c4cea3e5c7
- Avoid warning message with Unix98 ptys
2000-03-02 23:31:50 +11:00
c7d8dbbb0d
- Applied pty cleanup patch from markus.friedl@informatik.uni-erlangen.de
2000-03-02 23:30:53 +11:00
a22ba0152c
- Big cleanup of autoconf code
...
- Rearranged to be a little more logical
- Added -R option for Solaris
- Rewrote OpenSSL detection code. Now uses AC_TRY_RUN with a test program
to detect library and header location _and_ ensure library has proper
RSA support built in (this is a problem with OpenSSL 0.9.5).
2000-03-02 23:09:20 +11:00
36143d7851
- Removed SOCKS code. Will support through a ProxyCommand.
2000-02-07 13:20:26 +11:00
0c0e4bfe3c
- Add --with-ssl-dir option
2000-02-03 13:58:51 +11:00
1852246d30
- Fixed SEGVs in authloop, fix from vbzoli@hbrt.hu
2000-02-03 01:07:07 +11:00
1787252789
- Documentation fixes from HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp>
...
- Added URLs to Japanese translations of documents by HARUYAMA Seigo
<haruyama@nt.phys.s.u-tokyo.ac.jp>
2000-02-02 20:56:20 +11:00
6552758bae
- Fix lastlog code for directory based lastlogs. Fix from Josh Durham
...
<jmd@aoe.vt.edu>
2000-02-02 19:17:40 +11:00
9e53f35a6a
- Use socket pairs by default (instead of pipes). Prevents race condition
...
on several (buggy) OSs. Report and fix from tridge@linuxcare.com
2000-02-01 23:05:30 +11:00
6034fdfd1f
- Compile fix from Andre Lucas <andre.lucas@dial.pipex.com>
2000-01-29 20:55:09 +11:00
f07390e90d
- Seed OpenSSL's random number generator before generating RSA keypairs
...
- Split random collector into seperate file
2000-01-29 20:40:22 +11:00
c85f9b4851
- Added note in UPGRADING re interop with commercial SSH using idea.
...
Report from Jim Knoble <jmknoble@pobox.com>
- Fix linking order for Kerberos/AFS. Fix from Holget Trapp
<Holger.Trapp@Informatik.TU-Chemnitz.DE>
2000-01-29 10:20:21 +11:00
27f4c78698
- NeXT keeps it lastlog in /usr/adm. Report from
...
mouring@newton.pconline.com
2000-01-27 18:22:13 +11:00
7d7c60d6e7
- Added 'DESTDIR' option to Makefile to ease package building. Patch from
...
Jim Knoble <jmknoble@pobox.com>
- Updated RPM spec files to use DESTDIR
2000-01-26 14:37:48 +11:00
6d84493c8b
- Fixpaths was missing /etc/ssh_known_hosts. Report from Jim Knoble
...
<jmknoble@pobox.com>
2000-01-26 12:17:50 +11:00
0e1cf7caa7
- Use preformatted manpages on SCO, report from Gary E. Miller
...
<gem@rellim.com>
- New URL for x11-ssh-askpass.
2000-01-26 12:15:30 +11:00
fa51a83f54
- Reorder PAM initialisation so it does not mess up lastlog. Reported
...
by Andre Lucas <andre.lucas@dial.pipex.com>
2000-01-26 11:07:22 +11:00
d89c24b57e
- Fix NULL pointer dereference in login.c. Fix from Andre Lucas
...
<andre.lucas@dial.pipex.com>
2000-01-26 11:04:48 +11:00
68cee109e8
- Pick up version 1.2.2 from OpenBSD CVS (no changes, just version number
...
increment)
2000-01-24 17:02:27 +11:00
def0dc9bcc
- Fix lastlog support, patch from Andre Lucas <andre.lucas@dial.pipex.com>
2000-01-23 20:18:35 +11:00
1fa154bb1e
- AIX patch from Matt Richards <v2matt@btv.ibm.com> and David Rankin
...
<drankin@bohemians.lexington.ky.us>
2000-01-23 10:32:03 +11:00
6fe375dee4
- OpenBSD CVS:
...
- [packet.c]
getsockname() requires initialized tolen; andy@guildsoftware.com
2000-01-23 09:38:00 +11:00
1453785bb4
- OpenBSD CVS updates:
...
- [ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
ie. -> i.e.,
2000-01-22 19:57:40 +11:00
f052aaf9f6
- OpenBSD CVS updates:
...
- [packet.c]
use getpeername() in packet_connection_is_on_socket(), fixes sshd -i;
from Holger.Trapp@Informatik.TU-Chemnitz.DE
- [sshd.c]
log with level log() not fatal() if peer behaves badly.
- [readpass.c]
instead of blocking SIGINT, catch it ourselves, so that we can clean
the tty modes up and kill ourselves -- instead of our process group
leader (scp, cvs, ...) going away and leaving us in noecho mode.
people with cbreak shells never even noticed..
2000-01-22 19:47:21 +11:00
8dbbe6e546
- Missing htons() in bsd-bindresvport.c, fix from Holger Trapp
...
<Holger.Trapp@Informatik.TU-Chemnitz.DE>
2000-01-22 18:17:42 +11:00
0727893340
- Make IPv4 use the default in RPM packages
...
- Irix uses preformatted manpages
2000-01-22 14:05:37 +11:00
670a4b8554
- Merge preformatted manpage patch from Andre Lucas
...
<andre.lucas@dial.pipex.com>
2000-01-22 13:53:11 +11:00
91427007bc
- Fix compilation of bsd-snprintf.c on Solaris, fix from Ben Taylor
...
<bent@clark.net>
2000-01-22 13:25:13 +11:00
ee1c0b3d3b
- NetBSD patch from David Rankin <drankin@bohemians.lexington.ky.us> and
...
Christos Zoulas <christos@netbsd.org>
2000-01-21 00:18:15 +11:00
eab2ce0236
- Doc updates
2000-01-20 23:58:22 +11:00
886c63a2c5
- Big manpage and config file cleanup from Andre Lucas
...
<andre.lucas@dial.pipex.com>
- Re-added latest (unmodified) OpenBSD manpages
2000-01-20 23:13:36 +11:00
88b86e40d6
- Big manpage and config file cleanup from Andre Lucas
...
<andre.lucas@dial.pipex.com>
- Re-added latest (unmodified) OpenBSD manpages
2000-01-20 23:13:35 +11:00
396691ad5d
- Update to latest OpenBSD CVS:
...
- [auth-rsa.c]
- fix user/1056, sshd keeps restrictions; dbt@meat.net
- [sshconnect.c]
- disable agent fwding for proto 1.3, remove abuse of auth-rsa flags.
- destroy keys earlier
- split key exchange (kex) and user authentication (user-auth), ok: provos@
- [sshd.c]
- no need for poll.h; from bright@wintelcom.net
- disable agent fwding for proto 1.3, remove abuse of auth-rsa flags.
- split key exchange (kex) and user authentication (user-auth), ok: provos@
2000-01-20 22:44:08 +11:00
eca71f84cb
- Don't use getaddrinfo on AIX
2000-01-20 22:38:27 +11:00
7d80e3484b
- Linux/glibc-2.1.2 takes a *long* time to look up names for AF_UNSPEC
...
addresses using getaddrinfo(). Added a configure switch to make the
default lookup mode AF_INET
2000-01-19 14:36:49 +11:00
eaf9994f7e
- SCO compile fixes from Gary E. Miller <gem@rellim.com>
2000-01-19 13:45:07 +11:00
9550a24e01
- Compile fix from Darren_Hall@progressive.com
2000-01-19 10:41:23 +11:00
e0f4574cd0
- Compile fix for HPUX and Solaris from Andre Lucas
...
<andre.lucas@dial.pipex.com>
2000-01-18 09:12:06 +11:00
ca673b3d03
- Makefile fix from Gary E. Miller <gem@rellim.com>
2000-01-18 09:01:27 +11:00
dbd250f8ab
- Fixed --with-pid-dir option
2000-01-18 08:57:14 +11:00
b13c73e385
- Substitute PID directory in sshd.8. Suggestion from Andrew
...
Stribblehill <a.d.stribblehill@durham.ac.uk>
2000-01-17 22:02:17 +11:00
6640995be8
- Patch from Christos Zoulas <christos@zoulas.com>
...
- Try $prefix first when looking for OpenSSL.
- Include sys/types.h when including sys/socket.h in test programs
2000-01-17 21:40:06 +11:00
b284b546c0
- Fix hang on logout if processes are still using the pty. Needs
...
further testing.
2000-01-17 20:55:18 +11:00
d426ed6e51
- Fix --with-ipaddr-display option test. Fix from Jarno Huuskonen
...
<jhuuskon@hytti.uku.fi>
2000-01-17 19:22:36 +11:00
19fe9c7fd8
- Fix rresvport_af failure errors (logic error in bsd-bindresvport.c)
2000-01-17 15:23:01 +11:00
e219273f93
- Fixed X11 forwarding bug on Linux. libc advertises AF_INET6
...
INADDR_ANY_INIT addresses via getaddrinfo, but may not be able to
deliver (no IPv6 kernel kernel support)
- Released 1.2.1pre27
2000-01-17 13:22:55 +11:00
f693d3b07e
- Document location of Redhat PAM file in INSTALL.
2000-01-17 11:56:27 +11:00
834171ebca
- Revert __snprintf -> snprintf aliasing. Apparently Solaris
...
__snprintf isn't. Report from Theo de Raadt <theo@cvs.openbsd.org>
2000-01-17 09:59:41 +11:00
b9b94a74e6
- Clean up bsd-bindresvport.c. Use arc4random() for picking initial
...
port, ignore EINVAL errors (Linux) when searching for free port.
2000-01-17 09:52:46 +11:00
62a52ef08d
- Compilation fix from Kiyokazu SUTO <suto@ks-and-ks.ne.jp>
...
- Fixed broken bugfix for /dev/ptmx on Linux systems which lack
openpty(). Report from Kiyokazu SUTO <suto@ks-and-ks.ne.jp>
2000-01-16 23:03:56 +11:00
8f92649441
- Compilation fix from Kiyokazu SUTO <suto@ks-and-ks.ne.jp>
2000-01-16 18:19:25 +11:00
5eed6a2d71
- Renamed --with-xauth-path to --with-xauth
...
- Added --with-pid-dir option
- Released 1.2.1pre26
2000-01-16 12:05:18 +11:00
b29ea913cd
- Add --with-xauth-path configure directive and explicit test for
...
/usr/openwin/bin/xauth for Solaris systems. Report from Anders
Nordby <anders@fix.no>
- Fix incorrect detection of /dev/ptmx on Linux systems that lack
openpty. Report from John Seifarth <john@waw.be>
- Look for intXX_t and u_intXX_t in sys/bitypes.h if they are not in
sys/types.h. Fixes problems on SCO, report from Gary E. Miller
<gem@rellim.com>
- Use __snprintf and __vnsprintf if they are found where snprintf and
vnsprintf are lacking. Suggested by Ben Taylor <bent@shell.clark.net>
and others.
2000-01-15 14:12:03 +11:00
34132e54cb
- Merged OpenBSD IPv6 patch:
...
- [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1]
[scp.c packet.h packet.c login.c log.c canohost.c channels.c]
[hostfile.c sshd_config]
ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new
features: sshd allows multiple ListenAddress and Port options. note
that libwrap is not IPv6-ready. (based on patches from
fujiwara@rcac.tdi.co.jp )
- [ssh.c canohost.c]
more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo,
from itojun@
- [channels.c]
listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE)
- [packet.h]
allow auth-kerberos for IPv4 only
- [scp.1 sshd.8 servconf.h scp.c]
document -4, -6, and 'ssh -L 2022/::1/22'
- [ssh.c]
'ssh @host' is illegal (null user name), from
karsten@gedankenpolizei.de
- [sshconnect.c]
better error message
- [sshd.c]
allow auth-kerberos for IPv4 only
- Big IPv6 merge:
- Cleanup overrun in sockaddr copying on RHL 6.1
- Replacements for getaddrinfo, getnameinfo, etc based on versions
from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp>
- Replacement for missing structures on systems that lack IPv6
- record_login needed to know about AF_INET6 addresses
- Borrowed more code from OpenBSD: rresvport_af and requisites
2000-01-14 15:45:46 +11:00
25e4256ad4
- Fixes to auth-skey to enable it to use the standard OpenSSL libraries
2000-01-11 10:59:47 +11:00
fa824cbb7e
Fix typo
2000-01-07 18:51:27 +11:00
75b1d106d7
- Solaris build fix from Gary E. Miller <gem@rellim.com>
2000-01-07 14:01:41 +11:00
2edcda5d4c
- New config.sub and config.guess to fix problems on SCO. Supplied
...
by Gary E. Miller <gem@rellim.com>
2000-01-07 08:56:05 +11:00
105b7f073a
- Better KrbIV / AFS detection, based on patch from:
...
Holger Trapp <Holger.Trapp@Informatik.TU-Chemnitz.DE>
2000-01-07 08:45:55 +11:00
1808f38e04
- Fixed annoying DES corruption problem. libcrypt has been
...
overriding symbols in libcrypto. Removed libcrypt and crypt.h
altogether (libcrypto includes its own crypt(1) replacement)
- Added platform-specific rules for Irix 6.x. Included warning that
they are untested.
2000-01-06 12:03:12 +11:00
62ab38ab9e
- OpenBSD CVS updates
...
- [ssh-agent.c]
cleanup_exit() for SIGTERM/SIGHUP, too. from fgsch@ and
dgaudet@arctic.org
- [sshconnect.c]
compare correct version for 1.3 compat mode
2000-01-03 23:41:05 +11:00
e9c8f4dfdc
- Removed "nullok" directive from default PAM configuration files.
...
Added information on enabling EmptyPasswords on openssh+PAM in
UPGRADING file.
2000-01-03 20:00:52 +11:00
645c598d3c
- Add explicit make rules for files proccessed by fixpaths.
...
- Fix "make install" in RPM spec files. Report from Tenkou N. Hattori
<tnh@kondara.org>
2000-01-03 14:42:09 +11:00
8beab01b49
- Run fixpaths before install. (Andre Lucas)
2000-01-02 11:52:49 +11:00
5121e3aaa6
- Properly clean up on exit of ssh-agent. Patch from Dean Gaudet
...
<dgaudet@arctic.org>
2000-01-02 11:49:28 +11:00
6b85a7ffa6
- Added support for directory-based lastlogs
...
- Really fix typedefs, patch from Ben Taylor <bent@clark.net>
- Prevent multiple inclusion of config.h and defines.h. Suggested
by Andre Lucas <andre.lucas@dial.pipex.com>
2000-01-02 11:45:33 +11:00
aa7b64d98a
- Remove test for quad_t. No longer needed.
1999-12-31 09:55:34 +11:00
e7f626c8f1
- Really fix broken default path. Fix from Jim Knoble
...
<jmknoble@pobox.com>
1999-12-31 09:49:44 +11:00
3131d8bc71
- Fill in ut_utaddr utmp field. Report from Benjamin Charron
...
<iretd@bigfoot.com>
1999-12-31 09:42:24 +11:00
b2532b3be4
- Prevent typedefs from being compiled more than once. Report from
...
Marc G. Fournier <marc.fournier@acadiau.ca>
1999-12-31 09:18:12 +11:00
03783f0477
- Fix occasional crash on LinuxPPC. Patch from Franz Sirl
...
<Franz.Sirl-kernel@lauterbach.com>
1999-12-31 09:16:40 +11:00
f3e8be87eb
- Fix broken autoconf typedef detection. Report from Marc G.
...
Fournier <marc.fournier@acadiau.ca>
1999-12-31 08:59:04 +11:00
8eb0fd6d6f
- Fix password support on systems with a mixture of shadowed and
...
non-shadowed passwords (e.g. NIS). Report and fix from
HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp>
1999-12-31 08:49:13 +11:00
8bdeee25f8
- Merged Dante SOCKS support patch from David Rankin
...
<drankin@bohemians.lexington.ky.us>
- Updated documentation with ./configure options
1999-12-30 15:50:54 +11:00
e72b7af17e
- Removed most of the pam code into its own file auth-pam.[ch]. This
...
cleaned up sshd.c up significantly.
- Several other cleanups
1999-12-30 15:08:44 +11:00
ece22a8312
- OpenBSD CVS updates:
...
- [auth-passwd.c]
check for NULL 1st
1999-12-30 09:48:15 +11:00
58ca7d8503
- Rename helper.[ch] to (more appropriate) bsd-misc.[ch]
...
- Minor Makefile cleaning
1999-12-29 19:56:30 +11:00
06b472b124
*** empty log message ***
1999-12-29 19:47:06 +11:00
9505851f31
- Detect missing size_t and typedef it.
1999-12-29 10:36:45 +11:00
ac3a4b4a96
- Calls to pam_setcred, patch from Nalin Dahyabhai
...
<nalin@thermo.stat.ncsu.edu>
1999-12-29 10:25:40 +11:00
d00d1611e4
- Print whether OpenSSH was compiled with RSARef, patch from
...
Nalin Dahyabhai <nalin@thermo.stat.ncsu.edu>
1999-12-29 10:17:09 +11:00
e79334a2b0
- Autodetect perl, patch from David Rankin
...
<drankin@bohemians.lexington.ky.us>
1999-12-29 10:03:37 +11:00
9550a76c37
- Applied another NetBSD portability patch from David Rankin
...
<drankin@bohemians.lexington.ky.us>
- Fix --with-default-path option.
1999-12-29 02:32:22 +11:00
74d0d4a3d9
- Merged AIX patch from Darren Hall <dhall@virage.org>
...
- Cleaned up defines.h
1999-12-29 02:24:35 +11:00
beb4ba5a68
- Portability fixes for Irix 5.3 (now compiles OK!)
...
- autoconf and other misc cleanups
1999-12-28 15:09:35 +11:00
4ff2b9bf42
- NetBSD login.c compile fix from David Rankin
...
<drankin@bohemians.lexington.ky.us>
- Fully set ut_tv if present in utmp or utmpx
1999-12-28 10:41:12 +11:00
13bc0be2b6
- Replacement for getpagesize() for systems which lack it
1999-12-28 10:19:16 +11:00
68e45de53b
- OpenBSD CVS updates:
...
- [packet.h auth-rhosts.c]
check format string for packet_disconnect and packet_send_debug, too
- [channels.c]
use packet_get_maxsize for channels. consistence.
1999-12-27 23:54:55 +11:00
6a5d4d61bd
*** empty log message ***
1999-12-27 16:46:17 +11:00
e12762437c
- Use last few chars of tty line as ut_id
1999-12-27 11:33:56 +11:00
373d2917a8
- PAM bugfix. PermitEmptyPassword was being ignored.
...
- Fixed PAM config files to allow empty passwords if server does.
- Explained spurious PAM auth warning workaround in UPGRADING
1999-12-27 10:45:54 +11:00
5a3e68382d
- Added --with-default-path to specify custom path for server
...
- Removed #ifdef trickery from acconfig.h into defines.h
1999-12-27 09:48:56 +11:00
c0d7390398
- Automatically correct paths in manpages and configuration files. Patch
...
and script from Andre Lucas <andre.lucas@dial.pipex.com>
- Removed credits from README to CREDITS file, updated.
1999-12-27 09:23:58 +11:00
aae1093640
- Redhat RPM spec fixes from Jim Knoble <jmknoble@pobox.com>
1999-12-26 19:38:17 +11:00
9673b2b59a
- Fixed implicit '.' in default path, report from Jim Knoble
...
<jmknoble@pobox.com>
1999-12-26 19:10:30 +11:00
4f0fa56b5d
- OpenBSD CVS update:
...
- [ssh-keygen.1 ssh.1]
remove ref to .ssh/random_seed, mention .ssh/environment in
.Sh FILES, too
1999-12-26 14:24:41 +11:00
d49621ea53
- Disable logging of PAM success and failures, PAM is verbose enough.
...
Unfortunatly there is currently no way to disable auth failure
messages. Mention this in UPGRADING file and sent message to PAM
developers
1999-12-26 14:04:33 +11:00
47707dbda3
Doh! RPM doesn't support conditional building
1999-12-26 12:46:46 +11:00
3688440c4d
- Revised RPM package to include Jim Knoble's <jmknoble@pobox.com>
...
X11 ssh-askpass program.
- Revised RPM package to use conditional building of gnome and X11
askpass packages.
1999-12-26 12:26:21 +11:00
32b3cf2c96
19991226
...
- Enabled utmpx support by default for Solaris
- Cleanup sshd.c PAM a little more
19991225
- Merged fixes from Ben Taylor <bent@clark.net>
- Fixed configure support for PAM. Reported by Naz <96na@eng.cam.ac.uk>
- Disabled logging of PAM password authentication failures when password
is empty. (e.g start of authentication loop). Reported by Naz
<96na@eng.cam.ac.uk>)
1999-12-26 10:21:48 +11:00
Damien Miller