tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,563 Commits 6 Branches 20 Tags 98 MiB
Commit Graph

3151 Commits

Author SHA1 Message Date
Darren Tucker 07705c788e - (dtucker) [auth-pam.c] Do PAM chauthtok during SSH2 keyboard-interactive 
authentication.  Partially fixes bug #423.  Feedback & ok djm@

Some background on why this is the way it is:
* Solaris 8's pam_chauthtok ignores the CHANGE_EXPIRED_AUTHTOK flag, so
  we must call do_pam_account() to figure out if the password is expired.
* AIX 5.2 does not like having pam_acct_mgmt() called twice, once from the
  authentication thread and once from the main shell child, so we cache the
  result, which must be passed from the authentication thread back to the
  monitor.
 2003-12-18 15:34:31 +11:00
Darren Tucker 454da0b3dc - (dtucker) [configure.ac] Don't use setre[ug]id on DG-UX, from Tom Orban. 2003-12-18 12:52:19 +11:00
Ben Lindstrom 563eb99711 - (bal) [openbsd-compat/bsd-misc.c] unset 'signal' defined if we are 
using a real 'signal()' (Noticed by a NeXT Compile)
 2003-12-18 00:34:06 +00:00
Darren Tucker e937be36c3 - (dtucker) [acconfig.h configure.ac uidswap.c] Bug #645: Check for 
setres[ug]id() present but not implemented (eg some Linux/glibc
   combinations).
 2003-12-17 18:53:26 +11:00
Damien Miller 8975ddf11b - markus@cvs.openbsd.org 2003/12/16 15:51:54 
[dh.c]
     use <= instead of < in dh_estimate; ok provos/hshoexer;
     do not return < DH_GRP_MIN
 2003-12-17 16:33:53 +11:00
Damien Miller 509b0107f0 - markus@cvs.openbsd.org 2003/12/16 15:49:51 
[clientloop.c clientloop.h readconf.c readconf.h scp.1 sftp.1 ssh.1]
     [ssh.c ssh_config.5]
     application layer keep alive (ServerAliveInterval ServerAliveCountMax)
     for ssh(1), similar to the sshd(8) option; ok beck@; with help from
     jmc and dtucker@
 2003-12-17 16:33:10 +11:00
Damien Miller baafb981a4 - markus@cvs.openbsd.org 2003/12/14 12:37:21 
[ssh_config.5]
     we don't support GSS KEX; from Simon Wilkinson
 2003-12-17 16:32:23 +11:00
Damien Miller d696551443 - dtucker@cvs.openbsd.org 2003/12/09 23:45:32 
[clientloop.c]
     Clear exit code when ssh -N is terminated with a SIGTERM.  ok markus@
 2003-12-17 16:31:53 +11:00
Damien Miller 12c150e7e0 - markus@cvs.openbsd.org 2003/12/09 21:53:37 
[readconf.c readconf.h scp.1 servconf.c servconf.h sftp.1 ssh.1]
     [ssh_config.5 sshconnect.c sshd.c sshd_config.5]
     rename keepalive to tcpkeepalive; the old name causes too much
     confusion; ok djm, dtucker; with help from jmc@
 2003-12-17 16:31:10 +11:00
Damien Miller 9836cf8d71 - markus@cvs.openbsd.org 2003/12/09 17:30:05 
[ssh.c]
     don't modify argv for ssh -o; similar to sshd.c 1.283
 2003-12-17 16:30:06 +11:00
Damien Miller b9997192a7 - markus@cvs.openbsd.org 2003/12/09 17:29:04 
[sshd.c]
     fix -o and HUP; ok henning@
 2003-12-17 16:29:22 +11:00
Damien Miller b5820f40bf 20031217 
- (djm) OpenBSD CVS Sync
   - markus@cvs.openbsd.org 2003/12/09 15:28:43
     [serverloop.c]
     make ClientKeepAlive work for ssh -N, too (no login shell requested).
     1) send a bogus channel request if we find a channel
     2) send a bogus global request if we don't have a channel
     ok + test beck@
 2003-12-17 16:27:32 +11:00
Darren Tucker 5cd9d443ef - dtucker@cvs.openbsd.org 2003/12/09 13:52:55 
[moduli.c]
     Prevent ssh-keygen -T from outputting moduli with a generator of 0, since
     they can't be used for Diffie-Hellman.  Assistance and ok djm@
 2003-12-10 00:54:38 +11:00
Darren Tucker a615314d3b - (dtucker) [ssh-keyscan.c] Sync RCSIDs, missed in SSH_SSFDMAX change below. 2003-12-10 00:52:37 +11:00
Darren Tucker 1cbc444935 - djm@cvs.openbsd.org 2003/12/07 06:34:18 
[moduli.c]
     remove unused debugging #define templates
 2003-12-09 19:19:38 +11:00
Darren Tucker 564f19e237 - markus@cvs.openbsd.org 2003/12/08 11:00:47 
[kexgexc.c]
     print requested group size in debug; ok djm
 2003-12-09 19:18:07 +11:00
Darren Tucker 3175eb9a5a - markus@cvs.openbsd.org 2003/12/02 17:01:15 
[channels.c session.c ssh-agent.c ssh.h sshd.c]
     use SSH_LISTEN_BACKLOG (=128) in listen(2).
 2003-12-09 19:15:11 +11:00
Darren Tucker 1fb0425359 - markus@cvs.openbsd.org 2003/12/02 12:15:10 
[progressmeter.c]
     improvments from andreas@:
     * saner speed estimate for transfers that takes less than a second by
       rounding the time to 1 second.
     * when the transfer is finished calculate the actual total speed
       rather than the current speed which is given during the transfer
 2003-12-09 19:07:13 +11:00
Darren Tucker 37afa9d9a4 - djm@cvs.openbsd.org 2003/11/26 21:44:29 
[cipher-aes.c]
     fix #ifdef before #define; ok markus@
     (RCS ID sync only, Portable already had this)
 2003-12-09 19:05:42 +11:00
Darren Tucker 4c56843e44 - matthieu@cvs.openbsd.org 2003/11/25 23:10:08 
[ssh-add.1]
     ssh-add doesn't need to be a descendant of ssh-agent. Ok markus@, jmc@.
 2003-12-09 19:01:51 +11:00
Tim Rice 88368a3034 [configure.ac] Bug 770. Fix --without-rpath. 2003-12-08 12:35:59 -08:00
Damien Miller 3db2e4daf7 - (djm) Annotate OpenBSD-derived files in openbsd-compat/ with original 
source file path (in OpenBSD tree).
 2003-11-24 13:33:34 +11:00
Damien Miller e0113ccc08 - dtucker@cvs.openbsd.org 2003/11/24 00:16:35 
[ssh.1 ssh.c]
     Make ssh -k mean GSSAPIDelegateCredentials=no. Suggestion & ok markus@
 2003-11-24 13:10:09 +11:00
Damien Miller a4b33dfb6d - djm@cvs.openbsd.org 2003/11/23 23:18:45 
[ssh-keygen.c]
     consistency PATH_MAX -> MAXPATHLEN; ok markus@
     (RCS ID sync only)
   - djm@cvs.openbsd.org 2003/11/23 23:21:21
     [scp.c]
     from portable: rename clashing variable limit-> limit_rate; ok markus@
     (RCS ID sync only)
 2003-11-24 13:09:27 +11:00
Damien Miller e00074a726 - (djm) OpenBSD CVS Sync 
- djm@cvs.openbsd.org 2003/11/23 23:17:34
     [ssh-keyscan.c]
     from portable - use sysconf to detect fd limit; ok markus@
     (tidy diff by adding SSH_SSFDMAX macro to defines.h)
 2003-11-24 13:07:45 +11:00
Damien Miller 927f52783e - (djm) [canohost.c] Move IPv4inV6 mapped address normalisation to its own 
function and call it unconditionally
 2003-11-24 12:57:25 +11:00
Damien Miller 5924ceb22d - (djm) [packet.c] Shuffle #ifdef to reduce conditionally compiled code 2003-11-22 15:02:42 +11:00
Damien Miller 841b9f1aad - (djm) [sftp-int.c] Remove duplicated code from bogus sync 2003-11-22 14:48:49 +11:00
Damien Miller 4da295c051 - (djm) [scp.c] Rename limitbw -> limit_rate to match upstreamed patch 2003-11-22 14:39:04 +11:00
Darren Tucker 4e06a1d75d - (dtucker) [auth-sia.c configure.ac] Tru64 update from cmadams at hiwaay.net. 
Use permanently_set_uid for SIA, only define DISABLE_FD_PASSING when SIA
   is enabled, rely on SIA to check for locked accounts if enabled.  ok djm@
 2003-11-22 14:25:15 +11:00
Darren Tucker d76341616d - (dtucker) [auth-passwd.c openbsd-compat/port-aix.c openbsd-compat/port-aix.h] 
Move AIX specific password authentication code to port-aix.c, call
   authenticate() until reenter flag is clear.
 2003-11-22 14:16:56 +11:00
Darren Tucker 240fdfa909 - (dtucker) [channels.c] Make AIX write limit code clearer. Suggested by djm@ 2003-11-22 14:10:02 +11:00
Damien Miller a8e06cef35 - djm@cvs.openbsd.org 2003/11/21 11:57:03 
[everything]
     unexpand and delete whitespace at EOL; ok markus@
     (done locally and RCS IDs synced)
 2003-11-21 23:48:55 +11:00
Damien Miller 8c5e91c03f - (djm) OpenBSD CVS Sync 
- markus@cvs.openbsd.org 2003/11/20 11:39:28
     [progressmeter.c]
     fix rounding errors; from andreas@
 2003-11-21 23:09:10 +11:00
Damien Miller f96d18362d - djm@cvs.openbsd.org 2003/11/18 10:53:07 
[monitor.c]
     unbreak fake authloop for non-existent users (my screwup). Spotted and
     tested by dtucker@; ok markus@
 2003-11-18 22:01:48 +11:00
Damien Miller 4bb1dd3166 - (djm) OpenBSD CVS Sync 
- dtucker@cvs.openbsd.org 2003/11/18 00:40:05
     [serverloop.c]
     Correct check for authctxt->valid.  ok djm@
 2003-11-18 22:01:25 +11:00
Darren Tucker 8a1624c42d - (dtucker) [auth-pam.c] Only use pam_putenv if our platform has it. ok djm@ 2003-11-18 12:45:35 +11:00
Darren Tucker 18df00cc77 - (dtucker) [auth-pam.c] Convert chauthtok_conv into a generic tty_conv, 
and use it for do_pam_session.  Fixes problems like pam_motd not displaying
   anything.  ok djm@
 2003-11-18 12:42:07 +11:00
Damien Miller 6aef38f5ac - (djm) Fix early exit for root auth success when UsePAM=yes and 
PermitRootLogin=no
 2003-11-18 10:45:20 +11:00
Damien Miller 0425d40194 - markus@cvs.openbsd.org 2003/11/17 11:06:07 
[auth2-gss.c gss-genr.c gss-serv.c monitor.c monitor.h monitor_wrap.c]
     [monitor_wrap.h sshconnect2.c ssh-gss.h]
     replace "gssapi" with "gssapi-with-mic"; from Simon Wilkinson;
     test + ok jakob.
 2003-11-17 22:18:21 +11:00
Damien Miller c756e9b56e - (djm) Export environment variables from authentication subprocess to 
parent. Part of Bug #717
 2003-11-17 21:41:42 +11:00
Damien Miller 9bdba70350 - (djm) Bug #632: Don't call pam_end indirectly from within kbd-int 
conversation function
 2003-11-17 21:27:55 +11:00
Damien Miller 51bf11fcc9 - djm@cvs.openbsd.org 2003/11/17 09:45:39 
[msg.c msg.h sshconnect2.c ssh-keysign.c]
     return error on msg send/receive failure (rather than fatal); ok markus@
 2003-11-17 21:20:47 +11:00
Damien Miller 91c6aa4468 - markus@cvs.openbsd.org 2003/11/14 13:19:09 
[sshconnect2.c]
     cleanup and minor fixes for the client code; from Simon Wilkinson
 2003-11-17 21:20:18 +11:00
Damien Miller fe44847cb8 - jmc@cvs.openbsd.org 2003/11/12 20:14:51 
[ssh_config.5]
     make verb agree with subject, and kill some whitespace;
 2003-11-17 21:19:49 +11:00
Damien Miller 150b55745b - jakob@cvs.openbsd.org 2003/11/12 16:39:58 
[dns.c dns.h readconf.c ssh_config.5 sshconnect.c]
     update SSHFP validation. ok markus@
 2003-11-17 21:19:29 +11:00
Damien Miller c1f2792bd0 - dtucker@cvs.openbsd.org 2003/11/12 10:12:15 
[scp.c]
     When called with -q, pass -q to ssh; suppresses SSH2 banner.  ok markus@
 2003-11-17 21:19:05 +11:00
Damien Miller f58b58ced1 - jakob@cvs.openbsd.org 2003/11/10 16:23:41 
[bufaux.c bufaux.h cipher.c cipher.h hostfile.c hostfile.h key.c]
     [key.h sftp-common.c sftp-common.h sftp-server.c sshconnect.c sshd.c]
     [ssh-dss.c ssh-rsa.c uuencode.c uuencode.h]
     constify. ok markus@ & djm@
 2003-11-17 21:18:23 +11:00
Damien Miller 939cd38122 - jmc@cvs.openbsd.org 2003/11/08 19:17:29 
[sftp-int.c]
     typos from Jonathon Gray;
 2003-11-17 21:17:24 +11:00
Damien Miller a9fcd3ada2 - jakob@cvs.openbsd.org 2003/11/08 16:02:40 
[auth1.c]
     remove unused variable (pw). ok djm@
     (id sync only - still used in portable)
 2003-11-17 21:16:55 +11:00