dc9e067614
- stevesk@cvs.openbsd.org 2001/12/28 22:37:48
...
[ssh.1 sshd.8]
document LogLevel DEBUG[123]; ok markus@
2002-01-22 23:17:51 +11:00
630d6f4479
- markus@cvs.openbsd.org 2001/12/28 15:06:00
...
[auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c dispatch.h kex.c kex.h serverloop.c ssh.c sshconnect2.c]
remove plen from the dispatch fn. it's no longer used.
2002-01-22 23:17:30 +11:00
dff5099f13
- markus@cvs.openbsd.org 2001/12/28 14:50:54
...
[auth1.c auth-rsa.c channels.c dispatch.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
packet_read* no longer return the packet length, since it's not used.
2002-01-22 23:16:32 +11:00
76e1e368b5
- markus@cvs.openbsd.org 2001/12/28 14:13:13
...
[bufaux.c bufaux.h packet.c]
buffer_get_bignum: int -> void
2002-01-22 23:15:57 +11:00
d432ccf740
- markus@cvs.openbsd.org 2001/12/28 13:57:33
...
[auth1.c kexdh.c kexgex.c packet.c packet.h sshconnect1.c sshd.c]
packet_get_bignum* no longer returns a size
2002-01-22 23:14:44 +11:00
29f75f5c25
oops, that last commit was really:
...
- markus@cvs.openbsd.org 2001/12/28 12:14:27
[auth1.c auth2.c auth2-chall.c auth-rsa.c channels.c clientloop.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
s/packet_done/packet_check_eom/ (end-of-message); ok djm@
with 47 more patchsets to go, I am not going to back out all the files for
the sake of a commit message...
2002-01-22 23:14:10 +11:00
48b03fc546
- markus@cvs.openbsd.org 2001/12/27 20:39:58
...
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
get rid of packet_integrity_check, use packet_done() instead.
2002-01-22 23:11:40 +11:00
66823cddbe
- markus@cvs.openbsd.org 2001/12/27 20:39:58
...
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
get rid of packet_integrity_check, use packet_done() instead.
2002-01-22 23:11:38 +11:00
d221ca6cc9
- markus@cvs.openbsd.org 2001/12/27 19:54:53
...
[auth1.c auth.h auth-rh-rsa.c]
auth_rhosts_rsa now accept generic keys.
2002-01-22 23:11:00 +11:00
9ef95ddcaf
- markus@cvs.openbsd.org 2001/12/27 19:37:23
...
[dh.c kexdh.c kexgex.c]
always use BN_clear_free instead of BN_free
2002-01-22 23:10:33 +11:00
040b64f60a
- markus@cvs.openbsd.org 2001/12/27 18:26:13
...
[authfile.c]
missing include
2002-01-22 23:10:04 +11:00
7d1ded4972
- stevesk@cvs.openbsd.org 2001/12/27 18:22:53
...
[sshd.8]
clarify -p; ok markus@
2002-01-22 23:09:41 +11:00
da7551677b
- markus@cvs.openbsd.org 2001/12/27 18:22:16
...
[auth1.c authfile.c auth-rsa.c dh.c kexdh.c kexgex.c key.c rsa.c scard.c ssh-agent.c sshconnect1.c sshd.c ssh-dss.c]
call fatal() for openssl allocation failures
2002-01-22 23:09:22 +11:00
154dda73a8
- markus@cvs.openbsd.org 2001/12/27 18:10:29
...
[ssh-keygen.c]
-t is only needed for key generation (unbreaks -i, -e, etc).
2002-01-22 23:08:16 +11:00
aef7a095c8
- markus@cvs.openbsd.org 2001/12/25 18:53:00
...
[auth1.c]
be more carefull on allocation
2002-01-22 23:07:52 +11:00
503761ac45
- markus@cvs.openbsd.org 2001/12/25 18:49:56
...
[key.c]
be more careful on allocation
2002-01-22 23:07:21 +11:00
a055c25d05
- deraadt@cvs.openbsd.org 2001/12/24 07:29:43
...
[ssh-add.c]
try all listed keys.. how did this get broken?
(oops - that was me)
2002-01-22 23:07:01 +11:00
7c31809c4a
- markus@cvs.openbsd.org 2001/12/21 12:17:33
...
[serverloop.c]
remove ifdef for USE_PIPES since fdin != fdout; ok djm@
2002-01-22 23:06:22 +11:00
6e1057c2d7
- djm@cvs.openbsd.org 2001/12/21 10:06:43
...
[ssh-add.1 ssh-add.c]
Try all standard key files (id_rsa, id_dsa, identity) when invoked with
no arguments; ok markus@
2002-01-22 23:05:59 +11:00
f451e22e21
- djm@cvs.openbsd.org 2001/12/21 08:53:45
...
[readpass.c]
Avoid interruptable passphrase read; ok markus@
2002-01-22 23:05:31 +11:00
a41c8b15bd
- djm@cvs.openbsd.org 2001/12/21 08:52:22
...
[ssh-keygen.1 ssh-keygen.c]
Remove default (rsa1) key type; ok markus@
2002-01-22 23:05:08 +11:00
ec932376b7
- (djm) autoconf hacking:
...
- Add OpenSSL sanity check: verify that header version matches version
reported by library
2002-01-22 22:16:03 +11:00
c46cc5445d
- (djm) Fix some bugs I introduced into ssh-rand-helper yesterday
2002-01-22 21:58:27 +11:00
6c21c51c48
- (djm) autoconf hacking:
...
- We don't support --without-zlib currently, so don't allow it.
- Rework cryptographic random number support detection. We now detect
whether OpenSSL seeds itself. If it does, then we don't bother with
the ssh-rand-helper program. You can force the use of ssh-rand-helper
using the --with-rand-helper configure argument
- Simplify and clean up ssh-rand-helper configuration
2002-01-22 21:57:53 +11:00
7b10ef4877
- (djm) Rework ssh-rand-helper:
...
- Reduce quantity of ifdef code, in preparation for ssh_rand_conf
- Always seed from system calls, even when doing PRNGd seeding
- Tidy and comment #define knobs
- Remove unused facility for multiple runs through command list
- KNF, cleanup, update copyright
2002-01-21 23:44:12 +11:00
a234451a70
- (djm) Bug #50 - make autoconf entropy path checks more robust
2002-01-14 19:01:03 +11:00
2f8f6e3b1c
- (stevesk) defines.h: use "/var/spool/sockets/X11/%u" for HP-UX. does
...
not depend on transition links. from Lutz Jaenicke.
2002-01-08 21:59:06 +00:00
bb9ffc18ca
- (djm) Merge Cygwin copy_environment with do_pam_environment, removing
...
fixed env var size limit in the process. Report from Corinna Vinschen
<vinschen@redhat.com>
2002-01-08 10:59:32 +11:00
f49a1191c7
- (stevesk) defines.h: determine _PATH_UNIX_X; currently "/tmp/.X11-unix/X%u"
...
for all platforms except HP-UX, which is "/usr/spool/sockets/X11/%u".
2002-01-06 02:32:57 +00:00
0bd4b34c9b
- (stevesk) fix spurious ; from NCR change.
2002-01-05 23:24:27 +00:00
381d8d9d89
- (bal) NCR requies use_pipes to operate correctly.
2002-01-05 17:15:30 +00:00
f9661094e5
- (djm) Use bigcrypt() on systems with SCO_PROTECTED_PW. Patch from
...
Roger Cornelius <rac@tenzing.org>
2002-01-03 10:30:56 +11:00
b65a93d3a6
test openssh-commits list
2001-12-31 11:59:53 +11:00
bc5239bd62
testing again
2001-12-31 11:55:59 +11:00
6a568f3ca9
- (djm) Typo in contrib/cygwin/README Fix from Corinna Vinschen
...
<vinschen@redhat.com>
2001-12-29 14:10:09 +11:00
0dea79d6b6
- (djm) Apply Cygwin pointer deref fix from Corinna Vinschen
...
<vinschen@redhat.com> Could be abused to guess valid usernames
2001-12-29 14:08:28 +11:00
6cb127fc14
- (djm) Remove recommendation to use GNU make, we should support most
...
make programs.
2001-12-28 09:57:33 +11:00
9443508b96
- (stevesk) [Makefile.in ssh-rand-helper.c]
...
portable lib and __progname support for ssh-rand-helper; ok djm@
2001-12-25 04:32:58 +00:00
2ad31ee68a
- (bal) Removed contrib/chroot.diff and noted in contrib/README that it
...
was not being maintained.
2001-12-24 02:59:19 +00:00
62116dcc0a
- (djm) Ignore fix & patchlevel in OpenSSL version check. Patch from
...
solar@openwall.com
- (djm) Rework entropy code. If the OpenSSL PRNG is has not been
internally seeded, execute a subprogram "ssh-rand-helper" to obtain
some entropy for us. Rewrite the old in-process entropy collecter as
an example ssh-rand-helper.
- (djm) Always perform ssh_prng_cmds path lookups in configure, even if
we don't end up using ssh_prng_cmds (so we always get a valid file)
2001-12-24 01:41:47 +11:00
278f907a2d
- djm@cvs.openbsd.org 2001/12/20 22:50:24
...
[auth2.c auth2-chall.c channels.c channels.h clientloop.c dispatch.c]
[dispatch.h kex.c kex.h packet.c packet.h serverloop.c ssh.c]
[sshconnect2.c]
Conformance fix: we should send failing packet sequence number when
responding with a SSH_MSG_UNIMPLEMENTED message. Spotted by
yakk@yakk.dot.net ; ok markus@
2001-12-21 15:00:19 +11:00
e737856350
- markus@cvs.openbsd.org 2001/12/20 16:37:29
...
[channels.c channels.h session.c]
setup x11 listen socket for just one connect if the client requests so.
(v2 only, but the openssh client does not support this feature).
2001-12-21 14:58:35 +11:00
5a6b4fe225
- stevesk@cvs.openbsd.org 2001/12/19 17:16:13
...
[authfile.c bufaux.c bufaux.h buffer.c buffer.h packet.c packet.h ssh.c]
change the buffer/packet interface to use void* vs. char*; ok markus@
2001-12-21 14:56:54 +11:00
f6681a3a96
- markus@cvs.openbsd.org 2001/12/19 16:09:39
...
[serverloop.c]
fix race between SIGCHLD and select with an additional pipe. writing
to the pipe on SIGCHLD wakes up select(). using pselect() is not
portable and siglongjmp() ugly. W. R. Stevens suggests similar solution.
initial idea by pmenage@ensim.com ; ok deraadt@, djm@
2001-12-21 14:53:11 +11:00
9f0f5c64bc
- deraadt@cvs.openbsd.org 2001/12/19 07:18:56
...
[auth1.c auth2.c auth2-chall.c auth-bsdauth.c auth.c authfile.c auth.h]
[auth-krb4.c auth-rhosts.c auth-skey.c bufaux.c canohost.c channels.c]
[cipher.c clientloop.c compat.c compress.c deattack.c key.c log.c mac.c]
[match.c misc.c nchan.c packet.c readconf.c rijndael.c rijndael.h scard.c]
[servconf.c servconf.h serverloop.c session.c sftp.c sftp-client.c]
[sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c]
[sshconnect1.c sshconnect2.c sshconnect.c sshd.8 sshd.c sshd_config]
[ssh-keygen.c sshlogin.c sshpty.c sshtty.c ttymodes.c uidswap.c]
basic KNF done while i was looking for something else
2001-12-21 14:45:46 +11:00
89681214ca
- jakob@cvs.openbsd.org 2001/12/18 10:06:24
...
[auth-rsa.c]
log fingerprint on successful public key authentication, simplify usage of key structs; ok markus@
2001-12-21 12:52:39 +11:00
da9edcabf8
- jakob@cvs.openbsd.org 2001/12/18 10:05:15
...
[auth2.c]
log fingerprint on successful public key authentication; ok markus@
2001-12-21 12:48:54 +11:00
5b2aea9494
- jakob@cvs.openbsd.org 2001/12/18 10:04:21
...
[auth.h hostfile.c hostfile.h]
remove auth_rsa_read_key, make hostfile_ready_key non static; ok markus@
2001-12-21 12:47:09 +11:00
83c02ef623
- markus@cvs.openbsd.org 2001/12/10 20:34:31
...
[ssh-keyscan.c]
check that server supports v1 for -t rsa1, report from wirth@dfki.de
2001-12-21 12:45:43 +11:00
72c336def6
- stevesk@cvs.openbsd.org 2001/12/10 16:45:04
...
[sshd.c]
possible fd leak on error; ok markus@
2001-12-21 12:44:28 +11:00
ee11625d43
- markus@cvs.openbsd.org 2001/12/09 18:45:56
...
[auth2.c auth2-chall.c auth.h]
add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions,
fixes memleak.
2001-12-21 12:42:34 +11:00
3afe375fd2
- stevesk@cvs.openbsd.org 2001/12/08 17:49:28
...
[channels.c pathnames.h]
use only one path to X11 UNIX domain socket vs. an array of paths
to try. report from djast@cs.toronto.edu . ok markus@
2001-12-21 12:39:51 +11:00
faf2f6483a
- (djm) Add option to gnome-ssh-askpass to stop it from grabbing the X
...
server. I have found this necessary to avoid server hangs with X input
extensions (e.g. kinput2). Enable by setting the environment variable
"GNOME_SSH_ASKPASS_NOGRAB"
2001-12-21 10:28:07 +11:00
366298c696
- (stevesk) OpenBSD CVS sync X11 localhost display
...
- stevesk@cvs.openbsd.org 2001/11/29 14:10:51
[channels.h channels.c session.c]
sshd X11 fake server will now listen on localhost by default:
$ echo $DISPLAY
localhost:12.0
$ netstat -an|grep 6012
tcp 0 0 127.0.0.1.6012 *.* LISTEN
tcp6 0 0 ::1.6012 *.* LISTEN
sshd_config gatewayports=yes can be used to revert back to the old
behavior. will control this with another option later. ok markus@
- stevesk@cvs.openbsd.org 2001/12/19 08:43:11
[includes.h session.c]
handle utsname.nodename case for FamilyLocal X authorization; ok markus@
2001-12-19 17:58:01 +00:00
73f57be500
- stevesk@cvs.openbsd.org 2001/12/06 18:20:32
...
[channels.c]
disable nagle for X11 fake server and client TCPs. from netbsd.
ok markus@
2001-12-07 17:28:34 +00:00
ccd8d07b3c
- stevesk@cvs.openbsd.org 2001/12/06 18:09:23
...
[channels.c session.c]
strncpy->strlcpy. remaining strncpy's are necessary. ok markus@
2001-12-07 17:26:48 +00:00
e181a4d294
- stevesk@cvs.openbsd.org 2001/12/06 18:02:32
...
[channels.c sshconnect.c]
shutdown(sock, SHUT_RDWR) not needed here; ok markus@
2001-12-07 17:24:49 +00:00
c97b1affc5
- (bal) PCRE no longer required. Banished from the source along with
...
fake-regex.h
2001-12-07 17:20:47 +00:00
ade03f6bad
- markus@cvs.openbsd.org 2001/12/06 13:30:06
...
[servconf.c servconf.h sshd.8 sshd.c]
add -o to sshd, too. ok deraadt@
- (bal) Minor white space fix up in servconf.c
2001-12-06 18:22:17 +00:00
9eab262f1c
- markus@cvs.openbsd.org 2001/12/05 16:54:51
...
[compat.c match.c match.h]
make theo and djm happy: bye bye regexp
2001-12-06 18:06:05 +00:00
ff4a14f809
- markus@cvs.openbsd.org 2001/12/05 15:04:48
...
[version.h]
post 3.0.2
2001-12-06 18:02:59 +00:00
1c37c6a518
- deraadt@cvs.openbsd.org 2001/12/05 10:06:12
...
[authfd.c authfile.c bufaux.c channels.c compat.c kex.c kexgex.c
key.c misc.c packet.c servconf.c ssh-agent.c sshconnect2.c
sshconnect.c sshd.c ssh-dss.c ssh-keygen.c ssh-rsa.c]
minor KNF
2001-12-06 18:00:18 +00:00
3c36bb29ca
- itojun@cvs.openbsd.org 2001/12/05 03:56:39
...
[auth1.c auth2.c canohost.c channels.c deattack.c packet.c scp.c
sshconnect2.c]
make it compile with more strict prototype checking
2001-12-06 17:55:26 +00:00
f8f065bc75
- itojun@cvs.openbsd.org 2001/12/05 03:50:01
...
[clientloop.c serverloop.c sshd.c]
deal with LP64 printf issue with sig_atomic_t. from thorpej
2001-12-06 17:52:16 +00:00
d05487d1db
- deraadt@cvs.openbsd.org 2001/12/02 02:08:32
...
[sftp-common.c]
zap };
2001-12-06 17:50:03 +00:00
38b951cdb2
- markus@cvs.openbsd.org 2001/12/01 21:41:48
...
[session.c sshd.8]
don't pass user defined variables to /usr/bin/login
2001-12-06 17:47:47 +00:00
4a4bd719ea
- stevesk@cvs.openbsd.org 2001/11/30 20:39:28
...
[ssh.c]
sscanf() length dependencies are clearer now; can also shrink proto
and data if desired, but i have not done that. ok markus@
2001-12-06 17:45:19 +00:00
57fe5b592c
- markus@cvs.openbsd.org 2001/11/29 22:08:48
...
[auth-rsa.c]
fix protocol error: send 'failed' message instead of a 2nd challenge
(happens if the same key is in authorized_keys twice).
reported Ralf_Meister@genua.de ; ok djm@
2001-12-06 17:41:25 +00:00
623e4a0b1a
- stevesk@cvs.openbsd.org 2001/11/29 19:06:39
...
[channels.h]
remove dead function prototype; ok markus@
2001-12-06 16:49:57 +00:00
5e71c54b8c
- markus@cvs.openbsd.org 2001/11/22 12:34:22
...
[clientloop.c serverloop.c sshd.c]
volatile sig_atomic_t
2001-12-06 16:48:14 +00:00
28c603bf43
- stevesk@cvs.openbsd.org 2001/11/22 05:27:29
...
[ssh-keyscan.c]
don't use "\n" in fatal()
2001-12-06 16:45:10 +00:00
4e366d5048
- stevesk@cvs.openbsd.org 2001/11/21 18:49:14
...
[ssh-keygen.1]
more on passphrase construction; ok markus@
2001-12-06 16:43:21 +00:00
4cbc181983
- markus@cvs.openbsd.org 2001/11/21 15:51:24
...
[key.c]
mem leak
2001-12-06 16:41:41 +00:00
70a290c5f7
- mpech@cvs.openbsd.org 2001/11/19 19:02:16
...
[deattack.c radix.c]
kill more registers
millert@ ok
2001-12-06 16:39:56 +00:00
11f790bbb1
- stevesk@cvs.openbsd.org 2001/11/19 18:40:46
...
[ssh-agent.1]
clarify/state that private keys are not exposed to clients using the
agent; ok markus@
2001-12-06 16:37:51 +00:00
d84df989db
- markus@cvs.openbsd.org 2001/11/19 11:20:21
...
[sshd.c]
fd leak on HUP; ok stevesk@
2001-12-06 16:35:40 +00:00
65366a8c76
- stevesk@cvs.openbsd.org 2001/11/17 19:14:34
...
[auth2.c auth.c readconf.c servconf.c ssh-agent.c ssh-keygen.c]
enum/int type cleanup where it made sense to do so; ok markus@
2001-12-06 16:32:47 +00:00
eaffb9d6b6
- markus@cvs.openbsd.org 2001/11/16 12:46:13
...
[ssh-keyscan.c]
handle empty lines instead of dumping core; report from sha@sha-1.net
2001-12-06 16:28:19 +00:00
0795848def
- deraadt@cvs.openbsd.org 2001/11/14 20:45:08
...
[sshd.c]
errno saving wrapping in a signal handler
2001-12-06 16:19:01 +00:00
fe1d100ffd
[contrib/cygwin/README, openbsd-compat/bsd-cygwin_util.c,
...
openbsd-compat/bsd-cygwin_util.h, openbsd-compat/daemon.c]
Allow SSHD to install as service under WIndows 9x/Me
[configure.ac] Fix to allow linking against PCRE on Cygwin
Patches by Corinna Vinschen <vinschen@redhat.com>
2001-11-26 17:19:43 -08:00
f7c6f95682
Release
2001-11-15 23:16:50 +11:00
efdc1f179d
- (djm) Fix IPv4 default in ssh-keyscan. Spotted by Dan Astoorian
...
<djast@cs.toronto.edu> Fix from markus@
2001-11-15 08:40:45 +11:00
353f608740
- (djm) Bump RPM package versions
2001-11-14 00:05:57 +11:00
c3070c8fe0
- markus@cvs.openbsd.org 2001/11/13 02:03:57
...
[version.h]
enter 3.0.1
2001-11-14 00:05:29 +11:00
527366ccba
- markus@cvs.openbsd.org 2001/11/12 11:17:07
...
[servconf.c]
enable authorized_keys2 again. tested by fries@
2001-11-14 00:03:14 +11:00
61b05cfdda
- (djm) OpenBSD CVS Sync
...
- dugsong@cvs.openbsd.org 2001/11/11 18:47:10
[auth-krb5.c]
fix krb5 authorization check. found by <jhawk@MIT.EDU>. from
art@, deraadt@ ok
2001-11-14 00:02:10 +11:00
e49d0966b5
- (djm) AIX login{success,failed} changes. Move loginsuccess call to
...
do_authenticated. Call loginfailed for protocol 2 failures > MAX like
we do for protocol 1. Reports from Ralf Wenk <wera0003@fh-karlsruhe.de>,
K.Wolkersdorfer@fz-juelich.de and others
2001-11-13 23:46:18 +11:00
056ca1eb47
- (djm) Fix early (and double) free of remote user when using Kerberos.
...
Patch from Simon Wilkinson <simon@sxw.org.uk>
2001-11-13 11:20:07 +11:00
726273e129
- (djm) Reorder portable-specific server options so that they come first.
...
This should help reduce diff collisions for new server options (as they
will appear at the end)
2001-11-12 11:40:11 +11:00
75413ac499
- markus@cvs.openbsd.org 2001/11/11 13:02:31
...
[servconf.c]
make AuthorizedKeysFile2 fallback to AuthorizedKeysFile if AuthorizedKeysFile is specified.
2001-11-12 11:14:35 +11:00
084b8d4ed7
- markus@cvs.openbsd.org 2001/11/10 13:37:20
...
[packet.c]
remove extra debug()
2001-11-12 11:07:58 +11:00
eacff8533e
- markus@cvs.openbsd.org 2001/11/10 13:22:42
...
[ssh-rsa.c]
KNF (unexpand)
2001-11-12 11:07:35 +11:00
6a4a4b9290
- markus@cvs.openbsd.org 2001/11/10 13:19:45
...
[sshd.c]
cleanup libwrap support (remove bogus comment, bogus close(), add debug, etc).
2001-11-12 11:07:11 +11:00
e4a0ff4748
- markus@cvs.openbsd.org 2001/11/09 19:08:35
...
[sshd.c]
remove extra trailing dot from log message; pilot@naughty.monkey.org
2001-11-12 11:06:54 +11:00
79faeff2c1
- markus@cvs.openbsd.org 2001/11/09 18:59:23
...
[clientloop.c serverloop.c]
don't memset too much memory, ok millert@
original patch from jlk@kamens.brookline.ma.us via nalin@redhat.com
2001-11-12 11:06:32 +11:00
f655207a46
- markus@cvs.openbsd.org 2001/11/08 20:02:24
...
[auth.c]
don't print ROOT in CAPS for the authentication messages, i.e.
Accepted publickey for ROOT from 127.0.0.1 port 42734 ssh2
becomes
Accepted publickey for root from 127.0.0.1 port 42734 ssh2
2001-11-12 11:06:06 +11:00
705499b248
- markus@cvs.openbsd.org 2001/11/08 17:49:53
...
[ssh.1]
mention setuid root requirements; noted by cnorris@csc.UVic.ca ; ok stevesk@
2001-11-12 11:05:38 +11:00
637b8ae2d4
- markus@cvs.openbsd.org 2001/11/08 10:51:08
...
[readpass.c]
don't strdup too much data; from gotoh@taiyo.co.jp ; ok millert.
2001-11-12 11:05:20 +11:00
36f8dd3ed6
- markus@cvs.openbsd.org 2001/11/07 22:53:21
...
[channels.h]
crank c->path to 256 so they can hold a full hostname; dwd@bell-labs.com
2001-11-12 11:04:54 +11:00
6fd5b391f0
- markus@cvs.openbsd.org 2001/11/07 22:41:51
...
[auth2.c auth-rh-rsa.c]
unused includes
2001-11-12 11:04:28 +11:00
60d8aafcb1
- markus@cvs.openbsd.org 2001/11/07 22:12:01
...
[sshd.8]
s/Keepalive/KeepAlive/; from openbsd@davidkrause.com
2001-11-12 11:04:05 +11:00
36e603db86
- markus@cvs.openbsd.org 2001/11/07 22:10:28
...
[ssh-dss.c ssh-rsa.c]
missing free and sync dss/rsa code.
2001-11-12 11:03:35 +11:00
9af8c3c226
- markus@cvs.openbsd.org 2001/11/07 21:40:21
...
[ssh-rsa.c]
ssh_rsa_sign/verify: SSH_BUG_SIGBLOB not supported
2001-11-12 11:03:16 +11:00
9f64390f41
- markus@cvs.openbsd.org 2001/11/07 16:03:17
...
[packet.c packet.h sshconnect2.c]
pad using the padding field from the ssh2 packet instead of sending
extra ignore messages. tested against several other ssh servers.
2001-11-12 11:02:52 +11:00
1f8dddc927
- markus@cvs.openbsd.org 2001/10/30 20:29:09
...
[ssh.1]
ssh.1
2001-11-12 11:02:25 +11:00
91c1847733
- markus@cvs.openbsd.org 2001/10/29 19:27:15
...
[sshconnect2.c]
hostbased: check for client hostkey before building chost
2001-11-12 11:02:03 +11:00
eb5fec6494
- markus@cvs.openbsd.org 2001/10/25 21:14:32
...
[ssh-keygen.1 ssh-keygen.c]
better docu for fingerprinting, ok deraadt@
2001-11-12 10:52:44 +11:00
96507ef535
- markus@cvs.openbsd.org 2001/10/24 19:57:40
...
[clientloop.c]
make ~& (backgrounding) work again for proto v1; add support ~& for v2, too
2001-11-12 10:52:25 +11:00
07cd5897f9
- markus@cvs.openbsd.org 2001/10/24 08:51:35
...
[clientloop.c ssh.c]
ignore SIGPIPE early, makes ssh work if agent dies, netbsd-pr via itojun@
2001-11-12 10:52:03 +11:00
595bb4f572
- markus@cvs.openbsd.org 2001/10/24 08:41:20
...
[ssh.c]
remove unused
2001-11-12 10:51:40 +11:00
00b61645eb
- markus@cvs.openbsd.org 2001/10/24 08:41:41
...
[sshd.c]
mention remote port in debug message
2001-11-12 10:51:23 +11:00
aba690c100
- (djm) Cygwin config patch from Corinna Vinschen <vinschen@redhat.com>
2001-11-12 10:36:21 +11:00
f41d618fec
- (djm) Makefile correctness fix from Mark D. Baushke <mdb@juniper.net>
2001-11-12 10:34:22 +11:00
de77b464c6
- (stevesk) auth-pam.c: use do_pam_authenticate(PAM_DISALLOW_NULL_AUTHTOK)
...
if permit_empty_passwd == 0 so null password check cannot be bypassed.
jayaraj@amritapuri.com OpenBSD bug 2168
2001-11-09 20:22:16 +00:00
e589a299a1
[ contrib/caldera/openssh.spec contrib/caldera/sshd.init]
...
Updates from Raymund Will <ray@caldera.de>
[acconfig.h configure.in] Clean up login checks.
Problem reported by Jim Knoble <jmknoble@pobox.com>
2001-11-03 11:09:32 -08:00
14a5c99b5c
- (djm) Compat define for OpenSSL < 0.9.6 (No OPENSSL_free)
2001-11-01 09:32:34 +11:00
12eceb2efc
- (djm) Unsmoke drugs: config files should be noreplace.
2001-10-31 10:31:13 +11:00
1c61324728
- (djm) Redhat RPM spec: remove noreplace from config files, allow IPv6
...
by default (can force IPv4 using --define "noipv6 1")
2001-10-30 22:03:51 +11:00
b89e694b4c
[TODO defines.h loginrec.c] Change the references to configure.in
...
to configure.ac
2001-10-29 18:50:39 -08:00
c3ad02e54b
- (stevesk) README: zlib location is http://www.gzip.org/zlib/
2001-10-28 18:10:22 +00:00
fe2f4a1e37
- (stevesk) Fix compile problem with PAM password change fix
2001-10-28 17:32:38 +00:00
092564869a
- (djm) Fix for PAM password changes being echoed (from stevesk)
2001-10-28 22:36:55 +11:00
c3aa3dd70c
- (djm) Disconnect if no tty and PAM reports password expired
2001-10-28 22:34:52 +11:00
33cdd9ee7b
- (djm) Avoid bug in Solaris PAM libs
2001-10-28 22:33:48 +11:00
ffdf4aa10f
[configure.ac] Fixes for ReliantUNIX (don't use libucb)
...
Patch by Robert Dahlem <Robert.Dahlem@siemens.com>
2001-10-27 10:45:36 -07:00
afefd16b6e
Fix install: when building outside of source
...
tree and using --src=/full_path/to/openssh
Patch by Mark D. Baushke <mdb@juniper.net>
2001-10-26 17:33:18 -07:00
9197c59493
- (bal) Set the correct current time in login_utmp_only(). Patch by
...
Wayne Davison <wayned@users.sourceforge.net>
2001-10-26 15:56:55 +00:00
02cebcd93b
Give path given in --with-xxx= for pcre,zlib, and
...
tcp-wrappers precedence over system libraries and includes.
Report from Dave Dykstra <dwd@bell-labs.com>
2001-10-25 10:01:30 -07:00
a0bd44cc49
- (bal) Use VDISABLE if _POSIX_VDISABLE is set in readpassphrase.c. Patch
...
by todd@
2001-10-25 15:02:35 +00:00
8ad995fd07
Use configure.ac instead of configure.in so older versions of autoconf
...
don't even try.
2001-10-24 21:15:26 -07:00
3a78c84535
- (bal) Should be 3.0p1 not 3.0p2. Corrected version.h already.
2001-10-24 21:06:07 +00:00
17b93e5d65
[configure.in] Fix test for broken dirname. Based on patch from
...
Dave Dykstra <dwd@bell-labs.com>. Remove un-needed test for zlib.h.
[contrib/caldera/openssh.spec, contrib/redhat/openssh.spec,
contrib/suse/openssh.spec] Update version to match version.h
2001-10-23 22:36:54 -07:00
95276711eb
- (bal) Added 'PAM_TTY_KLUDGE' to Solaris platform.
2001-10-23 17:14:00 +00:00
ab73b9bd64
- (bal) Updated version to 3.0p1 in preparing for release.
2001-10-23 16:12:54 +00:00
3a8a5cd5b0
- (djm) Fix fd leak in loginrec.c (ro fd to lastlog was left open).
...
Report from Michal Zalewski <lcamtuf@coredump.cx>
2001-10-22 16:49:22 +10:00
13aae5ee76
[configure.in] Clean up library testing.
...
Add optional PATH to --with-pcre, --with-zlib, --with-tcp-wrappers
based on patch by albert chin (china@thewrittenword.com )
Re-arange AC_CHECK_HEADERS and AC_CHECK_FUNCS for eaiser reading
of patches to configure.in
Replace obsolete AC_STRUCT_ST_BLKSIZE with AC_CHECK_MEMBERS
Add test for broken dirname() on Solaris 2.5.1 by
Dan Astoorian <djast@cs.toronto.edu>
[acconfig.h aclocal.m4 defines.h configure.in]
Better socklen_t patch by albert chin (china@thewrittenword.com )
[scp.c]
Replace obsolete HAVE_ST_BLKSIZE with HAVE_STRUCT_STAT_ST_BLKSIZE
[Makefile.in] When running make in top level, always do make in openbsd-compat
patch by Dave Dykstra <dwd@bell-labs.com>
2001-10-21 17:53:58 -07:00
f2366b5a7d
- (bal) Fixed up init.d symlink issue and piddir stuff. Patches by
...
Zoran Milojevic <Zoran.Milojevic@SS8.com> and j.petersen@msh.de
2001-10-19 20:36:23 +00:00
7a97339359
- (bal) Minor bug fix in contrib/solaris/opensshd.in .. $etcdir was not
...
set right.
2001-10-12 21:52:39 +00:00
8b5ba1c39a
- (bal) First wave of contrib/solaris/ package upgrades. Still more
...
work needs to be done, but it is a 190% better then the stuff we
had before!
2001-10-12 20:30:52 +00:00
4a820ea750
- (djm) Cleanup sshpty.c a little
2001-10-12 19:15:48 +10:00
7c734056f4
- (djm) Clean some autoconf-2.52 junk when doing "make distclean"
2001-10-12 19:15:27 +10:00
5f01280c79
- (djm) "make veryclean" fix from Tom Holroyd <tomh@po.crl.go.jp>
2001-10-12 12:04:04 +10:00
164a7f42f9
- markus@cvs.openbsd.org 2001/10/11 15:24:00
...
[clientloop.c]
clear select masks if we return before calling select().
2001-10-12 11:36:09 +10:00
0585d51a52
- markus@cvs.openbsd.org 2001/10/11 13:45:21
...
[session.c]
delay detach of session if a channel gets closed but the child is
still alive. however, release pty, since the fd's to the child are
already closed.
2001-10-12 11:35:50 +10:00
3ec2759ad4
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/10/10 22:18:47
[channels.c channels.h clientloop.c nchan.c serverloop.c]
[session.c session.h]
try to keep channels open until an exit-status message is sent.
don't kill the login shells if the shells stdin/out/err is closed.
this should now work:
ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
2001-10-12 11:35:04 +10:00
4e088e4de0
- (bal) seed_init() and seed_rng() required in ssh-keyscan.c
2001-10-10 20:45:43 +00:00
926ce58d3b
- (bal) removed two unsed headers in openbsd-compat/bsd-misc.c
2001-10-10 20:38:55 +00:00
52b77beb65
- markus@cvs.openbsd.org 2001/10/09 21:59:41
...
[channels.c channels.h serverloop.c session.c session.h]
simplify session close: no more delayed session_close, no more blocking wait() calls.
2001-10-10 15:14:37 +10:00
c71f4e40b6
- markus@cvs.openbsd.org 2001/10/09 19:51:18
...
[serverloop.c]
close all channels if the connection to the remote host has been closed,
should fix sshd's hanging with WCHAN==wait
2001-10-10 15:08:36 +10:00
ae45246696
- markus@cvs.openbsd.org 2001/10/09 19:32:49
...
[session.c]
stat subsystem command before calling do_exec, and return error to client.
2001-10-10 15:08:06 +10:00
Damien Miller
Kevin Steves
Ben Lindstrom
Tim Rice