eskimo.com>
2000-06-26 10:22:53 +10:00
8dd33fd1d5
- Better fix to aclocal tests from Garrick James <garrick@james.net>
2000-06-26 10:20:19 +10:00
bf7f466206
- OpenBSD CVS Updates:
...
- markus@cvs.openbsd.org 2000/06/22 10:32:27
[sshd.c]
missing atomicio; report from Steve.Marquess@DET.AMEDD.ARMY.MIL
- djm@cvs.openbsd.org 2000/06/22 17:55:00
[auth-krb4.c key.c radix.c uuencode.c]
Missing CVS idents; ok markus
2000-06-23 10:16:38 +10:00
b54b40ef06
- (djm) Use sa_family_t in prototype for rresvport_af. Patch from
...
Svante Signell <svante.signell@telia.com>
- (djm) Autoconf logic to define sa_family_t if it is missing
2000-06-23 08:23:34 +10:00
6536c7d3c9
- OpenBSD CVS Updates:
...
- markus@cvs.openbsd.org 2000/06/18 18:50:11
[auth2.c compat.c compat.h sshconnect2.c]
make userauth+pubkey interop with ssh.com-2.2.0
- markus@cvs.openbsd.org 2000/06/18 20:56:17
[dsa.c]
mem leak + be more paranoid in dsa_verify.
- markus@cvs.openbsd.org 2000/06/18 21:29:50
[key.c]
cleanup fingerprinting, less hardcoded sizes
- markus@cvs.openbsd.org 2000/06/19 19:39:45
[atomicio.c auth-options.c auth-passwd.c auth-rh-rsa.c auth-rhosts.c]
[auth-rsa.c auth-skey.c authfd.c authfd.h authfile.c bufaux.c bufaux.h]
[buffer.c buffer.h canohost.c channels.c channels.h cipher.c cipher.h]
[clientloop.c compat.c compat.h compress.c compress.h crc32.c crc32.h]
[deattack.c dispatch.c dsa.c fingerprint.c fingerprint.h getput.h hmac.c]
[kex.c log-client.c log-server.c login.c match.c mpaux.c mpaux.h nchan.c]
[nchan.h packet.c packet.h pty.c pty.h readconf.c readconf.h readpass.c]
[rsa.c rsa.h scp.c servconf.c servconf.h ssh-add.c ssh-keygen.c ssh.c]
[ssh.h tildexpand.c ttymodes.c ttymodes.h uidswap.c xmalloc.c xmalloc.h]
OpenBSD tag
- markus@cvs.openbsd.org 2000/06/21 10:46:10
sshconnect2.c missing free; nuke old comment
2000-06-22 21:32:31 +10:00
099f505f95
- (djm) Automatically generate host key during "make install". Suggested
...
by Gary E. Miller <gem@rellim.com>
- (djm) Paranoia before kill() system call
2000-06-22 20:57:11 +10:00
2f02295d31
typo
2000-06-20 13:50:01 +10:00
edb82929fa
- (djm) Replace use of '-o' and '-a' logical operators in configure tests
...
with '||' and '&&'. As suggested by Jim Knoble <jmknoble@pint-stowp.cx>
to fix SCO Unixware problem reported by Gary E. Miller <gem@rellim.com>
2000-06-20 13:25:52 +10:00
0f91b4e3a1
- (djm) Started merge of Ben Lindstrom's <mouring@pconline.com> NeXT support
2000-06-18 15:43:25 +10:00
f6d9e22189
- OpenBSD CVS updates:
...
- deraadt@cvs.openbsd.org 2000/06/17 09:58:46
[channels.c]
everyone says "nix it" (remove protocol 2 debugging message)
- markus@cvs.openbsd.org 2000/06/17 13:24:34
[sshconnect.c]
allow extended server banners
- markus@cvs.openbsd.org 2000/06/17 14:30:10
[sshconnect.c]
missing atomicio, typo
- jakob@cvs.openbsd.org 2000/06/17 16:52:34
[servconf.c servconf.h session.c sshd.8 sshd_config]
add support for ssh v2 subsystems. ok markus@.
- deraadt@cvs.openbsd.org 2000/06/17 18:57:48
[readconf.c servconf.c]
include = in WHITESPACE; markus ok
- markus@cvs.openbsd.org 2000/06/17 19:09:10
[auth2.c]
implement bug compatibility with ssh-2.0.13 pubkey, server side
- markus@cvs.openbsd.org 2000/06/17 21:00:28
[compat.c]
initial support for ssh.com's 2.2.0
- markus@cvs.openbsd.org 2000/06/17 21:16:09
[scp.c]
typo
- markus@cvs.openbsd.org 2000/06/17 22:05:02
[auth-rsa.c auth2.c serverloop.c session.c auth-options.c auth-options.h]
split auth-rsa option parsing into auth-options
add options support to authorized_keys2
- markus@cvs.openbsd.org 2000/06/17 22:42:54
[session.c]
typo
2000-06-18 14:50:44 +10:00
7b22d65034
- (djm) Add summary of configure options to end of ./configure run
...
- (djm) Not all systems define RUSAGE_SELF & RUSAGE_CHILDREN. Report from
Michael Stone <mstone@cs.loyola.edu>
- (djm) rusage is a privileged operation on some Unices (incl.
Solaris 2.5.1). Report from Paul D. Smith <pausmith@nortelnetworks.com>
- (djm) Avoid PAM failures when running without a TTY. Report from
Martin Petrak <petrak@spsknm.schools.sk>
- (djm) Include sys/types.h when including netinet/in.h in configure tests.
Patch from Jun-ichiro itojun Hagino <itojun@iijlab.net>
2000-06-18 14:07:04 +10:00
1a13225d87
- (djm) Fix short copy in loginrec.c (based on patch from Phill Camp
...
<P.S.S.Camp@ukc.ac.uk>
2000-06-13 21:23:17 +10:00
a66626b2d5
- (djm) Fixes from Andrew McGill <andrewm@datrix.co.za>:
...
- Platform define for SCO 3.x which breaks on /dev/ptmx
- Detect and try to fix missing MAXPATHLEN
2000-06-13 18:57:53 +10:00
35ad6bee4b
- (andre) AIX, lastlog, configure fixes from Tom Bertelson <tbert@abac.com>:
...
- Don't try to retrieve lastlog from wtmp/wtmpx if DISABLE_LASTLOG is
def'd
- Set AIX to use preformatted manpages
2000-06-12 22:41:27 +00:00
c29de955f4
- (djm) Configure fixes from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp>
2000-06-12 23:04:18 +10:00
e69f18cbff
- (djm) Glob manpages in RPM spec files to catch compressed files
...
- (djm) Full license in auth-pam.c
2000-06-12 16:38:54 +10:00
d900e45faa
- (djm) Fix for configure on bash2 from Jim Knoble <jmknoble@jmknoble.cx>
2000-06-10 16:51:33 +10:00
c601a7596f
- (djm) Minor doc tweaks
2000-06-10 08:33:38 +10:00
a1cb64484e
- (djm) Patch from Kenji Miyake <kenji@miyake.org> to disable utmp usage
...
(in favour of utmpx) on Solaris 8
2000-06-09 11:58:35 +10:00
14c12cb000
- (djm) Cleanup of entropy.c. Reorganised code, removed second pass through
...
list of commands (by default). Removed verbose debugging (by default).
- (djm) Increased command entropy estimates and default entropy collection
timeout
2000-06-07 22:20:23 +10:00
d5bf307f7b
- (djm) Remove duplicate headers from loginrec.c
2000-06-07 21:32:13 +10:00
9e11089afb
- (djm) Don't add /usr/local/lib to library search path on Irix
2000-06-07 21:05:46 +10:00
5314ae7855
- (djm) Warn user if grabs fail in GNOME askpass. Patch from Zack Weinberg
...
<zack@wolery.cumb.org>
2000-06-07 20:08:19 +10:00
d3a185709d
- (djm) Fix rsh path in RPMs. Report from Jason L Tibbitts III
...
<tibbs@math.uh.edu>
- (djm) OpenBSD CVS updates:
- todd@cvs.openbsd.org
[sshconnect2.c]
teach protocol v2 to count login failures properly and also enable an
explanation of why the password prompt comes up again like v1; this is NOT
crypto
- markus@cvs.openbsd.org
[readconf.c readconf.h servconf.c servconf.h session.c ssh.1 ssh.c sshd.8]
xauth_location support; pr 1234
[readconf.c sshconnect2.c]
typo, unused
[session.c]
allow use_login only for login sessions, otherwise remote commands are
execed with uid==0
[sshd.8]
document UseLogin better
[version.h]
OpenSSH 2.1.1
[auth-rsa.c]
fix match_hostname() logic for auth-rsa: deny access if we have a
negative match or no match at all
[channels.c hostfile.c match.c]
don't panic if mkdtemp fails for authfwd; jkb@yahoo-inc.com via
kris@FreeBSD.org
2000-06-07 19:55:44 +10:00
e37bfc19f7
- (djm) Added --with-cflags, --with-ldflags and --with-libs options to
...
configure.
2000-06-05 09:37:43 +10:00
a86c7eccbf
Added missed info for 20000603 login code update
...
Noted 20000604 updates
2000-06-04 17:00:15 +00:00
2994e0891b
- Configure tweaking for new login code on Irix 5.3
2000-06-04 15:51:47 +10:00
1c77392bce
- Rewrote bsd-login to use proper utmp API if available. Major cleanup
...
of fallback DIY code.
2000-05-31 13:57:18 +10:00
1ea8ac7b90
- Fix EGD read bug by IWAMURO Motonori <iwa@mmp.fujitsu.co.jp>
...
update credits
2000-05-31 11:24:34 +10:00
2f6a0ad191
- Cleanup of auth.c, login.c and fake-*
...
- Cleanup of auth-pam.c, save and print "account expired" error messages
2000-05-31 11:20:11 +10:00
03934f2eef
doc
2000-05-30 14:01:10 +10:00
b1715dc0cf
- OpenBSD CVS updates:
...
- markus@cvs.openbsd.org
[session.c]
make x11-fwd work w/ localhost (xauth add host/unix:11)
[cipher.c compat.c readconf.c servconf.c]
check strtok() != NULL; ok niels@
[key.c]
fix key_read() for uuencoded keys w/o '='
[serverloop.c]
group ssh1 vs. ssh2 in serverloop
[kex.c kex.h myproposal.h sshconnect2.c sshd.c]
split kexinit/kexdh, factor out common code
[readconf.c ssh.1 ssh.c]
forwardagent defaults to no, add ssh -A
- theo@cvs.openbsd.org
[session.c]
just some line shortening
2000-05-30 13:44:51 +10:00
c252e2efa1
- Fix buffer overrun in login.c for systems which use syslen in utmpx.
...
patch from YOSHIFUJI Hideaki <yoshfuji@cerberus.nemoto.ecei.tohoku.ac.jp>
2000-05-30 13:12:46 +10:00
be260a0f0d
- Define atexit for old Solaris
2000-05-30 12:57:46 +10:00
7b63b0f66e
- Doc cleanup
2000-05-20 15:41:26 +10:00
fda78d9bd0
- HPUX and Configure fixes from Lutz Jaenicke
...
<Lutz.Jaenicke@aet.TU-Cottbus.DE>
- Use mkinstalldirs script to make directories instead of non-portable
"install -d". Suggested by Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2000-05-20 15:33:44 +10:00
dfc83f42eb
- SunOS 4.x support from Todd C. Miller <Todd.Miller@courtesan.com>
2000-05-20 15:02:59 +10:00
ad1bc5f986
- Don't touch utmp if USE_UTMPX defined
2000-05-20 14:53:09 +10:00
d999ae26b7
- Xauth fix from Markus Friedl <markus.friedl@informatik.uni-erlangen.de>
2000-05-20 12:49:31 +10:00
ef7df54073
- Include Andre Lucas' fixprogs script. Forgot to "cvs add" it yesterday
...
- OpenBSD CVS updates:
- markus@cvs.openbsd.org
[sshconnect.c]
copy only ai_addrlen bytes; misiek@pld.org.pl
[auth.c]
accept an empty shell in authentication; bug reported by
chris@tinker.ucr.edu
[serverloop.c]
we don't have stderr for interactive terminal sessions (fcntl errors)
2000-05-19 00:03:23 +10:00
3b512e18dc
- Detect OpenSSL seperatly from RSA
...
- Better test for RSA (more compatible with RSAref). Based on work by
Ed Eden <ede370@stl.rural.usda.gov>
2000-05-17 23:29:18 +10:00
c4be7ce669
- RSAless operation patch from kevin_oconnor@standardandpoors.com
2000-05-17 23:02:03 +10:00
615f939ebb
- Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp>
...
- INSTALL typo and URL fix
- Makefile fix
- Solaris fixes
- Checking for ssize_t and memmove. Based on patch from SAKAI Kiyotaka
<ksakai@kso.netwk.ntt-at.co.jp>
2000-05-17 22:53:33 +10:00
dcb6ecd1b3
- OpenBSD CVS update:
...
- markus@cvs.openbsd.org
[ssh.c]
fix usage()
[ssh2.h]
draft-ietf-secsh-architecture-05.txt
[ssh.1]
document ssh -T -N (ssh2 only)
[channels.c serverloop.c ssh.h sshconnect.c sshd.c aux.c]
enable nonblocking IO for sshd w/ proto 1, too; split out common code
[aux.c]
missing include
2000-05-17 22:34:22 +10:00
Damien Miller
andre