025df4a1b4
- markus@cvs.openbsd.org 2001/03/14 08:57:14
...
[sftp-client.c]
Wall
2001-03-14 15:16:34 +00:00
3c02768950
- (djm) Add replacement glob() from OpenBSD libc if the system glob is
...
missing or lacks the GLOB_ALTDIRFUNC extension
- (djm) Remove -I$(srcdir)/openbsd-compat from CFLAGS, refer to headers
relatively. Avoids conflict between glob.h and /usr/include/glob.h
2001-03-14 11:39:45 +11:00
46e55aaabc
- Fix strerror() in bsd-misc.c
2001-03-13 23:38:20 +00:00
4870afd7c7
- djm@cvs.openbsd.org 2001/03/13 22:42:54
...
[sftp-client.c sftp-client.h sftp-glob.c sftp-glob.h sftp-int.c]
sftp client filename globbing for get, put, ch{mod,grp,own}. ok markus@
2001-03-14 10:27:09 +11:00
056ddf7af3
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/03/13 17:34:42
[auth-options.c]
missing xfree, deny key on parse error; ok stevesk@
2001-03-14 10:15:20 +11:00
cfccef96a3
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/03/12 22:02:02
[key.c key.h ssh-add.c ssh-keygen.c sshconnect.c sshconnect2.c]
remove old key_fingerprint interface, s/_ex//
2001-03-13 04:57:58 +00:00
9ae2bb6790
- (bal) Reorder includes in Makefile.
2001-03-12 05:16:18 +00:00
3e292fab40
- (djm) Add "static_openssl" RPM build option, remove rsh build dependency
2001-03-12 14:47:30 +11:00
547c276203
- (djm) Bump portable version number for generating test RPMs
2001-03-12 14:23:52 +11:00
8fd372b194
- markus@cvs.openbsd.org 2001/03/11 22:33:24
...
[ssh-keygen.1 ssh-keygen.c]
remove -v again. use -B instead for bubblebabble. make -B consistent
with -l and make -B work with /path/to/known_hosts. ok deraadt@
2001-03-12 03:02:17 +00:00
f0b4853d86
- markus@cvs.openbsd.org 2001/03/11 18:29:51
...
[key.c]
style+cleanup
2001-03-12 02:59:31 +00:00
bee3f2224c
test if snprintf() supports %ll
...
add /dev to search path for PRNGD/EGD socket
fix my mistake in USER_PATH test program
2001-03-11 17:32:12 -08:00
ca0bf57f2f
- deraadt@cvs.openbsd.org 2001/03/11 16:39:03
...
[ssh-keygen.c]
KNF, and SHA1 binary output is just creeping featurism
2001-03-11 20:08:29 +00:00
cbe3ad2f70
- jakob@cvs.openbsd.org 2001/03/11 15:13:09
...
[key.c]
cleanup & shorten some var names key_fingerprint_bubblebabble.
2001-03-11 20:06:59 +00:00
a8a73e62ed
- jakob@cvs.openbsd.org 2001/03/11 15:04:16
...
[ssh-keygen.1 ssh-keygen.c]
print both md5, sha1 and bubblebabble fingerprints when using
ssh-keygen -l -v. ok markus@.
2001-03-11 20:05:19 +00:00
96e8ea6a31
- jakob@cvs.openbsd.org 2001/03/11 15:03:16
...
[key.c key.h]
add improved fingerprint functions. based on work by Carsten
Raskgaard <cara@int.tele.dk> and modified by me. ok markus@.
2001-03-11 20:03:44 +00:00
b54873ad24
- markus@cvs.openbsd.org 2001/03/11 13:25:36
...
[auth2.c key.c]
debug
2001-03-11 20:01:55 +00:00
b9be60a722
- markus@cvs.openbsd.org 2001/03/10 17:51:04
...
[kex.c match.c match.h readconf.c readconf.h sshconnect2.c]
add PreferredAuthentications
2001-03-11 01:49:19 +00:00
7f283fcc94
- tim@mindrot.org 2001/03/10 16:33:42 [configure.in Makefile.in sshd_config]
...
make sure $bindir is in USER_PATH so scp will work
2001-03-10 16:52:25 -08:00
d20d0f3e27
- deraadt@cvs.openbsd.org 2001/03/10 15:31:00
...
[compat.c compat.h sshconnect.c]
all known netscreen ssh versions, and older versions of OSU ssh cannot
handle password padding (newer OSU is fixed)
2001-03-10 17:22:20 +00:00
00261540be
- stevesk@cvs.openbsd.org 2001/03/10 15:02:05
...
[ttymodes.c ttymodes.h]
remove unused sgtty macros; ok markus@
2001-03-10 17:17:28 +00:00
068f3dce28
- deraadt@cvs.openbsd.org 2001/03/10 12:53:51
...
[readconf.c ssh_config]
default to SSH2, now that m68k runs fast
2001-03-10 17:15:39 +00:00
329782e3db
- markus@cvs.openbsd.org 2001/03/10 12:48:27
...
[sshconnect2.c]
ignore nonexisting private keys; report rjmooney@mediaone.net
2001-03-10 17:08:59 +00:00
5f5419a6a2
- Removed log.o from sftp client. Not needed.
2001-03-09 19:48:37 +00:00
ca42d5fb7f
- deraadt@cvs.openbsd.org 2001/03/09 12:30:29
...
[sshd.c]
typo; slade@shore.net
2001-03-09 18:25:32 +00:00
5fc6270fe9
- deraadt@cvs.openbsd.org 2001/03/09 03:14:39
...
[ssh-keygen.c]
create *.pub files with umask 0644, so that you can mv them to
authorized_keys
2001-03-09 18:19:24 +00:00
266dfdfd62
- markus@cvs.openbsd.org 2001/03/08 21:42:33
...
[compat.c compat.h readconf.h ssh.c sshconnect1.c sshconnect2.c]
implement client side of SSH2_MSG_USERAUTH_PK_OK (test public key ->
no need to do enter passphrase or do expensive sign operations if the
server does not accept key).
2001-03-09 00:12:22 +00:00
283cb821cd
- stevesk@cvs.openbsd.org 2001/03/08 20:44:48
...
[sftp.1]
spelling, cleanup; ok deraadt@
2001-03-09 00:09:02 +00:00
a038498797
- stevesk@cvs.openbsd.org 2001/03/08 18:47:12
...
[auth1.c]
unused; ok markus@
2001-03-08 20:37:22 +00:00
52dd46855d
- (stevesk) Reliant Unix (SNI) needs HAVE_BOGUS_SYS_QUEUE_H;
...
Dirk Markwardt <D.Markwardt@tu-bs.de>
2001-03-08 18:26:57 +00:00
cebc858ca2
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/03/08 00:15:48
[readconf.c ssh.1]
turn off useprivilegedports by default. only rhost-auth needs
this. older sshd's may need this, too.
2001-03-08 03:39:10 +00:00
058316f0f1
- OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2001/03/07 10:11:23
[sftp-client.c sftp-client.h sftp-int.c sftp-server.c sftp.1 sftp.c sftp.h]
Support for new draft (draft-ietf-secsh-filexfer-01). New symlink handling
functions and small protocol change.
2001-03-08 10:08:49 +11:00
8ac0a7ec44
- Cygwin contrib improvements from Corinna Vinschen <vinschen@redhat.com>
2001-03-07 21:38:19 +11:00
b29e34d1e4
- deraadt@cvs.openbsd.org 2001/03/07 04:05:58
...
[ssh.1]
removed dated comment
2001-03-07 06:08:50 +00:00
d58eb5f50e
- deraadt@cvs.openbsd.org 2001/03/07 01:19:06
...
[ssh.1 sshd.8]
the name "secure shell" is boring, noone ever uses it
2001-03-07 06:07:22 +00:00
c9b6eabb49
- deraadt@cvs.openbsd.org 2001/03/06 15:10:42
...
[sftp.1]
order things
2001-03-07 01:29:17 +00:00
562c26bccf
- deraadt@cvs.openbsd.org 2001/03/06 06:11:44
...
[sftp-int.c sftp.1 sftp.c]
sftp -b batchfile; mouring@etoh.eviladmin.org
2001-03-07 01:26:48 +00:00
e21c4adaac
- deraadt@cvs.openbsd.org 2001/03/06 06:11:18
...
[ssh-keyscan.c]
appease gcc
2001-03-07 01:23:30 +00:00
ebc882757b
- millert@cvs.openbsd.org 2001/03/06 01:08:27
...
[clientloop.c]
If read() fails with EINTR deal with it the same way we treat EAGAIN
2001-03-06 03:34:40 +00:00
884a4aca88
- millert@cvs.openbsd.org 2001/03/06 01:06:03
...
[ssh-keyscan.c]
Don't assume we wil get the version string all in one read().
deraadt@ OK'd
2001-03-06 03:33:04 +00:00
b3144e58e7
- deraadt@cvs.openbsd.org 2001/03/06 00:33:04
...
[authfd.c cli.c ssh-agent.c]
EINTR/EAGAIN handling is required in more cases
2001-03-06 03:31:34 +00:00
be6a5a6dfe
- stevesk@cvs.openbsd.org 2001/03/05 17:58:22
...
[dh.c]
spelling
2001-03-06 01:13:06 +00:00
1e62174af1
- stevesk@cvs.openbsd.org 2001/03/05 17:40:48
...
[ssh.1]
more ssh_known_hosts2 documentation; ok markus@
2001-03-06 01:10:53 +00:00
4c4f05e096
- markus@cvs.openbsd.org 2001/03/05 17:17:21
...
[kex.c kex.h sshconnect2.c sshd.c]
generate a 2*need size (~300 instead of 1024/2048) random private
exponent during the DH key agreement. according to Niels (the great
german advisor) this is safe since /etc/primes contains strong
primes only.
References:
P. C. van Oorschot and M. J. Wiener, On Diffie-Hellman key
agreement with short exponents, In Advances in Cryptology
- EUROCRYPT'96, LNCS 1070, Springer-Verlag, 1996, pp.332-343.
2001-03-06 01:09:20 +00:00
c78a187b17
- deraadt@cvs.openbsd.org 2001/03/05 16:07:15
...
[sshd.8]
detail default hmac setup too
2001-03-06 01:06:58 +00:00
ec26fb1667
- deraadt@cvs.openbsd.org 2001/03/05 15:56:16
...
[myproposal.h ssh.1]
switch to aes128-cbc/hmac-md5 by default in SSH2 -- faster;
provos & markus ok
2001-03-06 01:05:23 +00:00
35f1f4e2b8
- stevesk@cvs.openbsd.org 2001/03/05 15:44:51
...
[servconf.c]
sync error message; ok markus@
2001-03-06 01:02:41 +00:00
ff8b4940ab
- deraadt@cvs.openbsd.org 2001/03/05 14:28:47
...
[sshd.8]
alpha order; jcs@rt.fm
2001-03-06 01:00:03 +00:00
12888d1fc8
- (stevesk) sftp.c: handle __progname
2001-03-05 19:50:57 +00:00
935aa24bf4
- (stevesk) OpenBSD sync:
...
- deraadt@cvs.openbsd.org 2001/03/05 08:37:27
[ssh-keyscan.c]
skip inlining, why bother
2001-03-05 19:46:37 +00:00
30246a8f2b
- (djm) Fix up LOG_AUTHPRIV for systems that have it
2001-03-05 21:23:31 +11:00
2d9bfb17be
- (bal) Fix up logging since it changed. removed log-*.c
2001-03-05 08:16:54 +00:00
0f68db4e9e
- (bal) Put HAVE_PW_CLASS_IN_PASSWD back into pwcopy()
2001-03-05 07:57:09 +00:00
fd2e05b95e
- deraadt@cvs.openbsd.org 2001/03/04 18:21:28
...
[sshd.8]
list SSH2 ciphers
2001-03-05 07:48:45 +00:00
6df8ef4196
- millert@cvs.openbsd.org 2001/03/04 17:42:28
...
[authfd.c channels.c dh.c log.c readconf.c servconf.c sftp-int.c
ssh.c sshconnect.c sshd.c]
log functions should not be passed strings that end in newline as they
get passed on to syslog() and when logging to stderr, do_log() appends
its own newline.
2001-03-05 07:47:23 +00:00
fafea18d68
- stevesk@cvs.openbsd.org 2001/03/04 12:54:04
...
[sshd.8]
spelling
2001-03-05 07:43:27 +00:00
d9cae22d1a
- stevesk@cvs.openbsd.org 2001/03/04 11:16:06
...
[servconf.c sshd.8]
kill obsolete RandomSeed; ok markus@ deraadt@
2001-03-05 07:42:03 +00:00
323c98f4a7
- stevesk@cvs.openbsd.org 2001/03/04 11:04:41
...
[sshd.8]
small cleanup and clarify for PermitRootLogin; ok markus@
2001-03-05 07:40:40 +00:00
3d73a34931
- stevesk@cvs.openbsd.org 2001/03/04 10:57:53
...
[ssh.c]
add -m to usage; ok markus@
2001-03-05 07:39:01 +00:00
9c5324422e
- (bal) CVS ID touch up on auth2.c, serverloop.c, session.c & sshd.c
2001-03-05 07:33:14 +00:00
b1131e9329
- markus@cvs.openbsd.org 2001/03/04 00:03:59
...
[channels.c]
debug1->2
2001-03-05 07:27:13 +00:00
8a432f5fe0
- markus@cvs.openbsd.org 2001/03/03 23:59:34
...
[log.c ssh.c]
log*.c -> log.c
2001-03-05 07:24:46 +00:00
46d6e09099
- markus@cvs.openbsd.org 2001/03/03 23:52:22
...
[sftp.c]
clean up arg processing. based on work by Christophe_Moret@hp.com
2001-03-05 07:10:47 +00:00
1addabd491
- deraadt@cvs.openbsd.org 2001/03/03 22:07:50
...
[sftp-server.c]
KNF
2001-03-05 07:09:11 +00:00
cb978aa057
- millert@cvs.openbsd.org 2001/03/03 21:41:07
...
[packet.c]
Dynamically allocate fd_set; deraadt@ OK
2001-03-05 07:07:49 +00:00
cb80bdf6d5
- millert@cvs.openbsd.org 2001/03/03 21:40:30
...
[sftp-server.c]
Dynamically allocate fd_set; deraadt@ OK
2001-03-05 07:06:12 +00:00
c1e0421cb4
- millert@cvs.openbsd.org 2001/03/03 21:19:41
...
[ssh-keyscan.c]
Dynamically allocate read_wait and its copies. Since maxfd is
based on resource limits it is often (usually?) larger than FD_SETSIZE.
2001-03-05 07:04:38 +00:00
d20b855bc6
- deraadt@cvs.openbsd.org 2001/03/03 06:53:12
...
[ssh-keyscan.c]
standard theo sweep
2001-03-05 07:01:18 +00:00
92a2e38f8e
- deraadt@cvs.openbsd.org 2001/03/02 18:54:31
...
[atomicio.c atomicio.h auth-chall.c auth.c auth2-chall.c crc32.h
scp.c serverloop.c session.c sftp-server.8 sftp.1 ssh-add.1 ssh-add.c
ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh.1 sshd.8]
make copyright lines the same format
2001-03-05 06:59:27 +00:00
d7f5b517d5
- deraadt@cvs.openbsd.org 2001/03/02 09:42:49
...
[sshd.8]
doc the dsa/rsa key pair files
2001-03-05 06:57:23 +00:00
49a098d1b2
- deraadt@cvs.openbsd.org 2001/03/02 06:21:01
...
[sshd.8]
explain SIGHUP better
2001-03-05 06:55:18 +00:00
4040fe10a9
- markus@cvs.openbsd.org 2001/03/01 22:46:37
...
[ssh.c]
don't truncate remote ssh-2 commands; from mkubita@securities.cz
use min, not max for logging, fixes overflow.
2001-03-05 06:52:57 +00:00
b22c2b86af
- deraadt@cvs.openbsd.org 2001/03/01 03:38:33
...
[cli.c cli.h rijndael.h ssh-keyscan.1]
copyright notices on all source files
2001-03-05 06:50:47 +00:00
204e48851a
- deraadt@cvs.openbsd.org 2001/03/01 02:45:10
...
[auth-rsa.c auth2.c deattack.c packet.c]
KNF
2001-03-05 06:47:00 +00:00
0ab2a01079
- deraadt@cvs.openbsd.org 2001/03/01 02:29:04
...
[ssh.c]
shorten usage by a line
2001-03-05 06:45:21 +00:00
cf0da4067b
- (bal) CVS ID touch up on uuencode.c
2001-03-05 06:42:58 +00:00
66e5ecc6b2
- (bal) CVS ID touch up on sftp-int.c
2001-03-05 06:35:29 +00:00
afd3475ddf
- deraadt@cvs.openbsd.org 2001/03/01 02:11:25
...
[authfd.c]
split line so that p will have an easier time next time around
2001-03-05 06:33:23 +00:00
b40204bf22
- markus@cvs.openbsd.org 2001/02/28 21:31:32
...
[channels.c]
typo
2001-03-05 06:29:44 +00:00
e229b25a9e
- markus@cvs.openbsd.org 2001/02/28 21:27:48
...
[channels.c packet.c packet.h serverloop.c]
use ignore message to simulate a SSH2_MSG_CHANNEL_DATA message
use random content in ignore messages.
2001-03-05 06:28:06 +00:00
941ac82e16
- markus@cvs.openbsd.org 2001/02/28 21:21:41
...
[sshd.c]
generate a fake session id, too
2001-03-05 06:25:23 +00:00
4030442d77
- deraadt@cvs.openbsd.org 2001/02/28 17:52:54
...
[misc.c]
for completeness, copy pw_gecos too
2001-03-05 06:22:01 +00:00
cc74df79d7
- markus@cvs.openbsd.org 2001/02/28 12:55:07
...
[channels.c]
unify debug messages
2001-03-05 06:20:14 +00:00
5699c5f9ac
- markus@cvs.openbsd.org 2001/02/28 09:57:07
...
[packet.c packet.h sshconnect2.c]
in ssh protocol v2 use ignore messages for padding (instead of
trailing \0).
2001-03-05 06:17:49 +00:00
7fbd455c78
- markus@cvs.openbsd.org 2001/02/28 08:54:55
...
[channels.c nchan.c nchan.h]
make sure remote stderr does not get truncated.
remove closed fd's from the select mask.
2001-03-05 06:16:11 +00:00
e9613cf16d
- markus@cvs.openbsd.org 2001/02/28 08:45:39
...
[clientloop.c]
fix byte counts for ssh protocol v1
2001-03-05 06:14:02 +00:00
ec19a40b94
- deraadt@cvs.openbsd.org 2001/02/28 05:36:28
...
[sftp.c]
do not kill the subprocess on termination (we will see if this helps
things or hurts things)
2001-03-05 06:12:01 +00:00
069090128c
- deraadt@cvs.openbsd.org 2001/02/28 05:34:28
...
[misc.c]
pull in protos
2001-03-05 06:09:31 +00:00
5de86cc736
- markus@cvs.openbsd.org 2001/02/27 11:00:11
...
[compat.c]
support SSH-2.0-2.1 ; from Christophe_Moret@hp.com
2001-03-05 06:08:19 +00:00
6a5cde0eb7
- markus@cvs.openbsd.org 2001/02/27 10:35:27
...
[packet.c]
fix random padding
2001-03-05 06:07:00 +00:00
4b00c8b40b
- deraadt@cvs.openbsd.org 2001/02/24 10:37:26
...
[sshd_config]
ssh2 rsa key before dsa key
2001-03-05 06:05:35 +00:00
b00d4fb142
- deraadt@cvs.openbsd.org 2001/02/24 10:37:55
...
[readconf.c]
look for id_rsa by default, before id_dsa
2001-03-05 06:03:03 +00:00
eb648a749b
- markus@cvs.openbsd.org 2001/02/23 18:15:13
...
[sshd.c]
the random session key depends now on the session_key_int
sent by the 'attacker'
dig1 = md5(cookie|session_key_int);
dig2 = md5(dig1|cookie|session_key_int);
fake_session_key = dig1|dig2;
this change is caused by a mail from anakin@pobox.com
patch based on discussions with my german advisor niels@openbsd.org
2001-03-05 06:00:29 +00:00
f4c73112d0
- markus@cvs.openbsd.org 2001/02/23 15:34:53
...
[serverloop.c]
debug2->3
2001-03-05 05:58:23 +00:00
086cf214cf
- markus@cvs.openbsd.org 2001/02/22 21:59:44
...
[auth.c auth.h auth1.c auth2.c misc.c misc.h ssh.c]
use pwcopy in ssh.c, too
2001-03-05 05:56:40 +00:00
ebd888d919
- markus@cvs.openbsd.org 2001/02/22 21:57:27
...
[ssh.1 sshd.8]
typos/grammar from matt@anzen.com
2001-03-05 05:49:29 +00:00
531a445c3a
- deraadt@cvs.openbsd.org 2001/02/22 18:09:06
...
[sshd_config]
activate RSA 2 key
2001-03-05 05:17:18 +00:00
7ab5117367
- deraadt@cvs.openbsd.org 2001/02/22 08:03:51
...
[ssh-keygen.1 ssh-keygen.c]
bye bye -d
2001-03-05 05:13:38 +00:00
b7c9232da1
- deraadt@cvs.openbsd.org 2001/02/22 06:43:55
...
[ssh-keygen.1 ssh-keygen.c]
document -d, and -t defaults to rsa1
2001-03-05 05:10:52 +00:00
33a3cc30eb
- deraadt@cvs.openbsd.org 2001/02/22 04:29:37
...
[servconf.c]
grammar; slade@shore.net
2001-03-05 05:07:52 +00:00
87af95b3e7
- stevesk@cvs.openbsd.org 2001/02/21 21:14:04
...
[ssh.c]
-i supports DSA identities now; ok markus@
2001-03-05 05:04:57 +00:00
36592518dd
- deraadt@cvs.openbsd.org 2001/02/21 09:12:56
...
[sftp-server.c]
careful with & and &&; markus ok
2001-03-05 05:02:08 +00:00
b257cca769
- deraadt@cvs.openbsd.org 2001/02/21 09:05:54
...
[authfile.c]
improve fd handling
2001-03-05 04:59:27 +00:00
b0a4cd8f91
- deraadt@cvs.openbsd.org 2001/02/21 07:37:04
...
[ssh-keyscan.c]
inline -> __inline__, and some indent
2001-03-05 04:54:49 +00:00
53992c7cd5
- deraadt@cvs.openbsd.org 2001/02/17 23:48:48
...
[sshd.8]
it's the OpenSSH one
2001-03-05 04:47:55 +00:00
6ed8c043de
- (bal) CVS ID touch up on sshpty.[ch] and sshlogin.[ch]
2001-03-05 03:53:02 +00:00
cfb9370a3a
- (bal) Updated contrib/README to remove 'make-ssh-known-hosts' and
...
give Mark Roth credit for mdoc2man.pl
2001-03-03 21:43:19 +00:00
59a5f9bd69
- (bal) Remove make-ssh-known-hosts.1 since it's no longer valid.
2001-03-03 21:37:50 +00:00
d0ccb989c2
- Allow PRNGd entropy collection from localhost TCP socket. Replace
...
"--with-egd-pool" configure option with "--with-prngd-socket" and
"--with-prngd-port" options. Debugged and improved by Lutz Jaenicke
<Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-03-04 00:29:20 +11:00
1d66c1602e
- Document PAM ChallengeResponseAuthentication in sshd.8
...
- Disable and comment ChallengeResponseAuthentication in sshd_config
2001-03-04 00:16:20 +11:00
459ac4b688
- Remove make-ssh-known-hosts.pl, ssh-keyscan is better.
2001-03-03 20:00:36 +11:00
9de5f05857
- (djm) Released 2.5.1p2
2001-03-01 11:09:42 +11:00
b5b6218537
- (djm) Cygwin needs pw->pw_gecos copied too. Patch from Corinna Vinschen
...
<vinschen@redhat.com>
2001-03-01 09:48:13 +11:00
882c2eed97
- (djm) Force standard PAM conversation function in a few more places.
...
Patch from Redhat 2.5.1p1-2 RPM, probably Nalin Dahyabhai
<nalin@redhat.com>
2001-03-01 09:18:57 +11:00
95aa2d60ea
- (djm) Properly add -lcrypt if needed.
2001-03-01 09:16:11 +11:00
e854662d54
- (djm) Remove /tmp from EGD socket search list
2001-02-28 12:51:18 +11:00
3d8ae61b87
- (djm) EGD detection patch from Tim Rice <tim@multitalents.net>
2001-02-28 12:49:38 +11:00
efb7179815
- (djm) Fully revert PAM session patch (again). All PAM session init is
...
now done before the final fork().
2001-02-28 11:48:06 +11:00
c594633b49
- (djm) Fully revert PAM session patch. All PAM session init is now done
...
before the final fork().
2001-02-28 11:46:11 +11:00
4df5c76c2b
- (djm) Detect endianness in configure and use it in rijndael.c. Fixes
...
"Bad packet length" bugs.
2001-02-28 08:14:22 +11:00
6007f19483
doh
2001-02-27 14:42:58 +11:00
0bcf9eacdf
- (djm) Avoid warnings for missing broken IP_TOS. Patch from Mark Miller
...
<markm@swoon.net>
2001-02-27 14:03:30 +11:00
9b40580d76
- (djm) Remove 'noreplace' flag from sshd_config in RPM spec files. This
...
change is being made as 2.5.x configfiles are not back-compatible with
2.3.x.
2001-02-27 10:53:00 +11:00
7bd1c6262b
- (djm) Fix PAM fix
2001-02-27 10:48:01 +11:00
248131ae99
- (djm) Warning fix on entropy.c saved uid stuff. Patch from Mark Miller
...
<markm@swoon.net>
2001-02-27 09:47:16 +11:00
5a7613186b
- (djm) Move PAM init to after fork for non-Solaris derived PAMs
2001-02-27 09:28:23 +11:00
767c7fc27c
- (djm) fatal() on OpenSSL version mismatch
2001-02-27 09:20:57 +11:00
dd784b2c00
Second Ooops... =) I started with the wrong date.
2001-02-26 22:11:59 +00:00
255cae0be0
doh
2001-02-27 09:05:38 +11:00
fbd884a80d
- (djm) Fix up POSIX saved uid support. Report from Mark Miller
...
<markm@swoon.net>
- (djm) Search for -lcrypt on FreeBSD too
2001-02-27 08:39:07 +11:00
0c100870ac
- (bal) sshd.init support for all Redhat release. Patch by Jim Knoble
...
<jmknoble@jmknoble.cx>
2001-02-26 20:38:53 +00:00
7603b2d244
- markus@cvs.openbsd.org 2001/02/23 15:37:45
...
[session.c]
handle SSH_PROTOFLAG_SCREEN_NUMBER for buggy clients
2001-02-26 20:13:32 +00:00
10b9bf95c0
- (bal) Applied shutdown() patch for sftp.c by Corinna Vinschen
...
<vinschen@redhat.com>
2001-02-26 20:04:45 +00:00
bb7c976202
- (djm) Some systems (SCO3, NeXT) have weird saved uid semantics.
...
Based on patch from Tim Rice <tim@multitalents.net>
2001-02-26 20:49:58 +11:00
63941f9631
- (bal) Fixed bsd-snprinf.c so it now honors 'BROKEN_SNPRINTF' again.
2001-02-25 23:20:40 +00:00
416d874094
- (bal) Replace 'unsigned long long' to 'u_int64_t' since not every
...
platform defines u_int64_t as being that.
2001-02-25 02:02:43 +00:00
73bb058d0d
- (djm) Use %{_libexecdir} rather than hardcoded path in RPM specfile
...
Patch from Adrian Ho <lexfiend@usa.net>
2001-02-25 09:36:29 +11:00
8697e08660
- (bal) Missed part of the UNIX sockets patch. Patch by Corinna
...
Vinschen <vinschen@redhat.com>
- (bal) Reorder where 'strftime' is detected to resolve linking
issues on SCO. Patch by Tim Rice <tim@multitalents.net>
2001-02-24 21:41:10 +00:00
38e60935bb
- (bal) Generalize lack of UNIX sockets since this also effects Cray
...
not just Cygwin. Based on patch by Wendy Palm <wendyp@cray.com>
2001-02-24 00:55:04 +00:00
803f16cbe4
- (bal) Renamed sigaction.[ch] to sigact.[ch]. Causes problems with
...
some platforms.
2001-02-24 00:24:19 +00:00
65981156b8
- (bal) pam_stack fix to correctly detect between RH7 and older RHs.
...
Patch by Pekka Savola <pekkas@netcore.fi>
2001-02-24 00:05:29 +00:00
4ef92b5844
- (bal) Double -I for OpenSSL on SCO. Patch by Tim Rice
...
<tim@multitalents.net>
2001-02-23 05:05:53 +00:00
379f205a16
- (bal) Patch to force OpenSSH rpm to require the same version of OpenSSL
...
that it was compiled against. Patch by Pekka Savola <pekkas@netcore.fi>
2001-02-23 04:55:46 +00:00
008e29189e
- (bal) Fix --define rh7 in openssh.spec file. Patch by Steve Tell
...
<tell@telltronics.org>
2001-02-23 04:45:15 +00:00
77aeaaf87f
- (stevesk) remove erroneous #ifdef sgi code.
...
Michael Stone <mstone@cs.loyola.edu>
2001-02-22 21:23:21 +00:00
e68c5670cd
- (bal) Added mdoc2man.pl from Mark Roth <roth@feep.net>
...
- (bal) Removed reference to liblogin from contrib/README. It was
integrated into OpenSSH a long while ago.
2001-02-22 06:20:10 +00:00
e1bd29bc9e
- (bal) Corrected SCO luid patch by svaughan <svaughan@asterion.com>
2001-02-21 20:00:28 +00:00
ff793a27b8
- (stevesk) session.c: back out to where we were before:
...
- (djm) Move PAM session initialisation until after fork in sshd. Patch
from Nalin Dahyabhai <nalin@redhat.com>
2001-02-21 16:36:51 +00:00
94bce40720
- (bal) Reverted out of 2001/02/15 patch by djm below because it
...
breaks Solaris.
- (djm) Move PAM session setup back to before setuid to user.
fixes problems on Solaris-drived PAMs.
2001-02-21 05:53:33 +00:00
5eff0316a8
- (bal) Fixed OpenSSL rework to use $saved_*. Patch by Tim Rice
...
<tim@multitalents.net>
2001-02-21 02:35:37 +00:00
866488b340
- (bal) Removed -L/usr/ucblib -R/usr/ucblib for Solaris platform.
2001-02-20 18:22:38 +00:00
a9a29e1bed
- deraadt@cvs.openbsd.org 2001/02/19 23:09:05
...
[sshd.c]
clarify message to make it not mention "ident"
2001-02-20 01:20:47 +00:00
4ffaad8c33
- (bal) Fix mixed up params to memmove() from Jan 5th in setenv.c and
...
getcwd.c.
2001-02-19 19:54:43 +00:00
7387fdb6b5
- Update versions in RPM spec files
...
- Release 2.5.1p1
2001-02-19 21:51:49 +11:00
ccdefb600f
- (djm) Rework search for OpenSSL location. Skip directories which don't
...
exist, don't add -L$ssldir/lib if it doesn't exist. Should help SCO
with its limit of 6 -L options.
2001-02-19 12:56:39 +11:00
d95c09cc83
- (bal) Markus' blessing to rename login.[ch] -> sshlogin.[ch] and
...
pty.[ch] -> sshpty.[ch]
2001-02-18 19:13:33 +00:00
c32a5b1a15
Forgot to commit Changelog
...
- (djm) Merge BSD_AUTH support from Markus Friedl and David J. MacKenzie
enable with --with-bsd-auth.
2001-02-18 23:50:38 +11:00
4679f5b94f
- (stevesk) entropy.c: typo; should be SIGPIPE
2001-02-18 11:34:32 +00:00
75da9a9e72
- (djm) Update RPM spec files for 2.5.0p1
2001-02-18 15:43:07 +11:00
877d8ea144
- (djm) SunOS 4.x also needs to define HAVE_BOGUS_SYS_QUEUE_H as it has
...
a <sys/queue.h> that lacks the TAILQ_* macros. Patch from Todd C.
Miller <Todd.Miller@courtesan.com>
2001-02-18 15:29:28 +11:00
a1072a8e37
- (djm) Move entropy.c over to mysignal()
2001-02-18 15:28:11 +11:00
722ccb1492
- (djm) SA_INTERRUPT is the converse of SA_RESTART, apply it only for
...
SIGALRM.
2001-02-18 15:18:43 +11:00
93c17d9eed
- (stevesk) scp.c: use mysignal() for updateprogressmeter() handler.
2001-02-18 03:55:16 +00:00
eff26f275e
- (stevesk) misc.c: cpp rework of SA_(INTERRUPT|RESTART) handling.
2001-02-18 03:42:02 +00:00
df28802cdd
- (djm) SCO needs librpc for libwrap. Patch from Tim Rice
...
<tim@multitalents.net>
2001-02-18 13:07:07 +11:00
0318e2e0fb
- (djm) Use SA_INTERRUPT along SA_RESTART if present (equivalent for
...
SunOS)
2001-02-18 13:04:23 +11:00
8609332558
- (djm) Doc fixes from Pekka Savola <pekkas@netcore.fi>
2001-02-18 12:58:24 +11:00
22d5aa7553
- (djm) Swapped tests for no_libsocket and no_libnsl in configure.in.
...
Patch from Marek Michalkiewicz <marekm@amelek.gda.pl>
2001-02-18 12:49:57 +11:00
99e924357e
- (djm) Use ttyname() to determine name of tty returned by openpty()
...
rather then risking overflow. Patch from Marek Michalkiewicz
<marekm@amelek.gda.pl>
2001-02-18 12:49:35 +11:00
b3ffc5f1d4
- (djm) Robustify EGD/PRNGd code in face of socket closures. Patch from
...
Todd C. Miller <Todd.Miller@courtesan.com>
2001-02-18 12:44:29 +11:00
0a4e27d583
- (djm) Close listen_sock on bind() failures. Patch from Arkadiusz
...
Miskiewicz <misiek@pld.ORG.PL>
2001-02-18 12:36:39 +11:00
2deb3f64f6
- (djm) Fix my breaking of cygwin builds, Patch from Corinna Vinschen
...
<vinschen@redhat.com> and myself.
2001-02-18 12:30:55 +11:00
970c009b8e
- (Bal) Patch for lack of RA_RESTART in misc.c for mysignal by
...
stevesk
2001-02-17 16:51:07 +00:00
6dc75f594d
- (bal) Patch for fix FCHMOD reference in ftp-client.c by Tim Rice
...
<tim@multitalents.net>
2001-02-17 16:47:47 +00:00
8dcdeb8421
- markus@cvs.openbsd.org 2001/02/16 14:03:43
...
[session.c]
proper payload-length check for x11 w/o screen-number
2001-02-16 16:02:14 +00:00
813f9402ae
- markus@cvs.openbsd.org 2001/02/16 13:38:18
...
[channel.c]
remove debug
2001-02-16 15:56:31 +00:00
799bed85ab
- (stevesk) set SA_RESTART flag in mysignal() for SIGCHLD;
...
needed on Unixware 2.x.
2001-02-16 14:58:12 +00:00
79438cc030
- (djm) OpenBSD CVS:
...
- markus@cvs.openbsd.org 2001/02/15 16:19:59
[channels.c channels.h serverloop.c sshconnect.c sshconnect.h]
[sshconnect1.c sshconnect2.c]
genericize password padding function for SSH1 and SSH2.
add stylized echo to 2, too.
- (djm) Add roundup() macro to defines.h
2001-02-16 12:34:57 +11:00
217f567187
- (djm) Set "login ID" on systems with setluid. Only enabled for SCO
...
OpenServer for now. Based on patch from svaughan <svaughan@asterion.com>
2001-02-16 12:12:41 +11:00
5dfe976cdf
- (djm) USE_PIPES for a few more sysv platforms
...
- (djm) Cleanup configure.in a little
- (djm) Ask users to check config.log when we can't find necessary libs
2001-02-16 12:05:39 +11:00
b5e85a5d94
- (djm) Make gnome-ssh-askpass handle multi-line prompts. Patch from
...
Nalin Dahyabhai <nalin@redhat.com>
- (djm) BSD license for gnome-ssh-askpass (was X11)
- (djm) KNF on gnome-ssh-askpass
2001-02-16 11:18:58 +11:00
c547bf1930
- (djm) Mini-configure reorder patch from Tim Rice <tim@multitalents.net>
...
Fixes linking on SCO.
2001-02-16 10:18:12 +11:00
5805513b17
- (bal) Added DG/UX case and set that they have a broken IPTOS
2001-02-15 18:34:29 +00:00
4e5a0aa001
- (bal) added '--with-prce' to allow overriding of system regex when
...
required (tested by David Dulek <ddulek@fastenal.com>)
2001-02-15 18:16:22 +00:00
b7f036fd8c
- deraadt@cvs.openbsd.org 2001/02/15 01:38:04
...
[serverloop.c]
indent
2001-02-15 17:27:15 +00:00
0921454833
- (djm) Move to Jim's 1.2.0 X11 askpass program
2001-02-15 15:33:17 +11:00
0a7e354f64
- replaced PATH_MAX in sftp-int.c w/ MAXPATHLEN.
2001-02-15 03:50:49 +00:00
9d4f2c808c
- djm@cvs.openbsd.org 2001/02/14 9:46:03
...
[sftp-client.c sftp-int.c sftp.1]
Fix and document 'preserve modes & times' option ('-p' flag in sftp);
ok markus@
2001-02-15 03:22:45 +00:00
6690494f21
- stevesk@cvs.openbsd.org 2001/02/12 20:53:33
...
[sftp-int.c]
lumask now works with 1 numeric arg; ok markus@, djm@
2001-02-15 03:19:56 +00:00
5393f9360d
- markus@cvs.openbsd.org 2001/02/12 23:26:20
...
[sshd.c]
missing memset; from solar@openwall.com
2001-02-15 03:17:13 +00:00
c1ba31fadc
- markus@cvs.openssh.org 2001/02/13 22:49:40
...
[auth1.c auth2.c]
setproctitle(user) only if getpwnam succeeds
2001-02-15 03:14:11 +00:00
f9452513fc
- deraadt@cvs.openbsd.org 2001/02/12 22:56:09
...
[clientloop.c packet.c ssh-keyscan.c]
deal with EAGAIN/EINTR selects which were skipped
2001-02-15 03:12:08 +00:00
d8a9021f36
- markus@cvs.openbsd.org 2001/02/12 16:16:23
...
[auth-passwd.c auth.c auth.h auth1.c auth2.c servconf.c servconf.h
ssh-keygen.c sshd.8]
PermitRootLogin={yes,without-password,forced-commands-only,no}
(before this change, root could login even if PermitRootLogin==no)
2001-02-15 03:08:27 +00:00
06b33aa0e8
- markus@cvs.openbsd.org 2001/02/11 12:59:25
...
[Makefile.in sshd.8 sshconnect2.c readconf.h readconf.c packet.c
sshd.c ssh.c ssh.1 servconf.h servconf.c myproposal.h kex.h kex.c]
1) clean up the MAC support for SSH-2
2) allow you to specify the MAC with 'ssh -m'
3) or the 'MACs' keyword in ssh(d)_config
4) add hmac-{md5,sha1}-96
ok stevesk@, provos@
2001-02-15 03:01:59 +00:00
4272ed803f
- markus@cvs.openbsd.org 2001/02/12 12:45:06
...
[sshconnect1.c]
fix xmalloc(0), ok dugsong@
2001-02-15 02:36:46 +00:00
646aa60b41
- (djm) Clean up PAM namespace. Suggested by Darren Moffat
...
<Darren.Moffat@eng.sun.com>
2001-02-15 11:51:32 +11:00
e8b5b04521
- (djm) Move PAM session setup back to before setuid to user. Fixes
...
problems on Solaris-derived PAMs.
2001-02-15 11:32:15 +11:00
7fafa5ccbe
- (stevesk) fix for SIA patch, misplaced session_setup_sia()
2001-02-13 18:45:00 +00:00
92ddb7d6f0
- (djm) Split out and improve OSF SIA auth code. Patch from Chris Adams
...
<cmadams@hiwaay.net> with a little modification and KNF.
2001-02-14 01:25:23 +11:00
116b6bdda8
- (bal) Missing function prototype in bsd-snprintf.c patch by
...
Mark Miller <markm@swoon.net>
2001-02-13 14:05:59 +00:00
6b4146ad73
- (djm) Move PAM session initialisation until after fork in sshd. Patch
...
from Nalin Dahyabhai <nalin@redhat.com>
2001-02-14 00:45:51 +11:00
3dfeee46d7
- (djm) Don't try to close PAM session or delete credentials if the
...
session has not been open or credentials not set. Based on patch from
Andrew Bartlett <abartlet@pcug.org.au>
2001-02-14 00:43:55 +11:00
bca8c8f3a1
- (stevesk) auth1.c: fix PAM passwordless check.
2001-02-13 11:26:21 +00:00
34bb0c7431
- (bal) Use chown() if fchown() does not exist in ftp-server.c patch by
...
Tim Rice <tim@multitalents.net>
2001-02-13 02:40:56 +00:00
6c92dab9a1
- (bal) Cleaned out bsd-snprintf.c. VARARGS have been banished and
...
I did a base KNF over the whe whole file to make it more acceptable.
(backed out of original patch and removed it from ChangeLog)
This has been a long time coming. If we decide that we need VARARGS support
we should do it at a higher level, since no where else do we support VARARGS
in the code base.
2001-02-13 02:18:50 +00:00
d8ab0d4a85
- (djm) Only test -S potential EGD sockets if they exist and are readable.
2001-02-13 12:11:17 +11:00
5d8520ab76
- (bal) added NeXT work around for bsd-snprintf.c in bsd-nextstep.h.
...
- (bal) added TODO item to clean up and sort out 'varargs' from 'stdargs'
2001-02-12 15:57:18 +00:00
7f982bf6c9
- (stevesk) session.c: remove debugging code.
2001-02-12 15:07:52 +00:00
603bdfd602
- (bal) NCR SVR4 compatiblity provide by Don Bragg <thewizarddon@yahoo.com>
2001-02-12 07:29:45 +00:00
61ce036c4a
- (djm) Fix OSF SIA auth NULL pointer deref. Report from Mike Battersby
...
<mib@unimelb.edu.au>
2001-02-12 18:02:23 +11:00
f172020510
- (djm) Clean up PCRE text in INSTALL
2001-02-12 11:15:41 +11:00
070ca31325
- (djm) Update Redhat specfile to allow --define "skip_x11_askpass
...
--define "skip_gnome_askpass 1", --define "rh7 1" and make the
implicit rpm-3.0.5 dependancy explicit. Patch and suggestions fro
Pekka Savola <pekkas@netcore.fi>
2001-02-12 09:34:17 +11:00
bcc862755d
- (stevesk) compat.c: more friendly cpp error
2001-02-11 18:49:23 +00:00
d85bf4b57e
- stevesk@cvs.openbsd.org 2001/02/11 06:15:57
...
[LICENSE]
typos and small cleanup; ok deraadt@
2001-02-11 16:43:05 +00:00
fad3c513f0
- (stevesk) misc.c: ssh.h not needed.
2001-02-11 14:34:10 +00:00
432768612c
missed sshconnect.c part of:
...
- itojun@cvs.opebsd.org 2001/02/08 10:47:05
[sshconnect.c sshconnect1.c sshconnect2.c]
%.30s is too short for IPv6 numeric address. use %.128s for now.
markus ok
2001-02-11 13:56:43 +00:00
bd5817d4ff
- (djm) Set PAM_RHOST earlier, patch from Andrew Bartlett
...
<abartlet@pcug.org.au>
2001-02-11 22:35:11 +11:00
e055716a89
- itojun@cvs.opebsd.org 2001/02/08 10:47:05
...
[sshconnect1.c sshconnect2.c]
%.30s is too short for IPv6 numeric address. use %.128s for now.
markus ok
2001-02-11 00:00:24 +00:00
e5b3fb351e
- (bal) A bit more whitespace cleanup
2001-02-10 23:56:35 +00:00
aa630def4d
- 1.47 Thu Feb 8 23:11:42 GMT 2001 by dugsong
...
[serverloop.c sshconnect1.c]
mitigate SSH1 traffic analysis - from Solar Designer
<solar@openwall.com>, ok provos@
2001-02-10 23:44:47 +00:00
a905ecd994
- deraadt 2001/02/07 8:57:26
...
[xmalloc.c]
deal with new ANSI malloc stuff
- markus@cvs.openbsd.org 2001/02/07 16:46:08
[xmalloc.c]
typo in fatal()
- itojun@cvs.openbsd.org 2001/02/07 18:04:50
[xmalloc.c]
fix size_t -> int cast (use u_long). markus ok
2001-02-10 23:34:54 +00:00
70ea46a382
- (bal) uuencode.c resync w/ OpenBSD tree, plus whitespace.
2001-02-10 23:30:16 +00:00
e9d0444524
- djm@cvs.openbsd.org 2001/02/04 21:26:07
...
[sshd_config]
type: ok markus@
- deraadt@cvs.openbsd.org 2001/02/06 22:07:50
[sshd_config]
enable sftp-server by default
2001-02-10 23:26:35 +00:00
b6c06d9303
- markus@cvs.openbsd.org 2001/02/08 22:35:30
...
[sshconnect.c]
don't connect if batch_mode is true and stricthostkeychecking set to
'ask'
2001-02-10 23:21:09 +00:00
c791bebc2a
- itojun@cvs.openbsd.org 2001/02/07 18:04:50
...
[ssh-keyscan.c]
fix size_t -> int cast (use u_long). markus ok
- markus@cvs.openbsd.org 2001/02/07 22:43:16
[ssh-keyscan.c]
s/getline/Linebuf_getline/; from roumen.petrov@skalasoft.com
- itojun@cvs.openbsd.org 2001/02/09 9:04:59
[ssh-keyscan.c]
do not assume malloc() returns zero-filled region. found by
malloc.conf=AJ.
2001-02-10 23:18:11 +00:00
28072eb10c
- itojun@cvs.openbsd.org 2001/02/08 19:30:52
...
sync with netbsd tree changes.
- more strict prototypes, include necessary headers
- use paths.h/pathnames.h decls
- size_t typecase to int -> u_long
2001-02-10 23:13:41 +00:00
be80af7c17
Synced w/ OpenBSD
2001-02-10 23:06:02 +00:00
7e9aff55bc
- (bal) sftp-sever.c '%8lld' to '%8llu' (OpenBSD Sync)
2001-02-10 23:00:22 +00:00
4f7a64a64f
- deraadt@cvs.openbsd.org 2001/02/08 14:39:36
...
[readconf.c]
snprintf
2001-02-10 22:50:09 +00:00
9d3a859e8c
- markus@cvs.openbsd.org 2001/02/06 22:43:02
...
[clientloop.h]
remove confusing callback code
2001-02-10 22:44:12 +00:00
b3211a8589
- markus@cvs.openbsd.org 2001/02/08 21:58:28
...
[channels.c]
nuke sprintf, ok deraadt@
2001-02-10 22:33:19 +00:00
36d7bd00f9
- markus@cvs.openbsd.org 2001/02/09 13:38:07
...
[auth-options.c]
reset options if no option is given; from han.holl@prismant.nl
2001-02-10 22:27:19 +00:00
a1ebd89d24
Sync w/ OpenBSD
2001-02-10 22:19:23 +00:00
03df5bde9c
- markus@cvs.openbsd.org 2001/02/06 22:26:17
...
[sshconnect2.c]
do not ask for passphrase in batch mode; report from ejb@ql.org
- itojun@cvs.opebsd.org 2001/02/08 10:47:05
[sshconnect2.c]
%.30s is too short for IPv6 numeric address. use %.128s for now.
markus ok
- markus@cvs.openbsd.org 2001/02/09 12:28:35
[sshconnect2.c]
do not free twice, thanks to /etc/malloc.conf
- markus@cvs.openbsd.org 2001/02/09 17:10:53
[sshconnect2.c]
partial success: debug->log; "Permission denied" if no more auth methods
- markus@cvs.openbsd.org 2001/02/10 12:09:21
[sshconnect2.c]
remove some lines
2001-02-10 22:16:41 +00:00
8fd10b0f13
- markus@cvs.openbsd.org 2001/02/10 1:46:28
...
[ssh.c]
remove mapping of argv[0] -> hostname
2001-02-10 22:11:13 +00:00
5ab6ae1282
- (bal) Synced ssh.1 w/ OpenBSD
2001-02-10 22:08:03 +00:00
27cb1d061d
- djm@cvs.openbsd.org 2001/02/10 0:45:52
...
[scp.1]
Mention that you can quote pathnames with spaces in them
2001-02-10 21:59:35 +00:00
10ac33f254
- (bal) Minor correction to sftp-client.c I made. Should return 'status'
...
instead of '0' (from the OpenBSD tree)
2001-02-10 21:53:40 +00:00
550bc54cba
- danh@cvs.openbsd.org 2001/02/10 0:12:43
...
[scp.c]
revert a small change to allow -r option to work again; ok deraadt@
- danh@cvs.openbsd.org 2001/02/10 15:14:11
[scp.c]
fix memory leak; ok markus@
2001-02-10 21:50:00 +00:00
fdc9ab08f7
- markus@cvs.openbsd.org 2001/02/10 12:44:02
...
[cli.c]
don't call vis() for \r
2001-02-10 21:45:02 +00:00
874a0b364c
- markus@cvs.openbsd.org 2001/02/10 1:33:32
...
[canohost.c]
add debug message, since sshd blocks here if DNS is not available
2001-02-10 21:39:49 +00:00
075390a3f8
- markus@cvs.openbsd.org 2001/02/8 22:37:10
...
[canohost.c]
remove last call to sprintf; ok deraadt@
2001-02-10 21:34:46 +00:00
d1f20ec368
- markus@cvs.openbsd.org 2001/02/10 12:52:02
...
[auth2.c]
offer passwd before s/key
2001-02-10 21:31:53 +00:00
f79aeffe3b
- markus@cvs.openbsd.org 2001/02/07 22:35:46
...
[auth1.c auth2.c sshd.c]
move k_setpag() to a central place; ok dugsong@
2001-02-10 21:27:11 +00:00
c5dbf7fdc9
- (bal) sftp-client.c replace NULL w/ 0 in do_ls() (pending in OpenBSD tree)
2001-02-10 00:37:17 +00:00
137465b67c
Missed these log messages.
...
Past my bedtime :)
2001-02-10 00:47:59 +11:00
d7686fd1fb
- (djm) Sync sftp and scp stuff from OpenBSD:
...
- djm@cvs.openbsd.org 2001/02/07 03:55:13
[sftp-client.c]
Don't free handles before we are done with them. Based on work from
Corinna Vinschen <vinschen@redhat.com>. ok markus@
- djm@cvs.openbsd.org 2001/02/06 22:32:53
[sftp.1]
Punctuation fix from Pekka Savola <pekkas@netcore.fi>
- deraadt@cvs.openbsd.org 2001/02/07 04:07:29
[sftp.1]
pretty up significantly
- itojun@cvs.openbsd.org 2001/02/07 06:49:42
[sftp.1]
.Bl-.El mismatch. markus ok
- djm@cvs.openbsd.org 2001/02/07 06:12:30
[sftp-int.c]
Check that target is a directory before doing ls; ok markus@
- itojun@cvs.openbsd.org 2001/02/07 11:01:18
[scp.c sftp-client.c sftp-server.c]
unsigned long long -> %llu, not %qu. markus ok
- stevesk@cvs.openbsd.org 2001/02/07 11:10:39
[sftp.1 sftp-int.c]
more man page cleanup and sync of help text with man page; ok markus@
- markus@cvs.openbsd.org 2001/02/07 14:58:34
[sftp-client.c]
older servers reply with SSH2_FXP_NAME + count==0 instead of EOF
- djm@cvs.openbsd.org 2001/02/07 15:27:19
[sftp.c]
Don't forward agent and X11 in sftp. Suggestion from Roumen Petrov
<roumen.petrov@skalasoft.com>
- stevesk@cvs.openbsd.org 2001/02/07 15:36:04
[sftp-int.c]
portable; ok markus@
- stevesk@cvs.openbsd.org 2001/02/07 15:55:47
[sftp-int.c]
lowercase cmds[].c also; ok markus@
- markus@cvs.openbsd.org 2001/02/07 17:04:52
[pathnames.h sftp.c]
allow sftp over ssh protocol 1; ok djm@
- deraadt@cvs.openbsd.org 2001/02/08 07:38:55
[scp.c]
memory leak fix, and snprintf throughout
- deraadt@cvs.openbsd.org 2001/02/08 08:02:02
[sftp-int.c]
plug a memory leak
- stevesk@cvs.openbsd.org 2001/02/08 10:11:23
[session.c sftp-client.c]
%i -> %d
- stevesk@cvs.openbsd.org 2001/02/08 10:57:59
[sftp-int.c]
typo
- stevesk@cvs.openbsd.org 2001/02/08 15:28:07
[sftp-int.c pathnames.h]
_PATH_LS; ok markus@
- djm@cvs.openbsd.org 2001/02/09 04:46:25
[sftp-int.c]
Check for NULL attribs for chown, chmod & chgrp operations, only send
relevant attribs back to server; ok markus@
- (djm) Update makefile.in for _PATH_SFTP_SERVER
2001-02-10 00:40:03 +11:00
4192c46791
- (djm) Define _PATH_TTY for systems that don't. Report from Lutz
...
Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-02-09 22:55:16 +11:00
288cc3970c
- djm@cvs.openbsd.org 2001/02/06 23:30:28
...
[sftp-client.c]
replace arc4random with counter for request ids; ok markus@
2001-02-09 02:58:04 +00:00
1e7d30611b
- markus@cvs.openbsd.org 2001/02/06 22:07:42
...
[ssh.c]
fatal() if subsystem fails
- markus@cvs.openbsd.org 2001/02/06 22:43:02
[ssh.c]
remove confusing callback code
- jakob@cvs.openbsd.org 2001/02/06 23:03:24
[ssh.c]
add -1 option (force protocol version 1). ok markus@
- jakob@cvs.openbsd.org 2001/02/06 23:06:21
[ssh.c]
reorder -{1,2,4,6} options. ok markus@
2001-02-09 02:36:43 +00:00
b0407fc670
- (bal) Missing 'const' in readpass.h
2001-02-09 02:23:10 +00:00
31ca54aa86
- itojun@cvs.openbsd.org 2001/02/08 19:30:52
...
sync with netbsd tree changes.
- more strict prototypes, include necessary headers
- use paths.h/pathnames.h decls
- size_t typecase to int -> u_long
2001-02-09 02:11:24 +00:00
e9cf357a99
- (djm) Add CVS Id's to files that we have missed
2001-02-09 12:55:35 +11:00
5b82832222
- markus@cvs.openbsd.org 2001/02/06 22:43:02
...
[clientloop.c]
remove confusing callback code
2001-02-09 01:34:36 +00:00
f6b7b09a4e
- deraadt@cvs.openbsd.org 2001/02/08 14:38:54
...
[scp.c]
memory leak fix, and snprintf throughout
2001-02-09 01:23:39 +00:00
af13ccacac
- (djm) Update spec files
2001-02-09 12:01:51 +11:00
4abe4def70
- (stevesk) OpenBSD sync:
...
- markus@cvs.openbsd.org 2001/02/08 11:20:01
[auth2.c]
strict checking
- markus@cvs.openbsd.org 2001/02/08 11:15:22
[version.h]
update to 2.3.2
- markus@cvs.openbsd.org 2001/02/08 11:12:30
[auth2.c]
fix typo
2001-02-08 19:16:32 +00:00
fc032bbf2f
- (bal) double entry in configure.in. Pointed out by Lutz Jaenicke
...
<Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-02-08 18:40:09 +00:00
40f4151e9f
- (bal) .c.o rule in openbsd-compat/Makefile.in did not make it to the
...
main tree while porting forward. Pointed out by Lutz Jaenicke
<Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-02-08 18:05:17 +00:00
efe35aad52
- (bal) patch to vis.c to deal with HAVE_VIS right by Robert Mooney
...
<rjmooney@mediaone.net>
2001-02-08 16:34:56 +00:00
4864e8f9c0
- (djm) Fix linking of sftp, don't need arc4random any more.
...
- (djm) Try to use shell that supports "test -S" for EGD socket search.
Based on patch from Tim Rice <tim@multitalents.net>
2001-02-08 10:07:08 +11:00
3d0a7d59cb
- (djm) Don't delete external askpass program in make uninstall target.
...
Report and fix from Roumen Petrov <roumen.petrov@skalasoft.com>
2001-02-08 08:22:47 +11:00
4855ae9874
Cleanup, fix dates
2001-02-07 23:21:31 +11:00
63dc3e90e5
- (djm) Much KNF on PAM code
...
- (djm) Revise auth-pam.c conversation function to be a little more readable.
- (djm) Revise kbd-int PAM conversation function to fold all text messages
to before first prompt. Fixes hangs if last pam_message did not require
a reply.
- (djm) Fix password changing when using PAM kbd-int authentication
2001-02-07 12:58:33 +11:00
582d3983d2
- (bal) Save the whole path to AR in configure. Some Solaris 2.7 installs
...
seem lose track of it while in openbsd-compat/ (two confirmed reports)
2001-02-06 22:54:30 +00:00
ec1c140927
- deraadt@cvs.openbsd.org 2001/02/04 08:23:08
...
[sftp-client.c sftp-server.c]
make gcc on the alpha even happier
2001-02-05 15:39:22 +00:00
e27a5e05b3
- markus@cvs.openbsd.org 2001/01/31 13:48:09
...
[sshconnect2.c]
unused
2001-02-05 15:15:27 +00:00
12057500cc
- markus@cvs.openbsd.org 2001/01/31 13:37:24
...
[channels.c channels.h serverloop.c ssh.c]
do not disconnect if local port forwarding fails, e.g. if port is already in
use
- markus@cvs.openbsd.org 2001/02/01 14:58:09
[channels.c]
use ipaddr in channel messages, ietf-secsh wants this
- markus@cvs.openbsd.org 2001/01/31 12:26:20
[channels.c]
ssh.com-2.0.1x does not send additional info in CHANNEL_OPEN_FAILURE messages;
bug report from edmundo@rano.org
2001-02-05 14:54:34 +00:00
adf74cdeca
- deraadt@cvs.openbsd.org 2001/02/04 16:56:23
...
[scp.c sshd.c]
alpha happiness
- stevesk@cvs.openbsd.org 2001/02/04 15:12:17
[sshd.c]
precedence; ok markus@
- deraadt@cvs.openbsd.org 2001/02/04 08:14:15
[ssh.c sshd.c]
make the alpha happy
2001-02-05 14:22:50 +00:00
0afcc9f942
- stevesk@cvs.openbsd.org 2001/02/04 06:30:12
...
[auth2.c authfd.c packet.c]
remove duplicate #include's; ok markus@
2001-02-05 13:57:36 +00:00
3c034ae01a
- markus@cvs.openbsd.org 2001/02/04 08:10:44
...
[ssh.1]
typo; dpo@club-internet.fr
2001-02-05 13:47:11 +00:00
62c45db526
- deraadt@cvs.openbsd.org 2001/02/04 17:02:32
...
[sftp-int.c]
? == help
- deraadt@cvs.openbsd.org 2001/02/04 16:47:46
[sftp-int.c]
sort commands, so that abbreviations work as expected
- stevesk@cvs.openbsd.org 2001/02/04 15:17:52
[sftp-int.c]
debugging sftp: precedence and missing break. chmod, chown, chgrp
seem to be working now.
- markus@cvs.openbsd.org 2001/02/04 14:41:21
[sftp-int.c]
use base 8 for umask/chmod
- markus@cvs.openbsd.org 2001/02/04 11:11:54
[sftp-int.c]
fix LCD
2001-02-05 13:42:43 +00:00
8e74393416
- stevesk@cvs.openbsd.org 2001/02/04 15:21:19
...
[sftp-server.c]
SSH2_FILEXFER_ATTR_UIDGID support; ok markus@
2001-02-05 13:24:35 +00:00
ef4eea9bad
- stevesk@cvs.openbsd.org 2001/02/04 08:32:27
...
[many files; did this manually to our top-level source dir]
unexpand and remove end-of-line whitespace; ok markus@
2001-02-05 12:42:17 +00:00
d2ddda4efa
- (bal) AIX patch for auth1.c by William L. Jones <jones@hpc.utexas.edu>
2001-02-04 21:57:11 +00:00
03f07b45cd
Oops.. =) mispelt NGROUPS_MAX.
2001-02-04 20:44:01 +00:00
75713c9da7
20010105
...
- (bal) Disable groupaccess by setting NGROUP_MAX to 0 for platforms
that don't have NGROUP_MAX.
2001-02-04 20:27:44 +00:00
849e288b8a
- (djm) Use setvbuf() instead of setlinebuf(). Suggest from stevek@
2001-02-05 01:01:55 +11:00
b6e773acc9
- (stevesk) add mysignal() wrapper and use it for the protocol 2
...
SIGCHLD handler.
2001-02-04 13:20:36 +00:00
b797b92237
- (djm) Makefile.in fixes
2001-02-04 23:27:00 +11:00
3380426358
NB: big update - may break stuff. Please test!
...
- (djm) OpenBSD CVS sync:
- markus@cvs.openbsd.org 2001/02/03 03:08:38
[auth-options.c auth-rh-rsa.c auth-rhosts.c auth.c canohost.c]
[canohost.h servconf.c servconf.h session.c sshconnect1.c sshd.8]
[sshd_config]
make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@
- markus@cvs.openbsd.org 2001/02/03 03:19:51
[ssh.1 sshd.8 sshd_config]
Skey is now called ChallengeResponse
- markus@cvs.openbsd.org 2001/02/03 03:43:09
[sshd.8]
use no-pty option in .ssh/authorized_keys* if you need a 8-bit clean
channel. note from Erik.Anggard@cygate.se (pr/1659)
- stevesk@cvs.openbsd.org 2001/02/03 10:03:06
[ssh.1]
typos; ok markus@
- djm@cvs.openbsd.org 2001/02/04 04:11:56
[scp.1 sftp-server.c ssh.1 sshd.8 sftp-client.c sftp-client.h]
[sftp-common.c sftp-common.h sftp-int.c sftp-int.h sftp.1 sftp.c]
Basic interactive sftp client; ok theo@
- (djm) Update RPM specs for new sftp binary
- (djm) Update several bits for new optional reverse lookup stuff. I
think I got them all.
2001-02-04 23:20:18 +11:00
45cb2937bc
- (bal) next-posix.h changed to bsd-nextstep.h
2001-02-04 09:41:33 +00:00
b0c2eeb96c
- (bal) Changed order of LIB="" in -with-skey due to library resolving.
2001-02-03 22:15:00 +00:00
1c56a01c87
- (bal) openbsd-compat/Makefile minor fix. Ensure dependancies are done
...
right.
2001-02-03 21:58:12 +00:00
684ba4cdd8
- (bal) Minor Makefile fix
2001-02-03 21:53:47 +00:00
7044253f3f
- (bal) I think this is the last of the bsd-*.h that don't belong.
2001-02-03 21:31:22 +00:00
e6b3b7ba66
- (bal) Minor Makefile.in tweak. dirname may not exist on some
...
platforms so builds fail. (NeXT being a well known one)
2001-02-03 00:33:04 +00:00
6413635b01
- (bal) renamed queue.h to fake-queue.h (even if it's an OpenBSD
...
based file) to ensure #include space does not get confused.
2001-02-02 19:03:13 +00:00
dd5c5a3ffe
- (bal) Cygwin clean up by Corinna Vinschen <vinschen@redhat.com>
2001-02-02 18:58:33 +00:00
25a7785a30
- (bal) Makefile fix to use $(MAKE) instead of 'make' for platforms
...
that use 'gmake'. Patch by Tim Rice <tim@multitalents.net>
2001-02-02 10:17:46 +00:00
2ffbbe6fc9
- (bal) Makefile fix where sourcedir != builddir by Corinna Vinschen
...
<vinschen@redhat.com>
2001-02-02 00:00:54 +00:00
e03c85d943
- (bal) Minor fix to Makefile to stop rebuilding executables if no
...
changes have occured to any of the supporting code. Patch by
Roumen Petrov <roumen.petrov@skalasoft.com>
2001-02-01 14:06:11 +00:00
3c06f6a0b2
- (bal) Reorder. Move all bsd-*, fake-*, next-*, and cygwin* stuff to
...
openbsd-compat/. And resolve all ./configure and Makefile.in issues
assocated.
Logic:
* All OpenBSD functions should have the same filename as in the OpenBSD
tree
* All 'home brew' functions have bsd-* infront of them.
* All 'not really implemented' functions have fake-* infront of them.
2001-01-31 21:52:01 +00:00
bf75776d41
- (djm) Don't log SSH2 PAM KbdInt responses to debug, they may contain
...
passwords.
2001-01-31 10:50:49 +11:00
709528ab6a
- (djm) Fix autoconf logic for --with-lastlog=no Report and diagnosis from
...
Philipp Buehler <lists@fips.de> and Kevin Steves <stevesk@sweden.hp.com>
respectively.
2001-01-31 09:57:55 +11:00
3c4659cb6f
- (djm) OpenBSD CVS Sync:
...
- djm@cvs.openbsd.org 2001/01/30 15:48:53
[sshconnect.c]
Make warning message a little more consistent. ok markus@
2001-01-31 09:52:43 +11:00
b6b4a7a29a
- (stevesk) configure.in: remove duplicate PROG_LS
2001-01-30 18:31:43 +00:00
e142d41ce6
speeling
2001-01-30 20:03:08 +11:00
832562e9ba
- djm@cvs.openbsd.org 2001/01/29 05:36:11
...
[ssh.1 ssh.c]
Allow invocation of sybsystem by commandline (-s); ok markus@
2001-01-30 09:30:01 +11:00
7650bc6842
- (djm) OpenBSD CVS Sync:
...
- markus@cvs.openbsd.org 2001/01/29 12:47:32
[rsa.c rsa.h ssh-agent.c sshconnect1.c sshd.c]
handle rsa_private_decrypt failures; helps against the Bleichenbacher
pkcs#1 attack
2001-01-30 09:27:26 +11:00
d83ff35d66
- (djm) OpenBSD CVS Sync:
...
- markus@cvs.openbsd.org 2001/01/29 12:42:35
[canohost.c canohost.h channels.c clientloop.c]
add get_peer_ipaddr(socket), x11-fwd in ssh2 requires ipaddr, not DNS
2001-01-30 09:19:34 +11:00
5e953217f1
- (djm) OpenBSD CVS Sync:
...
- markus@cvs.openbsd.org 2001/01/29 09:55:37
[channels.c channels.h clientloop.c serverloop.c]
fix select overflow; ok deraadt@ and stevesk@
2001-01-30 09:14:00 +11:00
b71eb58ff4
- (stevesk) sftp-server.c: use %lld vs. %qd
2001-01-29 16:57:27 +00:00
6d40c0f806
- (bal) Minor auth2.c resync. Whitespace and moving of an #include.
2001-01-29 09:02:24 +00:00
a73335004e
- stevesk@cvs.openbsd.org 2001/01/28 20:43:25
...
[sshd.8]
spelling. ok markus@
2001-01-29 08:44:03 +00:00
c12a6b7066
- markus@cvs.openbsd.org 2001/01/28 10:37:26
...
[sshd.c sshd.8]
remove -Q, no longer needed
2001-01-29 08:41:05 +00:00
8eec2c8f06
- markus@cvs.openbsd.org 2001/01/28 10:24:04
...
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
cleanup AUTHORS sections
2001-01-29 08:39:16 +00:00
eb930d4432
- stevesk@cvs.openbsd.org 2001/01/28 20:36:16
...
[readconf.c ssh.1]
``StrictHostKeyChecking ask'' documentation and small cleanup.
ok markus@
2001-01-29 08:37:08 +00:00
035782e712
- markus@cvs.openbsd.org 2001/01/28 10:24:04
...
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1]
cleanup AUTHORS sections
2001-01-29 08:34:16 +00:00
91fd62af63
- stevesk@cvs.openbsd.org 2001/01/28 20:53:21
...
[xmalloc.c]
use size_t for strlen() return. ok markus@
2001-01-29 08:10:11 +00:00
d53902049e
- markus@cvs.openbsd.org 2001/01/28 10:37:26
...
[sshd.c]
remove -Q, no longer needed
2001-01-29 08:07:43 +00:00
5ed8acd3e3
- stevesk@cvs.openbsd.or 2001/01/28 20:36:16
...
[readconf.c]
``StrictHostKeyChecking ask'' documentation and small cleanup.
ok markus@
2001-01-29 08:00:54 +00:00
ef1cf5d8ea
- markus@cvs.openbsd.org 2001/01/28 10:15:34
...
[dispatch.c]
re-keying is not supported; ok deraadt@
2001-01-29 07:55:07 +00:00
1170d71b5d
- stevesk@cvs.openbsd.org 2001/01/28 22:27:05
...
[authfile.c]
spelling. use sizeof vs. strlen(). ok markus@
2001-01-29 07:51:26 +00:00
36579d3daa
- niklas@cvs.openbsd.org 2001/01/2001
...
[atomicio.h canohost.h clientloop.h deattack.h dh.h dispatch.h
groupaccess.c groupaccess.h hmac.h hostfile.h includes.h kex.h
key.h log.h login.h match.h misc.h myproposal.h nchan.ms pathnames.h
radix.h readpass.h rijndael.h serverloop.h session.h sftp.h ssh-add.1
ssh-dss.h ssh-keygen.1 ssh-keyscan.1 ssh-rsa.h ssh1.h ssh_config
sshconnect.h sshd_config tildexpand.h uidswap.h uuencode.h]
$OpenBSD$
2001-01-29 07:39:26 +00:00
49af82bd7e
- (bal) Put USE_PIPES back into sco3.2v5
2001-01-27 20:43:57 +00:00
77808aba58
- deraadt@cvs.openbsd.org 2001/01/25 8:06:33
...
[ssh-agent.c]
call _exit() in signal handler
2001-01-26 05:10:34 +00:00
27eebe6c1b
- (bal) SSH_PROGRAM vs _PATH_SSH_PROGRAM fix pointed out by Roumen
...
Petrov <roumen.petrov@skalasoft.com>
2001-01-25 23:04:22 +00:00
87b147f539
- (bal) OpenBSD Resync
...
- stevesk@cvs.openbsd.org 2001/01/24 21:03:50
[channels.c]
missing freeaddrinfo(); ok markus@
2001-01-25 00:41:12 +00:00
ec3830ae6e
- (bal) AC_FUNC_STRFTIME added to autoconf
2001-01-25 00:07:33 +00:00
0736c4df83
- (djm) Mention PRNGd in documentation, it is nicer than EGD
...
- (djm) Automatically search for "well-known" EGD/PRNGd sockets in autoconf
2001-01-25 10:51:46 +11:00
2a5c1cede0
- (djm) Sync bsd-* support files:
...
- deraadt@cvs.openbsd.org 2000/01/26 03:43:20
[rresvport.c bindresvport.c]
new bindresvport() semantics that itojun, shin, jean-luc and i have
agreed on, which will be happy for the future. bindresvport_sa() for
sockaddr *, too. docs later..
- deraadt@cvs.openbsd.org 2000/01/24 02:24:21
[bindresvport.c]
in bindresvport(), if sin is non-NULL, example sin->sin_family for
the actual family being processed
2001-01-25 10:32:00 +11:00
b6b37ba475
- (stevesk) sftp-server.c: fix chmod() mode mask
2001-01-24 20:01:44 +00:00
2396b30d95
- (bal) #ifdef around S_IFSOCK if platform does not support it.
...
patch by Tim Rice <tim@multitalents.net>
- (bal) fake-regex.h cleanup based on Tim Rice's patch.
2001-01-23 16:54:29 +00:00
16a86be01a
- (bal) no 64bit support patch from Tim Rice <tim@multitalents.net>
2001-01-23 16:26:52 +00:00
bda5bdcf8d
20010124
...
- (bal) OpenBSD Resync
- markus@cvs.openbsd.org 2001/01/23 10:45:10
[ssh.h]
nuke comment
2001-01-23 16:09:51 +00:00
95fb2dde77
- markus@cvs.openbsd.org 2001/01/22 23:06:39
...
[auth1.c auth2.c readconf.c readconf.h servconf.c servconf.h
sshconnect1.c sshconnect2.c sshd.c]
rename skey -> challenge response.
auto-enable kbd-interactive for ssh2 if challenge-reponse is enabled.
2001-01-23 03:12:10 +00:00
b1985f7279
- (bal) OpenBSD Resync
...
- markus@cvs.openbsd.org 2001/01/22 8:15:00
[auth-krb4.c sshconnect1.c]
only AFS needs radix.[ch]
- markus@cvs.openbsd.org 2001/01/22 8:32:53
[auth2.c]
no need to include; from mouring@etoh.eviladmin.org
- stevesk@cvs.openbsd.org 2001/01/22 16:55:21
[key.c]
free() -> xfree(); ok markus@
- stevesk@cvs.openbsd.org 2001/01/22 17:22:28
[sshconnect2.c sshd.c]
fix memory leaks in SSH2 key exchange; ok markus@
2001-01-23 00:19:15 +00:00
9dffa01368
A bit of this patch was in the last commit
...
- (bal) SSH_ASKPASS_DEFAULT to _PATH_SSH_ASKPASS_DEFAULT
2001-01-22 21:22:14 +00:00
cb577331b4
20010123
...
- (bal) regexp.h typo in configure.in. Should have been regex.h
- (bal) SSH_USER_DIR to _PATH_SSH_USER_DIR patch by stevesk@
2001-01-22 21:06:19 +00:00
226cfa0378
Hopefully things did not get mixed around too much. It compiles under
...
Linux and works. So that is at least a good sign. =)
20010122
- (bal) OpenBSD Resync
- markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus
[servconf.c ssh.h sshd.c]
only auth-chall.c needs #ifdef SKEY
- markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus
[auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c
packet.c pathname.h readconf.c scp.c servconf.c serverloop.c
session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h
ssh1.h sshconnect1.c sshd.c ttymodes.c]
move ssh1 definitions to ssh1.h, pathnames to pathnames.h
- markus@cvs.openbsd.org 2001/01/19 16:48:14
[sshd.8]
fix typo; from stevesk@
- markus@cvs.openbsd.org 2001/01/19 16:50:58
[ssh-dss.c]
clear and free digest, make consistent with other code (use dlen); from
stevesk@
- markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus
[auth-options.c auth-options.h auth-rsa.c auth2.c]
pass the filename to auth_parse_options()
- markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001
[readconf.c]
fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com
- stevesk@cvs.openbsd.org 2001/01/20 18:20:29
[sshconnect2.c]
dh_new_group() does not return NULL. ok markus@
- markus@cvs.openbsd.org 2001/01/20 21:33:42
[ssh-add.c]
do not loop forever if askpass does not exist; from
andrew@pimlott.ne.mediaone.net
- djm@cvs.openbsd.org 2001/01/20 23:00:56
[servconf.c]
Check for NULL return from strdelim; ok markus
- djm@cvs.openbsd.org 2001/01/20 23:02:07
[readconf.c]
KNF; ok markus
- jakob@cvs.openbsd.org 2001/01/21 9:00:33
[ssh-keygen.1]
remove -R flag; ok markus@
- markus@cvs.openbsd.org 2001/01/21 19:05:40
[atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c
auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c
bufaux.c bufaux.h buffer.c canahost.c canahost.h channels.c
cipher.c cli.c clientloop.c clientloop.h compat.c compress.c
deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c
key.c key.h log-client.c log-server.c log.c log.h login.c login.h
match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c
readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h
session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c
ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h
sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h
ttysmodes.c uidswap.c xmalloc.c]
split ssh.h and try to cleanup the #include mess. remove unnecessary
#includes. rename util.[ch] -> misc.[ch]
- (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree
- (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve
conflict when compiling for non-kerb install
- (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes
on 1/19.
2001-01-22 05:34:40 +00:00
401d58f361
- (bal) Slight auth2-pam.c clean up.
...
- (bal) Includes a fake-regexp.h to be only used if regcomp() is found,
but no 'regexp.h' found (SCO OpenServer 3 lacks the header).
2001-01-19 17:11:43 +00:00
cf0809d644
Removed one more 'ISSUE' comment in auth1.c
...
20010120
- (bal) OpenBSD Resync
- markus@cvs.openbsd.org 2001/01/19 12:45:26
[ssh-chall.c servconf.c servconf.h ssh.h sshd.c]
only auth-chall.c needs #ifdef SKEY
2001-01-19 15:44:10 +00:00
5dc81502cb
- (bal) Minor cygwin patch to auth1.c. Suggested by djm.
2001-01-19 06:10:29 +00:00
b100ec9542
- (bal) Updated contrib/cygwin/ by Corinna Vinschen <vinschen@redhat.com>
...
Also removed some of the 'ISSUES' comments that have been verified by djm.
2001-01-19 05:37:32 +00:00
22e22bf9ba
- (djm) Merge patch from Tim Waugh (via Nalin Dahyabhai <nalin@redhat.com>)
...
to fix NULL pointer deref and fake authloop breakage in PAM code.
2001-01-19 15:46:38 +11:00
db65e8fded
Please grep through the source and look for 'ISSUE' comments and verify
...
that I was able to get all the portable bits in the right location. As for
the SKEY comment there is an email out to Markus as to how it should be
resolved. Until then I just #ifdef SKEY/#endif out the whole block.
- (bal) OpenBSD Resync
- markus@cvs.openbsd.org 2001/01/18 16:20:21
[log-client.c log-server.c log.c readconf.c servconf.c ssh.1 ssh.h
sshd.8 sshd.c]
log() is at pri=LOG_INFO, since LOG_NOTICE goes to /dev/console on many
systems
- markus@cvs.openbsd.org 2001/01/18 16:59:59
[auth-passwd.c auth.c auth.h auth1.c auth2.c serverloop.c session.c
session.h sshconnect1.c]
1) removes fake skey from sshd, since this will be much
harder with /usr/libexec/auth/login_XXX
2) share/unify code used in ssh-1 and ssh-2 authentication (server side)
3) make addition of BSD_AUTH and other challenge reponse methods
easier.
- markus@cvs.openbsd.org 2001/01/18 17:12:43
[auth-chall.c auth2-chall.c]
rename *-skey.c *-chall.c since the files are not skey specific
2001-01-19 04:26:52 +00:00
5aa80596f7
- (djm) Update versions in RPM specfiles
2001-01-19 14:03:40 +11:00
bf555ba621
NOTE: This update changes the RSA key generation. *NEW RSA KEYS
...
NEED TO BE GENERATED* =) Refer to to entry "2001/01/16 19:20:06"
for more details.
20010118
- (bal) Super Sized OpenBSD Resync
- markus@cvs.openbsd.org 2001/01/11 22:14:20 GMT 2001 by markus
[sshd.c]
maxfd+1
- markus@cvs.openbsd.org 2001/01/13 17:59:18
[ssh-keygen.1]
small ssh-keygen manpage cleanup; stevesk@pobox.com
- markus@cvs.openbsd.org 2001/01/13 18:03:07
[scp.c ssh-keygen.c sshd.c]
getopt() returns -1 not EOF; stevesk@pobox.com
- markus@cvs.openbsd.org 2001/01/13 18:06:54
[ssh-keyscan.c]
use SSH_DEFAULT_PORT; from stevesk@pobox.com
- markus@cvs.openbsd.org 2001/01/13 18:12:47
[ssh-keyscan.c]
free() -> xfree(); fix memory leak; from stevesk@pobox.com
- markus@cvs.openbsd.org 2001/01/13 18:14:13
[ssh-add.c]
typo, from stevesk@sweden.hp.com
- markus@cvs.openbsd.org 2001/01/13 18:32:50
[packet.c session.c ssh.c sshconnect.c sshd.c]
split out keepalive from packet_interactive (from dale@accentre.com )
set IPTOS_LOWDELAY TCP_NODELAY IPTOS_THROUGHPUT for ssh2, too.
- markus@cvs.openbsd.org 2001/01/13 18:36:45
[packet.c packet.h]
reorder, typo
- markus@cvs.openbsd.org 2001/01/13 18:38:00
[auth-options.c]
fix comment
- markus@cvs.openbsd.org 2001/01/13 18:43:31
[session.c]
Wall
- markus@cvs.openbsd.org 2001/01/13 19:14:08
[clientloop.h clientloop.c ssh.c]
move callback to headerfile
- markus@cvs.openbsd.org 2001/01/15 21:40:10
[ssh.c]
use log() instead of stderr
- markus@cvs.openbsd.org 2001/01/15 21:43:51
[dh.c]
use error() not stderr!
- markus@cvs.openbsd.org 2001/01/15 21:45:29
[sftp-server.c]
rename must fail if newpath exists, debug off by default
- markus@cvs.openbsd.org 2001/01/15 21:46:38
[sftp-server.c]
readable long listing for sftp-server, ok deraadt@
- markus@cvs.openbsd.org 2001/01/16 19:20:06
[key.c ssh-rsa.c]
make "ssh-rsa" key format for ssh2 confirm to the ietf-drafts; from
galb@vandyke.com . note that you have to delete older ssh2-rsa keys,
since they are in the wrong format, too. they must be removed from
.ssh/authorized_keys2 and .ssh/known_hosts2, etc.
(cd; grep -v ssh-rsa .ssh/authorized_keys2 > TMP && mv TMP
.ssh/authorized_keys2) additionally, we now check that
BN_num_bits(rsa->n) >= 768.
- markus@cvs.openbsd.org 2001/01/16 20:54:27
[sftp-server.c]
remove some statics. simpler handles; idea from nisse@lysator.liu.se
- deraadt@cvs.openbsd.org 2001/01/16 23:58:08
[bufaux.c radix.c sshconnect.h sshconnect1.c]
indent
- (bal) Added bsd-strmode.[ch] since some non-OpenBSD platforms may
be missing such feature.
2001-01-18 02:04:35 +00:00
01fa6380e8
- (djm) Add --with-pam to RPM spec files
2001-01-17 11:23:39 +11:00
92e78f8c64
- (djm) Avoid warning in PAM code by making read_passphrase arguments const
2001-01-17 11:10:48 +11:00
a64b57a157
- (djm) Make PAM support optional, enable with --with-pam
...
- (djm) Try to use libcrypt on Linux, but link it after OpenSSL (which
provides a crypt() of its own)
- (djm) Avoid a warning in bsd-bindresvport.c
- (djm) Try to avoid adding -I/usr/include to CPPFLAGS during SSL tests. This
can cause weird segfaults errors on Solaris
2001-01-17 10:44:13 +11:00
21de450853
- (djm) Only write random seed file at exit
2001-01-17 09:37:15 +11:00
42202bc8cf
- (bal) utimes() support via utime() interface on machine that lack utimes().
2001-01-15 02:34:37 +00:00
200e3c9c9a
20010115
...
- (bal) sftp-server.c change to use chmod() if fchmod() does not exist.
2001-01-15 01:56:46 +00:00
7b61cfa1ec
- (stevesk) complete:
...
- markus@cvs.openbsd.org 2001/01/13 11:56:48
[auth.c sshd.8]
support supplementary group in {Allow,Deny}Groups
from stevesk@pobox.com
2001-01-14 19:11:00 +00:00
886b06ce67
- (stevesk) initial work for OpenBSD "support supplementary group in
...
{Allow,Deny}Groups" patch:
- import getgrouplist.c from OpenBSD (bsd-getgrouplist.c)
- add bsd-getgrouplist.h
- new files groupaccess.[ch]
- build but don't use yet (need to merge auth.c changes)
2001-01-14 00:35:19 +00:00
2f959b4cd1
20010112
...
- (bal) OpenBSD Sync
- markus@cvs.openbsd.org 2001/01/10 22:56:22
[bufaux.h bufaux.c sftp-server.c sftp.h getput.h]
cleanup sftp-server implementation:
add buffer_get_int64, buffer_put_int64, GET_64BIT, PUT_64BIT
parse SSH2_FILEXFER_ATTR_EXTENDED
send SSH2_FX_EOF if readdir returns no more entries
reply to SSH2_FXP_EXTENDED message
use #defines from the draft
move #definations to sftp.h
more info:
http://www.ietf.org/internet-drafts/draft-ietf-secsh-filexfer-00.txt
- markus@cvs.openbsd.org 2001/01/10 19:43:20
[sshd.c]
XXX - generate_empheral_server_key() is not safe against races,
because it calls log()
- markus@cvs.openbsd.org 2001/01/09 21:19:50
[packet.c]
allow TCP_NDELAY for ipv6; from netbsd via itojun@
2001-01-11 06:20:23 +00:00
fd9885e326
20010110
...
- (djm) SNI/Reliant Unix needs USE_PIPES and $DISPLAY hack. Report from
Bladt Norbert <Norbert.Bladt@adi.ch>
2001-01-10 08:16:53 +11:00
69f8fb3575
- (stevesk) defines.h: remove spurious ``;''
2001-01-09 18:09:13 +00:00
Ben Lindstrom
Damien Miller
Tim Rice
Kevin Steves