b062c293e0
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/03/23 19:02:00
[monitor.c]
unbreak rekeying for privsep; ok millert@
2003-03-24 09:12:09 +11:00
009b23f6ab
[contrib/caldera/openssh.spec] workaround RPM quirk. Fix %files section
2003-03-20 20:50:41 -08:00
c8c548d248
- (bal) Disable Privsep for Tru64 after pre-authentication due to issues
...
with SIA. Also, clean up of tru64 support patch by Chris Adams
<cmadams@hiwaay.net>
2003-03-21 01:18:09 +00:00
a5a2648b81
- (bal) Collection of Cray patches (bsd-cray.h fix for CRAYT3E and improved
...
guessing rules)
2003-03-21 01:05:37 +00:00
d54d9382a4
- (bal) scp.c 'limit' conflicts with Cray. Rename to 'limitbw'
2003-03-21 00:55:32 +00:00
5bd6eb71da
- (bal) The days of lack of int64_t support are over. Sorry kids.
2003-03-21 00:34:34 +00:00
4874c32531
- markus@cvs.openbsd.org 2003/03/17 11:43:47
...
[version.h]
enter 3.6
2003-03-20 10:11:34 +11:00
05f5578e1f
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/03/17 10:38:38
[progressmeter.c]
don't print \n if backgrounded; from ho@
2003-03-20 10:08:05 +11:00
4e4dc561ae
[configure.ac openbsd-compat/bsd-misc.c openbsd-compat/bsd-misc.h]
...
add nanosleep(). testing/corrections by Darren Tucker <dtucker@zip.com.au>
2003-03-18 10:21:40 -08:00
cafbcc7334
- (djm) Fix return value checks for RAND_bytes. Report from
...
Steve G <linux_4ever@yahoo.com>
2003-03-17 16:13:53 +11:00
c51d0735a4
- markus@cvs.openbsd.org 2003/03/13 11:44:50
...
[ssh-agent.c]
ssh-agent is similar to ssh-keysign (allows other processes to use
private rsa keys). however, it gets key over socket and not from
a file, so we have to do blinding here as well.
2003-03-15 11:37:09 +11:00
ed33d3b4d2
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/03/13 11:42:19
[authfile.c ssh-keysign.c]
move RSA_blinding_on to generic key load method
2003-03-15 11:36:18 +11:00
c1365e19b0
Fix bug #
2003-03-13 09:42:51 +11:00
c9c1d3757f
- (djm) AIX package builder update from dtucker@zip.com.au
2003-03-10 12:10:45 +11:00
933cc8fb9c
- (djm) Bug #245 : TTY problems on Solaris. Fix by stevesk@ and
...
dtucker@zip.com.au
2003-03-10 11:38:10 +11:00
f211efc690
- (djm) One more portable-specific one from dlheine@suif.Stanford.EDU/
...
CLOUSEAU
2003-03-10 11:23:06 +11:00
0011138d47
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/03/05 22:33:43
[channels.c monitor.c scp.c session.c sftp-client.c sftp-int.c]
[sftp-server.c ssh-add.c sshconnect2.c]
fix memory leaks; from dlheine@suif.Stanford.EDU/CLOUSEAU; ok djm@
2003-03-10 11:21:17 +11:00
ca49a97788
- (djm) Fix some compile errors spotted by dtucker and his fabulous
...
tinderbox
2003-02-25 10:22:35 +11:00
fe1f14375a
- (djm) Bug #456 : Support for NEC SX6 with Unicos; from wendyp@cray.com
2003-02-24 15:45:42 +11:00
1a3ccb07c5
- (djm) Bug #494 : Allow multiple accounts on Windows 9x/Me;
...
From vinschen@redhat.com
2003-02-24 13:04:01 +11:00
8d8168a255
- (djm) Rest of Bug #499 : Import a basename() function from OpenBSD libc
2003-02-24 12:55:55 +11:00
b16f874d89
- (djm) Most of Bug #499 : Cygwin compile fixes for new progressmeter
2003-02-24 12:47:15 +11:00
30947c7287
- (djm) Bug #501 : gai_strerror should return char*;
...
fix from dtucker@zip.com.au
2003-02-24 12:35:08 +11:00
d194048f57
- (djm) Add new object files to Makefile and reorder
2003-02-24 12:18:46 +11:00
543402108e
- mpech@cvs.openbsd.org 2003/02/21 10:34:48
...
[auth-krb4.c]
...sizeof(&adat.session) is not good here.
henning@, deraadt@, millert@
2003-02-24 12:05:18 +11:00
9f82c8fa4f
- markus@cvs.openbsd.org 2003/02/21 09:05:53
...
[servconf.c]
print sshd_config filename in debug2 mode.
2003-02-24 12:04:33 +11:00
06ebedf365
- markus@cvs.openbsd.org 2003/02/16 17:30:33
...
[monitor.c monitor_wrap.c]
fix permitrootlogin forced-commands-only for privsep; bux #387 ; ok provos@
2003-02-24 12:03:38 +11:00
8e7fb33523
- markus@cvs.openbsd.org 2003/02/16 17:09:57
...
[kex.c kexdh.c kexgex.c kex.h sshconnect2.c sshd.c ssh-keyscan.c]
split kex into client and server code, no need to link
server code into the client; ok provos@
2003-02-24 12:03:03 +11:00
1587fb8a17
- markus@cvs.openbsd.org 2003/02/12 21:39:50
...
[crc32.c crc32.h]
replace crc32.c with a BSD licensed version; noted by David Turner
2003-02-24 12:02:12 +11:00
e8a240f966
- markus@cvs.openbsd.org 2003/02/12 09:33:04
...
[key.c key.h ssh-dss.c ssh-rsa.c]
merge ssh-dss.h ssh-rsa.h into key.h; ok deraadt@
2003-02-24 12:01:40 +11:00
7b406276c4
- markus@cvs.openbsd.org 2003/02/10 11:51:47
...
[ssh-add.1]
xref sshd_config.5 (not sshd.8); mark@summersault.com ; bug #490
2003-02-24 12:00:16 +11:00
556f9315a5
- markus@cvs.openbsd.org 2003/02/06 21:22:43
...
[auth1.c auth2.c]
undo broken fix for #387 , fixes #486
2003-02-24 11:59:26 +11:00
9e51a73122
- markus@cvs.openbsd.org 2003/02/06 09:29:18
...
[sftp-server.c]
fix races in rename/symlink; from Tony Finch; ok djm@
2003-02-24 11:58:44 +11:00
9f1e33a6b2
- markus@cvs.openbsd.org 2003/02/06 09:27:29
...
[ssh.c ssh_config.5]
support 'ProxyCommand none'; bugzilla #433 ; binder@arago.de ; ok djm@
2003-02-24 11:57:32 +11:00
97f39ae810
- markus@cvs.openbsd.org 2003/02/06 09:26:23
...
[session.c]
missing call to setproctitle() after authentication; ok provos@
2003-02-24 11:57:01 +11:00
61f08ac35a
- markus@cvs.openbsd.org 2003/02/05 09:02:28
...
[readconf.c]
simplify ProxyCommand parsing, remove strcat/xrealloc; ok henning@, djm@
2003-02-24 11:56:27 +11:00
b7df3af154
- markus@cvs.openbsd.org 2003/02/04 09:33:22
...
[monitor.c monitor_wrap.c]
skey/bsdauth: use 0 to indicate failure instead of -1, because
the buffer API only supports unsigned ints.
2003-02-24 11:55:46 +11:00
386f1f3e6c
- markus@cvs.openbsd.org 2003/02/04 09:32:08
...
[key.c]
better debug3 message
2003-02-24 11:54:57 +11:00
e8cea9e755
- markus@cvs.openbsd.org 2003/02/03 08:56:16
...
[sshpty.c]
don't call error() for readonly /dev; from soekris list; ok mcbride,
henning, deraadt.
2003-02-24 11:54:10 +11:00
babb47a059
- markus@cvs.openbsd.org 2003/02/02 10:56:08
...
[kex.c]
add support for key exchange guesses; based on work by
avraham.fraenkel@commatch.com ; fixes bug #148 ; ok deraadt@
2003-02-24 11:53:32 +11:00
eeeeb3517e
- markus@cvs.openbsd.org 2003/02/02 10:51:13
...
[scp.c]
call okname() only when using system(3) for remote-remote copy;
fixes bugs #483 , #472 ; ok deraadt@, mouring@
2003-02-24 11:52:58 +11:00
ffadc583f6
- jmc@cvs.openbsd.org 2003/01/31 21:54:40
...
[sshd.8]
typos; sshd(8): help and ok markus@
help and ok millert@
2003-02-24 11:52:26 +11:00
2eb26e89c5
- stevesk@cvs.openbsd.org 2003/01/28 17:24:51
...
[scp.1]
remove example not pertinent with -1 addition; ok markus@
2003-02-24 11:51:32 +11:00
8ee66a21cd
- markus@cvs.openbsd.org 2003/01/28 16:11:52
...
[scp.1]
document -l; pekkas@netcore.fi
2003-02-24 11:50:50 +11:00
180fc5b236
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/01/27 17:06:31
[sshd.c]
more specific error message when /var/empty has wrong permissions;
bug #46 , map@appgate.com ; ok henning@, provos@, stevesk@
2003-02-24 11:50:18 +11:00
0775976dc6
- (djm) Tweak gnome-ssh-askpass2:
...
- Retry kb and mouse grab a couple of times, so passphrase dialog doesn't
immediately fail if you are doing something else when it appears (e.g.
dragging a window)
- Perform server grab after we have the keyboard and/or pointer to avoid
races.
2003-02-24 11:48:22 +11:00
c8936acfe1
- (djm) Cygwin needs libcrypt too. Patch from vinschen@redhat.com
2003-02-11 10:04:03 +11:00
850b942037
- (djm) Teach fake-getaddrinfo to use getservbyname() when provided a
...
string service name. Suggested by markus@, review by itojun@
2003-02-06 10:50:42 +11:00
4b0f1ad4db
- (bal) AIX 4.2.1 lacks nanosleep(). Patch to use nsleep() provided by
...
dtucker@zip.com.au
2003-02-01 04:43:34 +00:00
4d9dc1aa82
- (djm) Unbreak root password auth. Spotted by dtucker@zip.com.au
2003-01-30 10:20:56 +11:00
cd6853c31c
- (djm) Search libposix4 and librt for nanosleep. From dtucker@zip.com.au
...
and openssh-unix-dev@thewrittenword.com
2003-01-28 11:33:42 +11:00
6dc562a7aa
- (bal) Bugzilla 477 patch by wendyp@cray.com. Define TIOCGPGRP for
...
cray. Also removed test for tcgetpgrp in configure.ac since it
is no longer used.
2003-01-27 21:15:10 +00:00
3bc0c062ab
- (djm) Add TIMEVAL_TO_TIMESPEC macros
2003-01-24 11:50:32 +11:00
8e12147df5
- markus@cvs.openbsd.org 2003/01/23 14:06:15
...
[scp.1 scp.c]
scp -12; Sam Smith and others; ok provos@, deraadt@
2003-01-24 11:37:38 +11:00
ff74d748e9
- markus@cvs.openbsd.org 2003/01/23 14:01:53
...
[scp.c]
bandwidth limitation patch (scp -l) from niels@; ok todd@, deraadt@
2003-01-24 11:36:58 +11:00
6c71179f68
- markus@cvs.openbsd.org 2003/01/23 13:50:27
...
[authfd.c authfd.h readpass.c ssh-add.1 ssh-add.c ssh-agent.c]
ssh-add -c, prompt user for confirmation (using ssh-askpass) when
private agent key is used; with djm@; test by dugsong@, djm@;
ok deraadt@
2003-01-24 11:36:23 +11:00
5a93add673
- (djm) OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2003/01/23 08:58:47
[sshd_config.5]
typos; ok millert@
2003-01-24 11:34:52 +11:00
21de87b936
- (djm) OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2003/01/23 00:03:00
[auth1.c]
Don't log TIS auth response; "get rid of it" - markus@
2003-01-23 17:41:20 +11:00
8b9cde7847
- (djm) Sync regress with OpenBSD -current
2003-01-22 17:53:16 +11:00
2101bfc4e1
- (djm) Reorganise PAM & SIA password handling to eliminate some common code
2003-01-22 15:42:26 +11:00
53d81483f0
- (djm) OpenBSD CVS Sync
...
- marc@cvs.openbsd.org 2003/01/21 18:14:36
[ssh-agent.1 ssh-agent.c]
Add a -t life option to ssh-agent that set the default lifetime.
The default can still be overriden by using -t in ssh-add.
OK markus@
2003-01-22 11:47:19 +11:00
89fe3f30a7
[configure.ac] Add -belf to build ELF binaries on OpenServer 5 when
...
using cc. (gcc already did)
2003-01-19 20:20:24 -08:00
4ea542b41a
[progressmeter.c] make compilers without long long happy.
2003-01-19 20:15:13 -08:00
140344b809
- (djm) Fix compilation for NetBSD from dtucker@zip.com.au
2003-01-20 13:15:10 +11:00
e443e9398e
- (djm) Revert fix for Bug #442 for now.
2003-01-18 16:24:06 +11:00
9715bb1833
- (djm) Bug #470 : Detect strnvis, not strvis in configure.
...
From d_wllms@lanl.gov
2003-01-17 10:31:38 +11:00
cb3e3c8b24
20030116
...
- (djm) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/01/16 03:41:55
[sftp-int.c]
explicitly use first glob result
2003-01-16 15:39:13 +11:00
5fa01fd7fb
- djm@cvs.openbsd.org 2003/01/14 10:58:00
...
[sftp-client.c sftp-int.c]
Don't try to upload or download non-regular files. Report from
apoloval@pantuflo.escet.urjc.es ; ok markus@
2003-01-14 22:24:47 +11:00
7a992387cb
oops
2003-01-14 22:24:19 +11:00
dc70857773
- djm@cvs.openbsd.org 2003/01/13 11:04:04
...
[sftp-int.c]
make cmds[] array static to avoid conflict with BSDI libc.
2003-01-14 22:24:05 +11:00
71a5141534
- markus@cvs.openbsd.org 2003/01/12 16:57:02
...
[progressmeter.c]
allow WARNINGS=yes; ok djm@
2003-01-14 22:23:23 +11:00
0946d876f9
- markus@cvs.openbsd.org 2003/01/11 18:29:43
...
[log.c]
set fatal_cleanups to NULL in fatal_remove_all_cleanups();
dtucker@zip.com.au
2003-01-14 22:22:43 +11:00
0141319d85
- (djm) OpenBSD CVS Sync
...
- fgsch@cvs.openbsd.org 2003/01/10 23:23:24
[sftp-int.c]
typo; from Nils Nordman <nino at nforced dot com>.
2003-01-14 22:22:11 +11:00
7d90127291
- (djm) Bug #467 : Add a --disable-strip option to turn off stripping of
...
installed binaries. From mdev@idg.nl
2003-01-13 16:55:22 +11:00
ec201964e4
- (djm) Rework openbsd-compat/setproctitle.c a bit: move emulation type
...
detection to configure.ac. Prompted by stevesk@
2003-01-13 10:04:58 +11:00
6fd00e042c
- fgsch@cvs.openbsd.org 2003/01/10 08:19:07
...
[scp.c sftp.1 sftp.c sftp-client.c sftp-int.c progressmeter.c]
[progressmeter.h]
sftp progress meter support.
original diffs by Nils Nordman <nino at nforced dot com> via
markus@, merged to -current by me, djm@ ok.
2003-01-10 21:46:02 +11:00
b46b9f322d
- djm@cvs.openbsd.org 2003/01/10 10:32:54
...
[channels.c]
hush socket() errors, except last. Fixes mindrot bug #408 ; ok markus@
2003-01-10 21:45:12 +11:00
86b781c179
- djm@cvs.openbsd.org 2003/01/10 10:29:35
...
[scp.c]
Don't ftruncate after write error, creating sparse files of
incorrect length
mindrot bug #403 , reported by rusr@cup.hp.com ; ok markus@
2003-01-10 21:44:48 +11:00
a7f3aaadc3
- djm@cvs.openbsd.org 2003/01/10 08:48:15
...
[sftp-client.c]
Simplify and avoid redundancy in packet send and receive
functions; ok fgs@
2003-01-10 21:43:58 +11:00
62d57f605a
- fgsch@cvs.openbsd.org 2003/01/10 08:19:07
...
[scp.c sftp.1 sftp.c sftp-client.c sftp-int.c]
sftp progress meter support.
original diffs by Nils Nordman <nino at nforced dot com> via
markus@, merged to -current by me, djm@ ok.
2003-01-10 21:43:24 +11:00
956f3fb28b
- (djm) OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2003/01/08 23:53:26
[sftp.1 sftp.c sftp-int.c sftp-int.h]
Cleanup error handling for batchmode
Allow blank lines and comments in input
Ability to suppress abort on error in batchmode ("-put blah")
Fixes mindrot bug #452 ; markus@ ok
2003-01-10 21:40:00 +11:00
a8ed44b79e
- (djm) Enable new setproctitle emulation for Linux, AIX and HP/UX. More
...
systems may be added later.
2003-01-10 09:53:12 +11:00
13b2e55c36
[scp.c] make compilers without long long happy.
2003-01-08 20:09:30 -08:00
458c6bfa10
[auth.c] declare today at top of allowed_user() to keep older compilers happy.
2003-01-08 20:04:27 -08:00
d0d7a8b27b
[Makefile.in configure.ac] replace fixpath with sed script. Patch by Mo DeJong.
2003-01-08 17:22:59 -08:00
2047b3bdf6
- (djm) Update README to reflect AIX's status as a well supported platform.
...
From dtucker@zip.com.au
2003-01-08 23:28:40 +11:00
6342180b7f
- fgsch@cvs.openbsd.org 2003/01/07 23:42:54
...
[sftp.1]
add version; from Nils Nordman <nino at nforced dot com> via markus@.
markus@ ok
2003-01-08 14:05:23 +11:00
770b374a68
- djm@cvs.openbsd.org 2003/01/06 23:51:22
...
[sftp-client.c]
Fix "get -p" download to not add user-write perm. mindrot bug #426
reported by gfernandez@livevault.com ; ok markus@
2003-01-08 14:04:53 +11:00
275295eb41
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2003/01/01 18:08:52
[channels.c]
move big output buffer messages to debug2
2003-01-08 14:04:09 +11:00
e77c17ee4a
- (djm) Avoid redundant xstrdup/xfree in auth2-pam.c. From Solar via markus@
2003-01-08 12:37:03 +11:00
13dd03a0e2
- (djm) Sync openbsd-compat/ with OpenBSD -current
2003-01-08 11:16:48 +11:00
06817f9cd3
- (djm) Fix my fix of the fix for the Bug #442 for PAM case. Spotted by
...
dtucker@zip.com.au . Reorder for clarity too.
2003-01-07 23:55:59 +11:00
f25c18d7e8
- (djm) Bug #178 : On AIX /etc/nologin wasnt't shown to users. Fix from
...
Ralf.Wenk@fh-karlsruhe.de and dtucker@zip.com.au
2003-01-07 17:38:58 +11:00
b93addb6d6
- (djm) Bug #111 : Run syslog and stderr logging through strnvis to eliminate
...
nasties. Report from peak@argo.troja.mff.cuni.cz
2003-01-07 17:04:18 +11:00
7df881d20e
- (djm) Bug #110 : bogus error messages in lastlog_get_entry(). Fix based
...
on one by peak@argo.troja.mff.cuni.cz
2003-01-07 16:46:58 +11:00
64004b5566
- (djm) Fix Bug #442 for PAM case
2003-01-07 16:15:20 +11:00
e832819cf7
- (djm) Bug #26 : Use local mkstemp() rather than glibc's silly one. Fixes
...
Can't pass KRB4 TGT passing. Fix from: jan.iven@cern.ch
2003-01-07 15:18:32 +11:00
48cb8aa935
- (djm) Bug #442 : Check for and deny access to accounts with locked
...
passwords. Patch from dtucker@zip.com.au
2003-01-07 12:19:32 +11:00
5e4471e45a
- (djm) Bug #401 : Work around Linux breakage with IPv6 mapped addresses.
...
Based on fix from yoshfuji@linux-ipv6.org
2003-01-07 10:51:23 +11:00
dfedbf8e5a
- (djm) Bug #446 : Set LOGIN env var to pw_name on AIX. Patch from
...
mii@ornl.gov
2003-01-03 14:52:53 +11:00
02e16ad95f
- (djm) Bug #460 : Filling utmp[x]->ut_addr_v6 if present. Patch from
...
cjwatson@debian.org
2003-01-03 14:42:27 +11:00
8aff5cbed7
- (djm) Bug #461 : ssh-copy-id fails with no arguments. Patch from
...
cjwatson@debian.org
2003-01-03 14:34:06 +11:00
678ee51ff3
- (stevesk) [session.c sshlogin.c sshlogin.h] complete portable
...
parts of pass addrlen with sockaddr * fix.
from Hajimu UMEMOTO <ume@FreeBSD.org>
2003-01-01 23:43:55 +00:00
1b96cfb975
- (bal) [msg.c msg.h scp.c ssh-keysign.c sshconnect2.c] Resync CVS IDs since
...
we already did s/msg_send/ssh_msg_send/
2002-12-23 02:58:17 +00:00
40b9503563
- markus@cvs.openbsd.org 2002/12/13 15:20:52
...
[scp.c]
1) include stalling time in total time
2) truncate filenames to 45 instead of 20 characters
3) print rate instead of progress bar, no more stars
4) scale output to tty width
based on a patch from Niels; ok fries@ lebel@ fgs@ millert@
2002-12-23 02:53:08 +00:00
1d568f9fce
- markus@cvs.openbsd.org 2002/12/13 10:03:15
...
[channels.c misc.c sshconnect2.c]
cleanup debug messages, more useful information for the client user.
2002-12-23 02:44:36 +00:00
faa1ea8c20
- markus@cvs.openbsd.org 2002/12/10 19:47:14
...
[packet.c]
static
2002-12-23 02:42:52 +00:00
a743398d04
- markus@cvs.openbsd.org 2002/12/10 19:26:50
...
[packet.c]
move tos handling to packet_set_tos; ok provos/henning/deraadt
2002-12-23 02:41:41 +00:00
46767607e2
- markus@cvs.openbsd.org 2002/12/10 08:56:00
...
[session.c]
Make sure $SHELL points to the shell from the password file, even if shell
is overridden from login.conf; bug#453; semen at online.sinor.ru; ok millert@
2002-12-23 02:26:08 +00:00
b9fa691819
- millert@cvs.openbsd.org 2002/12/09 16:50:30
...
[ssh.c]
Avoid setting optind to 0 as GNU getopt treats that like we do optreset.
markus@ OK
2002-12-23 02:24:54 +00:00
d576781829
- djm@cvs.openbsd.org 2002/12/06 05:20:02
...
[sftp.1]
Fix cut'n'paste error, spotted by matthias.riese@b-novative.de ; ok deraadt@
2002-12-23 02:23:37 +00:00
418e078378
- markus@cvs.openbsd.org 2002/12/05 11:08:35
...
[scp.c]
use roundup() similar to rcp/util.c and avoid problems with strange
filesystem block sizes, noted by tjr@freebsd.org ; ok djm@
2002-12-23 02:22:09 +00:00
611797ed15
- stevesk@cvs.openbsd.org 2002/12/04 04:36:47
...
[session.c]
remove xauth entries before add; PR 2994 from janjaap@stack.nl .
ok markus@
2002-12-23 02:15:57 +00:00
c276c1208e
- markus@cvs.openbsd.org 2002/11/27 17:53:35
...
[scp.c sftp.c ssh.c]
allow usernames with embedded '@', e.g. scp user@vhost@realhost:file /tmp;
http://bugzilla.mindrot.org/show_bug.cgi?id=447 ; ok mouring@, millert@
2002-12-23 02:14:51 +00:00
acaac975ca
- stevesk@cvs.openbsd.org 2002/11/26 02:38:54
...
[canohost.c]
KNF, comment and error message repair; ok markus@
2002-12-23 02:13:37 +00:00
9394d2fc0a
- stevesk@cvs.openbsd.org 2002/11/26 02:35:30
...
[ssh-keygen.1]
remove outdated statement; ok markus@ deraadt@
2002-12-23 02:11:54 +00:00
e7ee7fe602
- wcobb@cvs.openbsd.org 2002/11/26 00:45:03
...
[scp.c ssh-keygen.c]
Remove unnecessary fflush(stderr) calls, stderr is unbuffered by default.
ok markus@
2002-12-23 02:11:02 +00:00
2594d9a06b
- stevesk@cvs.openbsd.org 2002/11/24 21:46:24
...
[ssh-keysign.8]
typo: "the the"
2002-12-23 02:09:59 +00:00
604dc72890
- markus@cvs.openbsd.org 2002/11/21 23:04:33
...
[ssh.c]
debug->debug2
2002-12-23 02:08:57 +00:00
93576d9538
- deraadt@cvs.openbsd.org 2002/11/21 23:03:51
...
[auth-krb5.c auth1.c hostfile.h monitor_wrap.c sftp-client.c sftp-int.c ssh-add.c ssh-rsa.c
sshconnect.c]
KNF
2002-12-23 02:06:19 +00:00
064496feaa
- markus@cvs.openbsd.org 2002/11/21 22:45:31
...
[cipher.c kex.c packet.c sshconnect.c sshconnect2.c]
debug->debug2, unify debug messages
2002-12-23 02:04:22 +00:00
1f53083fc4
- markus@cvs.openbsd.org 2002/11/21 22:22:50
...
[dh.c]
debug->debug2
2002-12-23 02:03:02 +00:00
f49dbff61d
- markus@cvs.openbsd.org 2002/11/18 16:43:44
...
[clientloop.c]
don't overwrite SIG{INT,QUIT,TERM} handler if set to SIG_IGN;
e.g. if ssh is used for backup; report Joerg Schilling; ok millert@
2002-12-23 02:01:55 +00:00
44adb8fed9
- fgsch@cvs.openbsd.org 2002/11/15 10:03:09
...
[authfile.c]
lseek(2) may return -1 when getting the public/private key lenght.
Simplify the code and check for errors using fstat(2).
Problem reported by Mauricio Sanchez, markus@ ok.
2002-12-23 02:00:23 +00:00
ab1c12a11c
- (djm) PERL-free fixpaths from stuge-openssh-unix-dev@cdy.org
2002-12-05 20:59:33 +11:00
1c9e688548
[configure.ac] fix STDPATH test for IRIX. First reported by advax@triumf.ca.
...
This type of solution tested by <herb@sgi.com>
2002-11-22 13:29:01 -08:00
be2396458e
[configure.ac] remove unused variables no_libsocket and no_libnsl
2002-11-13 15:55:55 -08:00
748fcf9881
[contrib/solaris/opensshd.in] add umask 022 so sshd.pid is not world writable.
2002-11-13 15:50:04 -08:00
f5397c081d
- (bal) AIX does not log login attempts for unknown users (bug #432 ).
...
patch by dtucker@zip.com.au
2002-11-09 16:11:10 +00:00
224313cdae
- (bal) Update ssh-host-config and minor rewrite of bsd-cygwin_util.c
...
ntsec now default if cygwin version beginning w/ version 56. Patch
by Corinna Vinschen <vinschen@redhat.com>
2002-11-09 15:59:27 +00:00
007eb912ea
- markus@cvs.openbsd.org 2002/11/07 22:35:38
...
[scp.c]
check exit status from ssh, and exit(1) if ssh fails; bug#369;
binder@arago.de
2002-11-09 15:54:08 +00:00
b6df73b06a
- markus@cvs.openbsd.org 2002/11/07 22:08:07
...
[readconf.c readconf.h ssh-keysign.8 ssh-keysign.c]
we cannot use HostbasedAuthentication for enabling ssh-keysign(8),
because HostbasedAuthentication might be enabled based on the
target host and ssh-keysign(8) does not know the remote hostname
and not trust ssh(1) about the hostname, so we add a new option
EnableSSHKeysign; ok djm@, report from zierke@informatik.uni-hamburg.de
2002-11-09 15:52:31 +00:00
c2faa4a504
- markus@cvs.openbsd.org 2002/11/07 16:28:47
...
[sshd.c]
log to stderr if -ie is given, bug #414 , prj@po.cwru.edu
2002-11-09 15:50:03 +00:00
8e879cf691
- markus@cvs.openbsd.org 2002/11/05 20:10:37
...
[sftp-client.c]
typo; GaryF@livevault.com
2002-11-09 15:48:49 +00:00
41ee2b0d77
- markus@cvs.openbsd.org 2002/11/05 19:45:20
...
[monitor.c]
handle overflows for size_t larger than u_int; siw@goneko.de , bug #425
2002-11-09 15:47:47 +00:00
9bda7ae4c6
- markus@cvs.openbsd.org 2002/11/04 10:09:51
...
[packet.c]
log before send disconnect; ok djm@
2002-11-09 15:46:24 +00:00
485075e8fa
- markus@cvs.openbsd.org 2002/11/04 10:07:53
...
[auth.c]
don't compare against pw_home if realpath fails for pw_home (seen
on AFS); ok djm@
2002-11-09 15:45:12 +00:00
ee844912c9
- markus@cvs.openbsd.org 2002/10/23 10:40:16
...
[bufaux.c]
%u for u_int
2002-11-09 15:43:23 +00:00
0cc2a47674
- markus@cvs.openbsd.org 2002/10/23 10:32:13
...
[packet.c]
use %u for u_int
2002-11-09 15:41:39 +00:00
0851381bf7
- itojun@cvs.openbsd.org 2002/10/16 14:31:48
...
[sftp-common.c]
64bit pedant. %llu is "unsigned long long". markus ok
2002-11-09 15:40:34 +00:00
885929cd31
fix changelog
2002-10-21 20:26:16 +10:00
7b3f58cbcd
- (djm) Bug #317 : FreeBSD needs libutil.h for openpty() Report from
...
dirk.meyer@dinoex.sub.org
2002-10-21 10:50:25 +10:00
5a5da88c59
- (djm) Kill ssh-rand-helper children on timeout, patch from
...
dtucker@zip.com.au
2002-10-21 10:13:35 +10:00
3e0064781b
- (bal) More advanced strsep test by Darren Tucker <dtucker@zip.com.au>
2002-10-16 00:24:03 +00:00
97e38d8667
20021015
...
- (bal) Fix bug id 383 and only call loginrestrict for AIX if not root.
2002-10-16 00:13:52 +00:00
94f628f0ab
[contrib/caldera/openssh.spec] make ssh-agent setgid nobody
2002-10-15 13:16:55 -07:00
dc3c757f57
- (bal) Disable post-authentication Privsep for OSF/1. It conflicts with
...
SIA.
2002-10-04 23:54:54 +00:00
901119beab
- (djm) Bug #406 : s/msg_send/ssh_msg_send/ for Mac OS X 1.2
2002-10-04 11:10:04 +10:00
510d51300e
- (djm) Bump RPM spec version numbers
2002-10-03 11:56:58 +10:00
7156fc7da6
- markus@cvs.openbsd.org 2002/10/01 13:24:50
...
[version.h]
OpenSSH 3.5
2002-10-03 11:55:37 +10:00
af9de38c43
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2002/10/01 20:34:12
[ssh-agent.c]
allow root to access the agent, since there is no protection from root.
2002-10-03 11:54:35 +10:00
d8769625fb
- stevesk@cvs.openbsd.org 2002/09/27 15:46:21
...
[ssh.1]
clarify compression level protocol 1 only; ok markus@ deraadt@
2002-09-30 12:00:55 +10:00
e9264973ad
- (djm) OpenBSD CVS Sync
...
- mickey@cvs.openbsd.org 2002/09/27 10:42:09
[compat.c compat.h sshd.c]
add a generic match for a prober, such as sie big brother;
idea from stevesk@; markus@ ok
2002-09-30 11:59:21 +10:00
50f6123eef
- (djm) Tidy contrib/, add Makefile for GNOME passphrase dialogs, tweak README
2002-09-30 10:40:39 +10:00
d94e549ea8
- markus@cvs.openbsd.org 2002/09/26 11:38:43
...
[auth1.c auth.h auth-krb4.c monitor.c monitor.h monitor_wrap.c]
[monitor_wrap.h]
krb4 + privsep; ok dugsong@, deraadt@
2002-09-27 13:25:58 +10:00
d27a76de65
- markus@cvs.openbsd.org 2002/09/25 15:19:02
...
[sshd.c]
typo; pilot@monkey.org
2002-09-27 13:22:31 +10:00
d681d2602c
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2002/09/25 11:17:16
[sshd_config]
sync LoginGraceTime with default
2002-09-27 13:21:57 +10:00
81ed518b9b
Cray fixes (bug 367) based on patch from Wendy Palm @ cray.
...
This does not include the deattack.c fixes.
2002-09-25 17:38:46 -07:00
164725f40e
l) Fix issue where successfull login does not clear failure counts
...
in AIX. Patch by dtucker@zip.com.au ok by djm
2002-09-25 23:14:14 +00:00
dcbb6c2dc9
- todd@cvs.openbsd.org 2002/09/24 20:59:44
...
[sshd.8]
tweak the example $HOME/.ssh/rc script to not show on any cmdline the
sensitive data it handles. This fixes bug # 402 as reported by
kolya@mit.edu (Nickolai Zeldovich).
ok markus@ and stevesk@
2002-09-25 12:20:52 +10:00
ef73f50a12
- markus@cvs.openbsd.org 2002/09/24 08:46:04
...
[monitor.c]
only call kerberos code for authctxt->valid
2002-09-25 12:20:17 +10:00
7db40c9e2e
- markus@cvs.openbsd.org 2002/09/23 22:11:05
...
[monitor.c]
only call auth_krb5 if kerberos is enabled; ok deraadt@
2002-09-25 12:19:39 +10:00
b2f844dc51
- (djm) OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2002/09/23 20:46:27
[canohost.c]
change get_peer_ipaddr() and get_local_ipaddr() to not return NULL for
non-sockets; fixes a problem passing NULL to snprintf(). ok markus@
2002-09-25 12:19:08 +10:00
2c961cecb0
[configure.ac] s/return/exit/ patch by dtucker@zip.com.au
...
From autoconf guidelines:
"Test programs should exit, not return, from main, because on some
systems (old Suns, at least) the argument to return in main is ignored."
2002-09-23 16:54:10 -07:00
6f0a188857
- stevesk@cvs.openbsd.org 2002/09/20 18:41:29
...
[auth.c]
log illegal user here for missing privsep case (ssh2).
this is executed in the monitor. ok markus@
2002-09-22 01:26:51 +10:00
16aed05578
- stevesk@cvs.openbsd.org 2002/09/19 16:03:15
...
[serverloop.c]
log IP address also; ok markus@
2002-09-22 01:26:27 +10:00
2138d152b2
- markus@cvs.openbsd.org 2002/09/19 15:51:23
...
[ssh-add.c]
typo; cd@kalkatraz.de
2002-09-22 01:26:00 +10:00
a0e4559d72
- (djm) OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2002/09/19 14:53:14
[compat.c]
2002-09-22 01:25:35 +10:00
8c4e18a6ec
- djm@cvs.openbsd.org 2002/09/19 01:58:18
...
[ssh.c sshconnect.c]
bugzilla.mindrot.org #223 - ProxyCommands don't exit.
Patch from dtucker@zip.com.au ; ok markus@
2002-09-19 12:05:02 +10:00
9b037b837a
- itojun@cvs.openbsd.org 2002/09/17 07:47:02
...
[channels.c]
don't quit while creating X11 listening socket.
http://mail-index.netbsd.org/current-users/2002/09/16/0005.html
got from portable. markus ok
2002-09-19 11:54:54 +10:00
86247e2798
- stevesk@cvs.openbsd.org 2002/09/16 22:03:13
...
[sshd.8]
reference moduli(5) in FILES /etc/moduli.
2002-09-19 11:51:53 +10:00
101c4a7bc9
- stevesk@cvs.openbsd.org 2002/09/16 20:12:11
...
[sshd_config.5]
more details on X11Forwarding security issues and threats; ok markus@
2002-09-19 11:51:21 +10:00
a6eb2b7f8e
- stevesk@cvs.openbsd.org 2002/09/16 19:55:33
...
[session.c]
log when _PATH_NOLOGIN exists; ok markus@
2002-09-19 11:50:48 +10:00
e1383cee9d
- stevesk@cvs.openbsd.org 2002/09/13 19:23:09
...
[channels.c sshconnect.c sshd.c]
remove use of SO_LINGER, it should not be needed. error check
SO_REUSEADDR. fixup comments. ok markus@
2002-09-19 11:49:37 +10:00
f37e246f85
- stevesk@cvs.openbsd.org 2002/09/12 19:50:36
...
[session.c ssh.1]
add SSH_CONNECTION and deprecate SSH_CLIENT; bug #384 . ok markus@
2002-09-19 11:47:55 +10:00
db30b12d7b
- (djm) OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2002/09/12 19:11:52
[ssh-agent.c]
%u for uid print; ok markus@
2002-09-19 11:46:58 +10:00
10f3085137
- (djm) Made GNOME askpass programs return non-zero if cancel button is
...
pressed.
2002-09-12 14:49:00 +10:00
1d87176749
trim from 3.3p1 back (look in CVS for the full changelog)
2002-09-12 10:45:32 +10:00
9b481510bb
- (djm) Sync sys/tree.h with OpenBSD -current. Rename tree.h and
...
fake-queue.h to sys-tree.h and sys-queue.h
2002-09-12 10:43:29 +10:00
622accfdb7
- djm@cvs.openbsd.org 2002/09/12 00:13:06
...
[sftp-int.c]
zap unused var introduced in last commit
2002-09-12 10:34:13 +10:00
771721fa31
- (djm) Added getpeereid() replacement. Properly implemented for systems
...
with SO_PEERCRED support. Faked for systems which lack it.
2002-09-12 10:32:59 +10:00
e1a4981707
- djm@cvs.openbsd.org 2002/09/11 22:41:50
...
[sftp.1 sftp-client.c sftp-client.h sftp-common.c sftp-common.h]
[sftp-glob.c sftp-glob.h sftp-int.c sftp-server.c]
support for short/long listings and globbing in "ls"; ok markus@
2002-09-12 09:54:25 +10:00
789e95dbe9
- stevesk@cvs.openbsd.org 2002/09/11 18:27:26
...
[authfd.c authfd.h ssh.c]
don't connect to agent to test for presence if we've previously
connected; ok markus@
2002-09-12 09:52:46 +10:00
b5fdfaae13
- stevesk@cvs.openbsd.org 2002/09/11 17:55:03
...
[ssh.1]
add agent and X11 forwarding warning text from ssh_config.5; ok markus@
2002-09-12 09:52:03 +10:00
538f1819d8
- markus@cvs.openbsd.org 2002/09/10 20:24:47
...
[ssh-agent.c]
check the euid of the connecting process with getpeereid(2);
ok provos deraadt stevesk
2002-09-12 09:51:10 +10:00
a10f56151b
- markus@cvs.openbsd.org 2002/09/09 14:54:15
...
[channels.c kex.h key.c monitor.c monitor_wrap.c radix.c uuencode.c]
signed vs unsigned from -pedantic; ok henning@
2002-09-12 09:49:15 +10:00
25162f2518
- itojun@cvs.openbsd.org 2002/09/09 06:48:06
...
[auth1.c auth.h auth-krb5.c monitor.c monitor.h]
[monitor_wrap.c monitor_wrap.h]
kerberos support for privsep. confirmed to work by lha@stacken.kth.se
patch from markus
2002-09-12 09:47:29 +10:00
4d53d39b07
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2002/09/08 20:24:08
[hostfile.h]
no comma at end of enumerator list
2002-09-12 09:43:56 +10:00
71eb0c1550
- (djm) Sync openbsd-compat with OpenBSD -current
2002-09-11 10:29:11 +10:00
c34e03e471
- (djm) Bug #138 : Make protocol 1 blowfish work with old OpenSSL.
...
Patch from Robert Halubek <rob@adso.com.pl>
2002-09-10 22:26:17 +10:00
e9994cb4d7
- (djm) Bug #365 : Read /.ssh/environment properly under CygWin.
...
Patch from Mark Bradshaw <bradshaw@staff.crosswalk.com>
2002-09-10 21:43:53 +10:00
005d4560ed
- (djm) Add support for building gtk2 password requestor from Redhat beta
2002-09-05 16:53:20 +10:00
44d5b60336
- (djm) Add gnome-ssh-askpass2.c (gtk2) by merge with patch from
...
Nalin Dahyabhai <nalin@redhat.com>
2002-09-05 16:46:24 +10:00
539983800d
- (djm) Merge openssh-TODO.patch from Redhat (null) beta
2002-09-05 16:32:02 +10:00
c13486300d
- (djm) OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2002/09/04 18:52:42
[servconf.c sshd.8 sshd_config.5]
default LoginGraceTime to 2m; 1m may be too short for slow systems.
ok markus@
2002-09-05 14:35:14 +10:00
fc93d4bd31
- (djm) Patch from itojun@ for Darwin OS: test getaddrinfo, reorder libcrypt
2002-09-04 23:26:29 +10:00
6b09792a55
- (djm) Fix Redhat RPM build dependancy test
2002-09-04 17:19:04 +10:00
05913badf3
- stevesk@cvs.openbsd.org 2002/08/29 22:54:10
...
[ssh_config.5 sshd_config.5]
state XAuthLocation is a full pathname
2002-09-04 16:51:03 +10:00
50b9a60082
- stevesk@cvs.openbsd.org 2002/08/29 19:49:42
...
[ssh.c]
shrink initial privilege bracket for setuid case; ok markus@
2002-09-04 16:50:06 +10:00
9b1dacdf2c
- stevesk@cvs.openbsd.org 2002/08/29 16:09:02
...
[ssh_config.5]
more on UsePrivilegedPort and setuid root; ok markus@
2002-09-04 16:47:35 +10:00
Damien Miller
Tim Rice
Ben Lindstrom
Kevin Steves