tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,337 Commits 6 Branches 20 Tags 99 MiB
Commit Graph

441 Commits

Author SHA1 Message Date
Damien Miller b497e920b4 Teach the GTK2/3 ssh-askpass the new prompt hints 
ssh/ssh-agent now sets a hint environment variable $SSH_ASKPASS_PROMPT
when running the askpass program. This is intended to allow the
askpass to vary its UI across the three cases it supports: asking for
a passphrase, confirming the use of a key and (recently) reminding
a user to touch their security key.

This adapts the gnome-ssh-askpass[23] to use these hints. Specifically,
for SSH_ASKPASS_PROMPT=confirm it will skip the text input box and show
only "yes"/"no" buttons. For SSH_ASKPASS_PROMPT=none (used to remind
users to tap their security key), it shows only a "close" button.

Help wanted: adapt the other askpass programs in active use, including
x11-ssh-askpass, lxqt-openssh-askpass, etc.
 2019-11-18 15:22:40 +11:00
Damien Miller cdf1d0a9f5 prepare for 8.1 release 2019-10-09 11:31:03 +11:00
Sorin Adrian Savu 2459df9aa1 openssl-devel is obsoleted by libssl-devel 
openssl-devel is no longer installable via the cygwin setup and
it's hidden by default, so you can't see the replacement very easy.
 2019-06-05 15:04:57 +10:00
Damien Miller a924de0c49 update versions 2019-04-05 03:41:52 +11:00
Darren Tucker 825ab32f0d On Cygwin run sshd as SYSTEM where possible. 
Seteuid now creates user token using S4U.  We don't create a token
from scratch anymore, so we don't need the "Create a process token"
privilege.  The service can run under SYSTEM again...

...unless Cygwin is running on Windows Vista or Windows 7 in the
WOW64 32 bit emulation layer.  It turns out that WOW64 on these systems
didn't implement MsV1_0 S4U Logon so we still need the fallback
to NtCreateToken for these systems.

Signed-off-by: Corinna Vinschen <vinschen@redhat.com>
 2019-03-14 08:51:17 +11:00
Corinna Vinschen 1d05b4adcb Cygwin: only tweak sshd_config file if it's new, drop creating sshd user 
The sshd_config tweaks were executed even if the old file was
still in place.  Fix that.  Also disable sshd user creation.
It's not used on Cygwin.
 2019-01-28 09:57:58 +11:00
Corinna Vinschen 89843de0c4 Cygwin: Change service name to cygsshd 
Microsoft hijacked the sshd service name without asking.
 2019-01-28 09:57:58 +11:00
Darren Tucker f2970868f8 Improve warnings in cygwin service setup. 
bz#2922, patch from vinschen at redhat.com.
 2018-11-11 15:58:20 +11:00
Darren Tucker bd2d54fc1e Remove hardcoded service name in cygwin setup. 
bz#2922, patch from Christian.Lupien at USherbrooke.ca, sanity check
by vinschen at redhat.com.
 2018-11-11 15:54:54 +11:00
Damien Miller a7205e68de update version numbers ahead of release 2018-10-12 09:47:20 +11:00
Damien Miller c8313e4923 update version numbers in anticipation of release 2018-08-17 05:45:36 +10:00
Darren Tucker 7703ae5f5d Use ssh-keygen -A to generate missing host keys. 
Instead of testing for each specific key type, use ssh-keygen -A to
generate any missing host key types.
 2018-06-06 16:05:44 +10:00
Damien Miller 10479cc2a4 Many typo fixes from Karsten Weiss 
Spotted using https://github.com/lucasdemarchi/codespell
 2018-04-10 10:19:02 +10:00
Damien Miller a0349a1cc4 update versions in .spec files 2018-04-02 15:38:28 +10:00
Darren Tucker 265d88d4e6 Remove remaining now-obsolete cvs $Ids. 2018-02-15 20:06:19 +11:00
Darren Tucker cdb10bd431 Add changelog entry for binary strip change. 2018-02-10 11:18:38 +11:00
Darren Tucker 937d96587d Don't strip binaries so debuginfo gets built. 
Tell install not to strip binaries during package creation so that the
debuginfo package can be built.
 2018-02-10 11:12:45 +11:00
Darren Tucker eb0865f330 Fix bogus dates in changelog. 2018-02-10 10:33:11 +11:00
Darren Tucker 7fbde1b34c Remove SSH1 from description. 2018-02-10 10:25:15 +11:00
Darren Tucker 9c34a76f09 Add support for compat-openssl10 build dep. 2018-02-10 10:23:00 +11:00
Darren Tucker 04f4e8193c Add leading zero so it'll work when rhel not set. 
When rhel is not set it will error out with "bad if". Add leading zero
as per https://fedoraproject.org/wiki/Packaging:DistTag so it'll work
on non-RHEL.
 2018-02-10 09:58:32 +11:00
Darren Tucker 12abd67a6a Update openssl-devel dependency. 2018-02-10 09:58:32 +11:00
nkadel b33e7645f8 Add mandir with-mandir' for RHEL 5 compatibility. 
Activate '--mandir' and '--with-mandir' settings in setup for RHEL
5 compatibility.
 2018-02-10 09:58:32 +11:00
nkadel 94f8bf360e Discard 'K5DIR' reporting. 
It does not work inside 'mock' build environment.
 2018-02-10 09:58:32 +11:00
nkadel bb7e54dbaf Add 'dist' to 'rel' for OS specific RPM names. 2018-02-10 09:58:32 +11:00
nkadel 87346f1f57 Add openssh-devel >= 0.9.8f for redhat spec file. 2018-02-10 09:58:32 +11:00
nkadel bec1478d71 Enhance BuildRequires for openssh-x11-askpass. 2018-02-10 09:58:32 +11:00
nkadel 3104fcbdd3 Always include x11-ssh-askpass SRPM. 
Always include x11-ssh-askpass tarball in redhat SRPM, even if unused.
 2018-02-10 09:58:32 +11:00
Darren Tucker 6c8a246437 Replace mkinstalldirs with mkdir -p. 
Check for MIKDIR_P and use it instead of mkinstalldirs.  Should fix "mkdir:
cannot create directory:... File exists" during "make install".
Patch from eb at emlix.com.
 2017-12-01 17:13:34 +11:00
Darren Tucker 79226e5413 Remove RSA1 host key generation. 
SSH1 support is now gone, remove SSH1 key generation.
Patch from eb at emlix.com.
 2017-12-01 16:55:35 +11:00
Damien Miller 35ff70a04d sync contrib/ssh-copy-id with upstream 2017-10-01 10:01:25 +11:00
Damien Miller 290843b8ed update version in RPM spec files 2017-10-01 09:59:19 +11:00
Darren Tucker 197dc9728f Update link for my patches. 2017-06-29 15:40:25 +10:00
Damien Miller 72536316a2 crank version numbers 2017-03-20 12:23:04 +11:00
Damien Miller 55a1117d73 Adapt Cygwin config script to privsep knob removal 
Patch from Corinna Vinschen.
 2017-03-16 11:22:42 +11:00
Damien Miller 4a354fc231 crank version numbers for release 2016-12-19 15:59:41 +11:00
Damien Miller c9792783a9 Add a gnome-ssh-askpass3 target for GTK+3 version 
Based on patch from Colin Watson via bz#2640
 2016-12-06 18:43:37 +11:00
Damien Miller 7be85ae02b Make gnome-ssh-askpass2.c GTK+3-friendly 
Patch from Colin Watson via bz#2640
 2016-12-06 18:43:37 +11:00
Darren Tucker 461f50e7ab Update links to https. 
www.openssh.com now supports https and ftp.openbsd.org no longer
supports ftp.  Make all links to these https.
 2016-10-21 06:55:58 +11:00
Damien Miller 80e766fb08 crank version numbers 2016-07-24 21:50:13 +10:00
Darren Tucker 1842420016 Add missing ssh-host-config --name option 
Patch from vinschen@redhat.com.
 2016-05-30 19:35:28 +10:00
Damien Miller cff26f373c remove slogin from *.spec 2016-03-15 04:30:21 +11:00
Darren Tucker 8ff20ec95f Quote variables that may contain whitespace. 
The variable $L_TMP_ID_FILE needs to be surrounded by quotes in order to
survive paths containing whitespace.  bz#2551, from Corinna Vinschen via
Philip Hands.
 2016-03-14 09:24:03 +11:00
Damien Miller 99135c764f update spec/README versions ahead of release 2016-02-23 20:17:23 +11:00
Damien Miller ef39e8c049 sync ssh-copy-id with upstream 783ef08b0a75 2016-02-16 10:34:39 +11:00
Damien Miller 8d7b523b96 bump version numbers 2016-01-27 16:39:01 +11:00
Darren Tucker ee607cccb6 Increase robustness of redhat/openssh.spec 
- remove configure --with-rsh, because this option isn't supported anymore
 - replace last occurrence of BuildPreReq by BuildRequires
 - update grep statement to query the krb5 include directory

Patch from CarstenGrohmann via github, ok djm.
 2015-12-15 15:23:49 +11:00
Damien Miller a4f5b507c7 fix URL for connect.c 2015-08-21 14:43:55 +10:00
Damien Miller d026a8d3da update version numbers for 7.1 2015-08-21 13:47:10 +10:00
Damien Miller 318c377435 update versions in *.spec 2015-08-11 13:53:48 +10:00
Damien Miller 66295e0e1b crank version numbers for release 2015-07-01 11:49:12 +10:00
Damien Miller be8f658e55 update version numbers to match version.h 2015-03-04 15:39:22 -08:00
Damien Miller 2048f85a5e include CFLAGS in gnome askpass targets 
from Fedora
 2014-12-18 10:15:49 +11:00
Damien Miller 867f49c666 Avoid Cygwin ssh-host-config reading /etc/group 
Patch from Corinna Vinschen
 2014-11-26 13:22:41 +11:00
Damien Miller 8b66f36291 allow custom service name for sshd on Cygwin 
Permits the use of multiple sshd running with different service names.

Patch by Florian Friesdorf via Corinna Vinschen
 2014-11-26 13:20:35 +11:00
Damien Miller 0e4cff5f35 Prepare scripts for next Cygwin release 
Makes the Cygwin-specific ssh-user-config script independent of the
existence of /etc/passwd.  The next Cygwin release will allow to
generate passwd and group entries from the Windows account DBs, so the
scripts have to adapt.

from Corinna Vinschen
 2014-11-05 11:01:31 +11:00
Damien Miller 81d18ff7c9 delete contrib/caldera directory 2014-10-07 21:24:25 +11:00
Damien Miller 44988defb1 - (djm) [contrib/cygwin/ssh-host-config] Fix old code leading to 
permissions/ACLs; from Corinna Vinschen
 2014-09-03 05:35:32 +10:00
Damien Miller 54703e3cf6 - (djm) [contrib/cygwin/README] Correct build instructions; from Corinna 2014-08-20 11:10:51 +10:00
Damien Miller a75aca1bbc - (djm) [INSTALL contrib/caldera/openssh.spec contrib/cygwin/README] 
[contrib/redhat/openssh.spec contrib/suse/openssh.spec] Remove mentions
   of TCP wrappers.
 2014-08-19 11:36:07 +10:00
Damien Miller 9eaeea2cf2 - (djm) [README contrib/caldera/openssh.spec] 
[contrib/redhat/openssh.spec contrib/suse/openssh.spec] Update versions
 2014-08-10 11:35:05 +10:00
Damien Miller f9eb5e0734 - (djm) [contrib/cygwin/ssh-host-config] Updated Cygwin ssh-host-config 
from Corinna Vinschen, fixing a number of bugs and preparing for
   Cygwin 1.7.30.
 2014-05-27 14:31:58 +10:00
Damien Miller 6486f16f1c - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Crank version numbers
 2014-02-28 10:03:52 +11:00
Damien Miller 2ae77e64f8 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Crank RPM spec version numbers.
 2014-01-16 18:51:07 +11:00
Darren Tucker aff7ef1bb8 - (dtucker) [contrib/cygwin/ssh-host-config] Simplify host key generation: 
rather than testing and generating each key, call ssh-keygen -A.
   Patch from vinschen at redhat.com.
 2013-11-09 00:19:22 +11:00
Damien Miller 3420a50169 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Update version numbers following release.
 2013-11-08 16:48:13 +11:00
Damien Miller e9e936d33b - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Update version numbers
 2013-07-25 12:34:00 +10:00
Darren Tucker b7482cff46 - (dtucker) [contrib/cygwin/README contrib/cygwin/ssh-host-config 
contrib/cygwin/ssh-user-config] Modernizes and improve readability of
   the Cygwin README file (which hasn't been updated for ages), drop
   unsupported OSes from the ssh-host-config help text, and drop an
   unneeded option from ssh-user-config.  Patch from vinschen at redhat com.
 2013-07-02 20:06:46 +10:00
Darren Tucker b4e00949f0 - (dtucker) [contrib/ssh-copy-id] bz#2117: Use portable operator in test. 
Patch from cjwatson at debian.
 2013-06-05 22:48:44 +10:00
Damien Miller 6aa3eacc5e - (djm) [contrib/ssh-copy-id] Fix bug that could cause "rm *" to be 
executed if mktemp failed; bz#2105 ok dtucker@
 2013-05-16 11:10:17 +10:00
Damien Miller 83efe7c861 - (djm) [contrib/ssh-copy-id contrib/ssh-copy-id.1] Updated to Phil 
Hands' greatly revised version.
 2013-03-22 10:17:36 +11:00
Damien Miller c0cc7ce166 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Crank version numbers
 2013-02-27 10:48:18 +11:00
Damien Miller 91edc1ce2b - (djm) [contrib/suse/rc.sshd] Use SSHD_BIN consistently; bz#2056 from 
Iain Morgan
 2013-02-15 10:23:44 +11:00
Damien Miller e7f50e1c18 - (djm) [contrib/redhat/sshd.init] treat RETVAL as an integer; 
patch from Iain Morgan in bz#2059
 2013-02-08 10:49:37 +11:00
Damien Miller 39a9d2c933 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Update version numbers
 2012-08-22 21:57:13 +10:00
Darren Tucker 62dcd63f5e - (dtucker) [contrib/cygwin/ssh-host-config] Ensure that user sshd runs as 
can logon as a service.  Patch from vinschen at redhat com.
 2012-06-22 22:02:42 +10:00
Darren Tucker 593538911a - (dtucker) [configure.ac contrib/Makefile] bz#1996: use AC_PATH_TOOL to find 
pkg-config so it does the right thing when cross-compiling.  Patch from
   cjwatson at debian org.
 2012-05-19 15:24:37 +10:00
Damien Miller 8beb320390 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Update for release 6.0
 2012-04-20 10:58:34 +10:00
Darren Tucker 67ccc86506 - (dtucker) [contrib/redhat/openssh.spec] Bug #1992: remove now-gone WARNING 
file from spec file.  From crighter at nuclioss com.
 2012-03-30 10:19:56 +11:00
Darren Tucker 9f157abbb6 - (dtucker) [contrib/cygwin/Makefile] Continue if installing a doc file 
fails.  Patch from Corinna Vinschen.
 2011-10-25 09:37:57 +11:00
Damien Miller 022ee24197 - (djm) [contrib/redhat/openssh.spec] Correct restorcon => restorecon 2011-09-07 09:15:02 +10:00
Damien Miller 86dcd3e45a - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Update version numbers.
 2011-09-05 10:29:04 +10:00
Damien Miller 44a6c9340a - (djm) [contrib/ssh-copy-id] Missing backlslash; spotted by 
bisson AT archlinux.org
 2011-08-17 12:01:44 +10:00
Damien Miller d1eb1dd5ed - (djm) [contrib/ssh-copy-id] Fix failure for cases where the path to the 
identify file contained whitespace. bz#1828 patch from gwenael.lambrouin
   AT gmail.com; ok dtucker@
 2011-08-12 11:22:47 +10:00
Damien Miller 2db9977c06 - (djm) [contrib/redhat/openssh.spec contrib/redhat/sshd.init] 
[contrib/suse/openssh.spec contrib/suse/rc.sshd] Updated RHEL and SLES
   init scrips from imorgan AT nas.nasa.gov
 2011-08-12 11:02:35 +10:00
Darren Tucker c412c1567b - (dtucker) [README version.h contrib/caldera/openssh.spec 
contrib/redhat/openssh.spec contrib/suse/openssh.spec] Pull the version
   bumps from the 5.8p2 branch into HEAD.  ok djm.
 2011-06-03 10:35:23 +10:00
Damien Miller f22019bdbf - (djm) [Makefile.in WARNING.RNG aclocal.m4 buildpkg.sh.in configure.ac] 
[entropy.c ssh-add.c ssh-agent.c ssh-keygen.c ssh-keyscan.c]
   [ssh-keysign.c ssh-pkcs11-helper.c ssh-rand-helper.8 ssh-rand-helper.c]
   [ssh.c ssh_prng_cmds.in sshd.c contrib/aix/buildbff.sh]
   [regress/README.regress] Remove ssh-rand-helper and all its
   tentacles. PRNGd seeding has been rolled into entropy.c directly.
   Thanks to tim@ for testing on affected platforms.
 2011-05-05 13:48:37 +10:00
Darren Tucker e541aaaf0f - (dtucker) [contrib/cygwin/ssh-host-config] From Corinna: revamp of the 
Cygwin-specific service installer script ssh-host-config.  The actual
   functionality is the same, the revisited version is just more
   exact when it comes to check for problems which disallow to run
   certain aspects of the script.  So, part of this script and the also
   rearranged service helper script library "csih" is to check if all
   the tools required to run the script are available on the system.
   The new script also is more thorough to inform the user why the
   script failed.  Patch from vinschen at redhat com.
 2011-02-21 21:41:29 +11:00
Darren Tucker ea676a6422 - (dtucker) [contrib/cygwin/ssh-{host,user}-config] Add ECDSA key 
generation and simplify.  Patch from Corinna Vinschen.
 2011-02-06 13:31:23 +11:00
Damien Miller 0d30b092ce - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] update versions in docs and spec files.
 - Release OpenSSH 5.8p1
 2011-02-04 12:43:36 +11:00
Damien Miller 966accc533 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] update versions in docs and spec files.
 2011-01-22 20:23:10 +11:00
Tim Rice 15e1b4dea7 - (tim) [contrib/caldera/openssh.spec] Use CFLAGS from Makefile instead 
of RPM so build completes. Signatures were changed to .asc since 4.1p1.
 2011-01-18 20:47:04 -08:00
Darren Tucker 6889abd9ad - (dtucker) [contrib/redhat/sshd.init] Bug #1810: initlog is deprecated, 
remove.  Patch from martynas at venck us.
 2010-08-27 10:12:54 +10:00
Darren Tucker 02c47341a2 - (dtucker) bug #1530: strip trailing ":" from hostname in ssh-copy-id. 
based in part on a patch from Colin Watson, ok djm@
 2010-08-10 13:36:09 +10:00
Damien Miller 792010bafd - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] 
[contrib/suse/openssh.spec] Crank version numbers
 2010-08-09 02:32:05 +10:00
Darren Tucker 12b29dbd8a - (dtucker) [contrib/ssh-copy-ud.1] Bug #1786: update ssh-copy-id.1 with more 
details about its behaviour WRT existing directories.  Patch from
   asguthrie at gmail com, ok djm.
 2010-07-19 21:24:13 +10:00
Tim Rice cfbdc28ffe - (tim) [contrib/redhat/openssh.spec] Bug 1796: Test for skip_x11_askpass 
(line 77) should have been for no_x11_askpass.
 2010-07-14 13:42:28 -07:00
Damien Miller ea909791c5 - (djm) [contrib/ssh-copy-id] Update key file explicitly under ~ 
rather than assuming that $CWD == $HOME. bz#1500, patch from
   timothy AT gelter.com
 2010-06-18 11:09:24 +10:00
Tim Rice b9ae4ec556 - (tim) [contrib/cygwin/README] Remove a reference to the obsolete 
minires-devel package, and to add the reference to the libedit-devel
   package since CYgwin now provides libedit. Patch from Corinna Vinschen.
 2010-06-17 11:11:44 -07:00
Darren Tucker e25a9bd740 - (dtucker) [contrib/aix/buildbff.sh] Fix creation of ssh_prng_cmds.default 
file.
 2010-04-18 13:35:00 +10:00