a4a5323b2a
- stevesk@cvs.openbsd.org 2001/07/15 16:57:21
...
[ssh-agent.1]
-d will not fork; ok markus@
2001-07-18 15:51:00 +00:00
36857f6b8b
- markus@cvs.openbsd.org 2001/07/15 16:17:08
...
[serverloop.c]
schedule client alive for ssh2 only, greg@cheers.bungi.com
2001-07-18 15:48:57 +00:00
ad77313f22
- OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2001/07/14 15:10:17
[readpass.c sftp-client.c sftp-common.c sftp-glob.c]
delete spurious #includes; ok deraadt@ markus@
2001-07-18 15:45:44 +00:00
2db5371d30
- (tim) put openssh/openbsd-compat/inet_aton.[ch] back in.
...
(needed by openbsd-compat/fake-getaddrinfo.c)
2001-07-15 19:07:49 -07:00
fed7bb498f
- (bal) Set "BROKEN_GETADDRINFO" for darwin platform. Reported by
...
Josh Larios <jdlarios@cac.washington.edu>
2001-07-15 18:30:42 +00:00
6482ec865a
- (stevesk) configure.in: use ll suffix for long long constant
...
in snprintf() test
2001-07-15 02:09:28 +00:00
60193f70f7
- (stevesk) change getopt() declaration
2001-07-14 16:05:55 +00:00
4f8e66929b
- (djm) Pull in getopt(3) from OpenBSD libc for the optreset extension.
2001-07-14 13:22:53 +10:00
8f6bc30a4b
- (djm) Reorder Makefile.in so clean targets work a little better when
...
run directly from Makefile.in
2001-07-14 13:07:43 +10:00
0ae6e009c8
- markus@cvs.openbsd.org 2001/07/11 18:26:15
...
[auth.c]
no need to call dirname(pw->pw_dir).
note that dirname(3) modifies its argument on some systems.
2001-07-14 12:21:34 +10:00
c4b7feabe0
- itojun@cvs.openbsd.org 2001/07/11 00:24:53
...
[servconf.c]
make it compilable in all 4 combination of KRB4/KRB5 settings.
dugsong ok
XXX isn't it sensitive to the order of -I/usr/include/kerberosIV and
-I/usr/include/kerberosV?
2001-07-14 12:20:32 +10:00
07ab49ef71
- markus@cvs.openbsd.org 2001/07/10 21:49:12
...
[readpass.c]
don't panic if fork or pipe fail (just return an empty passwd).
2001-07-14 12:19:56 +10:00
efb1edfc7f
- deraadt@cvs.openbsd.org 2001/07/09 07:04:53
...
[session.c sftp-int.c]
correct type on last arg to execl(); nordin@cse.ogi.edu
2001-07-14 12:19:36 +10:00
f4614450d1
- OpenBSD CVS Sync
...
- fgsch@cvs.openbsd.org 2001/07/09 05:58:47
[ssh.c]
Use getopt(3); markus@ ok.
2001-07-14 12:18:10 +10:00
4085785276
- OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2001/07/08 15:23:38
[servconf.c]
fix ``MaxStartups max''; ok markus@
2001-07-14 12:17:33 +10:00
40eb1d82bb
- OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2001/07/05 20:32:47
[sshconnect1.c]
statement after label; ok dugsong@
2001-07-14 12:16:59 +10:00
f3512d9ba7
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/07/04 23:49:27
[ssh-agent.c]
handle mutiple adds of the same smartcard key
2001-07-14 12:14:27 +10:00
8d4bf17036
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/07/04 23:39:07
[ssh-agent.c]
for smartcards remove both RSA1/2 keys
2001-07-14 12:13:49 +10:00
694be4b1d5
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/07/04 23:13:10
[scard.c scard.h ssh-agent.c]
handle card removal more gracefully, add sc_close() to scard.h
2001-07-14 12:13:26 +10:00
48bfa9cafa
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/07/04 22:47:19
[ssh-agent.c]
ignore SIGPIPE when debugging, too
2001-07-14 12:12:55 +10:00
98273e3ade
- (djm) Revert dirname fix, a better one is on its way.
2001-07-14 11:55:15 +10:00
c62f1fc3ff
- (djm) Enable /etc/nologin check on PAM systems, as some lack the
...
pam_nologin module. Report from William Yodlowsky
<bsd@openbsd.rutgers.edu>
2001-07-14 11:54:05 +10:00
eec0c25f2a
- (djm) dirname(3) may modify its argument on glibc and other systems.
...
Patch from markus@, spotted by Tom Holroyd <tomh@po.crl.go.jp>
2001-07-11 21:32:20 +10:00
024acc46e6
- (tim) [openbsd-compat/dirname.h] Remove ^M causing some compilers to
...
issue warning (line 1: tokens ignored at end of directive line)
- (tim) [sshconnect1.c] give the compiler something to do for success:
if KRB5 and AFS are not defined.
(ERROR: "sshconnect1.c", line 1274: Syntax error before or at: })
2001-07-04 21:27:20 -07:00
7281a9bc8c
[contrib/caldera/openssh.spec] sync with Caldera
2001-07-04 17:45:28 -07:00
e468de6525
- (stevesk) sync servconf.h (comments)
2001-07-04 18:37:20 +00:00
8f63caa197
- (stevesk) more sync for session.c
2001-07-04 18:23:02 +00:00
d009ae3d04
- (stevesk) sync misc.h
2001-07-04 17:25:54 +00:00
f70b59c039
- (bal) Makefile fix up requires scard.c
2001-07-04 05:40:19 +00:00
3133dbbdba
- (bal) forget a few new files in sync up.
2001-07-04 05:35:00 +00:00
809744e912
- markus@cvs.openbsd.org 2001/07/02 22:52:57
...
[channels.c channels.h serverloop.c]
improve cleanup/exit logic in ssh2:
stop listening to channels, detach channel users (e.g. sessions).
wait for children (i.e. dying sessions), send exit messages,
cleanup all channels.
2001-07-04 05:26:06 +00:00
0047764526
- markus@cvs.openbsd.org 2001/07/02 22:40:18
...
[ssh-keygen.c]
update for sectok.h interface changes.
2001-07-04 05:24:27 +00:00
4f42d8cda3
- markus@cvs.openbsd.org 2001/07/02 22:29:20
...
[readpass.c]
do not return NULL, use "" instead.
2001-07-04 05:19:27 +00:00
4983d5ebd5
- markus@cvs.openbsd.org 2001/07/02 13:59:15
...
[serverloop.c session.c session.h]
wait until !session_have_children(); bugreport from
Lutz.Jaenicke@aet.TU-Cottbus.DE
2001-07-04 05:17:40 +00:00
173e646f7e
- stevesk@cvs.openbsd.org 2001/06/30 18:08:40
...
[channels.c channels.h clientloop.c]
adress -> address; ok markus@
2001-07-04 05:15:15 +00:00
1118095d33
- stevesk@cvs.openbsd.org 2001/06/29 18:40:28
...
[channels.c]
use socklen_t for getsockopt arg #5 ; ok markus@
2001-07-04 05:13:35 +00:00
db47f383e6
- stevesk@cvs.openbsd.org 2001/06/29 18:38:44
...
[clientloop.c]
sync function definition with declaration; ok markus@
2001-07-04 05:10:27 +00:00
d6e049cd59
- markus@cvs.openbsd.org 2001/06/29 07:11:01
...
[ssh-keygen.c]
initialize early
2001-07-04 05:08:39 +00:00
7feba35a47
- markus@cvs.openbsd.org 2001/06/29 07:06:34
...
[ssh-keygen.c]
new error handling for cyberflex_*
2001-07-04 05:06:59 +00:00
511d69e6d7
- stevesk@cvs.openbsd.org 2001/06/28 19:57:35
...
[ssh-keygen.c]
'\0' terminated data[] is ok; ok markus@
2001-07-04 05:05:27 +00:00
44e49afae2
- markus@cvs.openbsd.org 2001/06/27 06:26:36
...
[ssh-add.c]
convert to getopt(3)
2001-07-04 05:03:51 +00:00
f7297dd79d
- markus@cvs.openbsd.org 2001/06/27 05:42:25
...
[rsa.c rsa.h ssh-agent.c ssh-keygen.c]
s/generate_additional_parameters/rsa_generate_additional_parameters/
http://www.humppa.com/
2001-07-04 05:02:23 +00:00
680b276aad
- markus@cvs.openbsd.org 2001/06/27 05:35:42
...
[ssh-keygen.c]
use cyberflex_inq_class to inquire class.
2001-07-04 05:00:11 +00:00
60260022ee
- markus@cvs.openbsd.org 2001/06/27 04:48:53
...
[auth.c match.c sshd.8]
tridge@samba.org
2001-07-04 04:56:44 +00:00
bddd551e11
- markus@cvs.openbsd.org 2001/06/27 02:12:54
...
[serverloop.c serverloop.h session.c session.h]
quick hack to make ssh2 work again.
2001-07-04 04:53:53 +00:00
eb7a84c49e
- dugsong@cvs.openbsd.org 2001/06/26 17:41:49
...
[servconf.c]
#include <kafs.h>
2001-07-04 04:48:36 +00:00
4cc240dabb
- markus@cvs.openbsd.org 2001/06/26 17:27:25
...
[authfd.h authfile.h auth.h auth-options.h bufaux.h buffer.h
canohost.h channels.h cipher.h clientloop.h compat.h compress.h
crc32.h deattack.h dh.h dispatch.h groupaccess.c groupaccess.h
hostfile.h kex.h key.h log.c log.h mac.h misc.c misc.h mpaux.h
packet.h radix.h readconf.h readpass.h rsa.h servconf.h serverloop.h
session.h sftp-common.c sftp-common.h sftp-glob.h sftp-int.h
sshconnect.h ssh-dss.h sshlogin.h sshpty.h ssh-rsa.h sshtty.h
tildexpand.h uidswap.h uuencode.h xmalloc.h]
remove comments from .h, since they are cut&paste from the .c files
and out of sync
2001-07-04 04:46:56 +00:00
5bf5d67d49
- markus@cvs.openbsd.org 2001/06/26 17:25:34
...
[ssh.1]
document SSH_ASKPASS; fubob@MIT.EDU
2001-07-04 04:31:38 +00:00
ec95ed9b4c
- dugsong@cvs.openbsd.org 2001/06/26 16:15:25
...
[auth1.c auth.h auth-krb4.c auth-passwd.c readconf.c readconf.h
servconf.c servconf.h session.c sshconnect1.c sshd.c]
Kerberos v5 support for SSH1, mostly from Assar Westerlund
<assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
2001-07-04 04:21:14 +00:00
b4c774cf88
- itojun@cvs.openbsd.org 2001/06/26 06:33:07
...
[servconf.h serverloop.h session.h sftp-client.h sftp-common.h
sftp-glob.h sftp-int.h sshconnect.h ssh-dss.h sshlogin.h sshpty.h
ssh-rsa.h tildexpand.h uidswap.h uuencode.h xmalloc.h]
prototype pedant. not very creative...
- () -> (void)
- no variable names
2001-07-04 04:07:12 +00:00
16ae3d0dba
- itojun@cvs.openbsd.org 2001/06/26 06:32:58
...
[atomicio.h authfd.h authfile.h auth.h auth-options.h bufaux.h
buffer.h canohost.h channels.h cipher.h clientloop.h compat.h
compress.h crc32.h deattack.h dh.h dispatch.h groupaccess.h
hostfile.h kex.h key.h log.h mac.h match.h misc.h mpaux.h packet.h
radix.h readconf.h readpass.h rsa.h]
prototype pedant. not very creative...
- () -> (void)
- no variable names
2001-07-04 04:02:36 +00:00
90279d80f5
- markus@cvs.openbsd.org 2001/06/26 05:50:11
...
[auth2.c]
new interface for secure_filename()
2001-07-04 03:56:56 +00:00
88a6b7581b
- mpech@cvs.openbsd.org 2001/06/26 05:48:07
...
[sshd.8]
remove unnecessary .Pp between .It;
millert@ ok
2001-07-04 03:55:21 +00:00
3f471630bb
- markus@cvs.openbsd.org 2001/06/26 05:33:34
...
[ssh-agent.c]
more smartcard support.
2001-07-04 03:53:15 +00:00
db6b276f5a
- markus@cvs.openbsd.org 2001/06/26 05:07:43
...
[ssh-agent.c]
update usage
2001-07-04 03:51:35 +00:00
036a6b28c9
- markus@cvs.openbsd.org 2001/06/26 04:59:59
...
[authfd.c authfd.h ssh-add.c]
initial support for smartcards in the agent
2001-07-04 03:50:02 +00:00
d94580c708
- markus@cvs.openbsd.org 2001/06/26 04:07:06
...
[ssh-agent.1 ssh-agent.c]
add debug flag
2001-07-04 03:48:02 +00:00
cd392284ac
- markus@cvs.openbsd.org 2001/06/26 02:47:07
...
[ssh-keygen.c]
allow loading a private RSA key to a cyberflex card.
2001-07-04 03:44:03 +00:00
7907382299
- stevesk@cvs.openbsd.org 2001/06/25 20:26:37
...
[auth2.c sshconnect2.c]
prototype cleanup; ok markus@
2001-07-04 03:42:30 +00:00
248c0784bf
- provos@cvs.openbsd.org 2001/06/25 17:54:47
...
[auth.c auth.h auth-rsa.c]
terminate secure_filename checking after checking homedir. that way
it works on AFS. okay markus@
2001-07-04 03:40:39 +00:00
bda98b0091
- markus@cvs.openbsd.org 2001/06/25 17:18:27
...
[ssh-keygen.1]
sshd(8) will never read the private keys, but ssh(1) does;
hugh@mimosa.com
2001-07-04 03:35:24 +00:00
4469723325
- markus@cvs.openbsd.org 2001/06/25 08:25:41
...
[channels.c channels.h cipher.c clientloop.c compat.c compat.h
hostfile.c kex.c kex.h key.c key.h nchan.c packet.c serverloop.c
session.c session.h sftp-server.c ssh-add.c ssh-agent.c uuencode.h]
update copyright for 2001
2001-07-04 03:32:30 +00:00
5cc6e92251
- (stevesk) remove cli.[ch]
2001-06-29 19:51:48 +00:00
9b26f96c12
- (stevesk) session.c: use u_int for envsize
2001-06-29 17:52:17 +00:00
78e83b3e5e
- (stevesk) remove _REENTRANT #define
2001-06-29 16:56:16 +00:00
1cd6fefcc8
- (bal) Updated zlib's home. Thanks to David Howe <DaveHowe@gmx.co.uk>.
2001-06-29 12:39:23 +00:00
5d739a4c86
- (bal) Fixed _DISABLE_VPOSIX in readpassphrase.c.
2001-06-29 12:35:12 +00:00
deacfcc43f
- (bal) Removed net_aton() since we don't use it any more
2001-06-29 12:32:31 +00:00
e6affc6a13
- (bal) Remove getusershell() since it's no longer use
2001-06-28 23:27:37 +00:00
f96d887d75
- (bal) Removed strtok_r and inet_ntop since they are no longer used.
2001-06-28 23:21:28 +00:00
acf59e68cb
- (djm) Fix from Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE> for my
...
broken makefile
2001-06-28 20:23:14 +10:00
180207ffe1
20010628
...
- (djm) Sync openbsd-compat with -current libc
2001-06-28 14:48:28 +10:00
315f8b70b0
- (stevesk) use X/Open socket interface for HP-UX 10.X also
2001-06-28 00:24:41 +00:00
37a777e98b
- (stevesk) fix x11 forwarding from _PATH_XAUTH change
2001-06-28 00:13:48 +00:00
6a7b0de576
- (stevesk) for HP-UX 11.X use X/Open socket interface;
...
pulls in modern socket prototypes and eliminates a number of compiler
warnings. see xopen_networking(7).
2001-06-27 16:32:24 +00:00
649d999b4b
- (djm) Turn up warnings if gcc or egcs detected
2001-06-27 23:35:51 +10:00
b90416b7df
- (djm) Sync with -current openbsd-compat/readpassphrase.c:
...
- djm@cvs.openbsd.org 2001/06/27 13:23:30
typo, spotted by Tom Holroyd <tomh@po.crl.go.jp>; ok deraadt@
2001-06-27 23:26:38 +10:00
b5b0af4d58
- (djm) Oops, forgot make logic for primes=>moduli. Also try to rename
...
existing primes->moduli if it exists.
2001-06-27 21:52:32 +10:00
407548b7ed
- (djm) Rename sysconfdir/primes => sysconfdir/moduli
2001-06-27 17:07:16 +10:00
ec9868aa3c
- (djm) Remove redundant and incorrect test for max auth attempts in
...
PAM kbdint code. Based on fix from Matthew Melvin
<matthewm@webcentral.com.au>
2001-06-27 15:36:43 +10:00
665af9cae7
- (djm) Reintroduce pam_session call for non-pty sessions.
2001-06-27 09:34:15 +10:00
c8a3868ed0
- (djm) Bring in readpassphrase() from OpenBSD libc. Compiles OK on Linux and
...
Solaris
2001-06-25 18:09:16 +10:00
2d5ac08f13
-Wall
2001-06-25 17:07:59 +10:00
491bbb811a
- markus@cvs.openbsd.org 2001/06/24 17:18:31
...
[ttymodes.c]
passing modes works fine: debug2->3
2001-06-25 05:24:16 +00:00
126c56ad9e
- markus@cvs.openbsd.org 2001/06/24 05:47:13
...
[sshconnect2.c]
oops, missing format string
2001-06-25 05:22:53 +00:00
949974bbdb
- markus@cvs.openbsd.org 2001/06/24 05:35:33
...
[readpass.c readpass.h ssh-add.c sshconnect2.c ssh-keygen.c]
switch to readpassphrase(3)
2.7/8-stable needs readpassphrase.[ch] from libc
2001-06-25 05:20:31 +00:00
f0c50293dd
- markus@cvs.openbsd.org 2001/06/24 05:25:10
...
[auth-options.c match.c match.h]
move ip+hostname check to match.c
2001-06-25 05:17:53 +00:00
0520945179
- markus@cvs.openbsd.org 2001/06/23 22:37:46
...
[sshconnect1.c]
consistent with ssh2: skip key if empty passphrase is entered,
retry num_of_passwd_prompt times if passphrase is wrong. ok fgsch@
2001-06-25 05:16:02 +00:00
980978639c
- markus@cvs.openbsd.org 2001/06/23 19:12:43
...
[sshd.c]
pidfile/sigterm race; bbraun@synack.net
2001-06-25 05:10:20 +00:00
2464322d7e
- itojun@cvs.openbsd.org 2001/06/23 17:48:18
...
[sftp.1 ssh.1 sshd.8 ssh-keyscan.1]
kill whitespace at EOL.
2001-06-25 05:08:11 +00:00
e586c4ce3f
- markus@cvs.openbsd.org 2001/06/23 17:05:22
...
[ssh-keygen.c]
fix import for (broken?) ssh.com/f-secure private keys
(i tested > 1000 RSA keys)
2001-06-25 05:04:58 +00:00
bba81213b9
- itojun@cvs.openbsd.org 2001/06/23 15:12:20
...
[auth1.c auth2.c auth2-chall.c authfd.c authfile.c auth-rhosts.c
canohost.c channels.c cipher.c clientloop.c deattack.c dh.c
hostfile.c kex.c kexdh.c kexgex.c key.c nchan.c packet.c radix.c
readpass.c scp.c servconf.c serverloop.c session.c sftp.c
sftp-client.c sftp-glob.c sftp-int.c sftp-server.c ssh-add.c
ssh-agent.c ssh.c sshconnect1.c sshconnect2.c sshconnect.c sshd.c
ssh-keygen.c ssh-keyscan.c]
more strict prototypes. raise warning level in Makefile.inc.
markus ok'ed
TODO; cleanup headers
2001-06-25 05:01:22 +00:00
34f91883a6
- markus@cvs.openbsd.org 2001/06/23 06:41:10
...
[ssh-keygen.c]
try to decode ssh-3.0.0 private rsa keys
(allow migration to openssh, not vice versa), #910
2001-06-25 04:47:54 +00:00
90fd060bc8
- deraadt@cvs.openbsd.org 2001/06/23 05:57:09
...
[sftp.1 sftp-server.8 ssh-keygen.1]
ok, tmac is now fixed
2001-06-25 04:45:33 +00:00
5363aee8bd
- markus@cvs.openbsd.org 2001/06/23 05:26:02
...
[key.c]
handle sigature of size 0 (some broken clients send this).
2001-06-25 04:42:20 +00:00
a4789ef878
- markus@cvs.openbsd.org 2001/06/23 03:04:42
...
[auth2.c auth-rh-rsa.c]
restore correct ignore_user_known_hosts logic.
2001-06-25 04:40:49 +00:00
3c798d4743
- markus@cvs.openbsd.org 2001/06/23 03:03:59
...
[sshd.8]
draft-ietf-secsh-dh-group-exchange-01.txt
2001-06-25 04:39:22 +00:00
d6481ea49a
- markus@cvs.openbsd.org 2001/06/23 02:34:33
...
[kexdh.c kexgex.c kex.h pathnames.h readconf.c servconf.h ssh.1
sshconnect1.c sshconnect2.c sshconnect.c sshconnect.h sshd.8]
get rid of known_hosts2, use it for hostkey lookup, but do not
modify.
2001-06-25 04:37:41 +00:00
b710f788f1
- deraadt@cvs.openbsd.org 2001/06/23 02:33:05
...
[sftp.1 sftp-server.8 ssh-keygen.1]
join .%A entries; most by bk@rt.fm
2001-06-25 04:32:38 +00:00
83647ce474
- markus@cvs.openbsd.org 2001/06/23 00:20:57
...
[auth2.c auth.c auth.h auth-rh-rsa.c]
*known_hosts2 is obsolete for hostbased authentication and
only used for backward compat. merge ssh1/2 hostkey check
and move it to auth.c
2001-06-25 04:30:16 +00:00
7d5ed3a07b
- deraadt@cvs.openbsd.org 2001/06/23 00:16:16
...
[scp.c]
slightly better care
2001-06-25 04:28:30 +00:00
6ab6486273
- markus@cvs.openbsd.org 2001/06/22 23:35:21
...
[ssh.c]
don't overwrite argv (fixes ssh user@host in 'ps'), report by ericj@
2001-06-25 04:26:55 +00:00
488d8805f3
- markus@cvs.openbsd.org 2001/06/22 22:21:20
...
[sftp-server.c]
allow long usernames/groups in readdir
2001-06-25 04:24:49 +00:00
af7388046d
- provos@cvs.openbsd.org 2001/06/22 21:57:59
...
[dh.c]
increase linebuffer to deal with larger moduli; use rewind instead of
close/open
2001-06-25 04:18:59 +00:00
f96704d4ef
- markus@cvs.openbsd.org 2001/06/22 21:55:49
...
[auth2.c auth-rsa.c pathnames.h ssh.1 sshd.8 sshd_config
ssh-keygen.1]
merge authorized_keys2 into authorized_keys.
authorized_keys2 is used for backward compat.
(just append authorized_keys2 to authorized_keys).
2001-06-25 04:17:12 +00:00
ae1c51c208
- provos@cvs.openbsd.org 2001/06/22 21:28:53
...
[sshd.8]
document /etc/moduli
2001-06-25 04:14:59 +00:00
93a29e046e
- provos@cvs.openbsd.org 2001/06/22 21:27:08
...
[dh.c pathnames.h]
use /etc/moduli instead of /etc/primes, okay markus@
2001-06-25 04:13:25 +00:00
d2bf0d64d9
- mpech@cvs.openbsd.org 2001/06/22 10:17:51
...
[ssh.1 sshd.8 ssh-keyscan.1]
o) .Sh AUTHOR -> .Sh AUTHORS;
o) remove unnecessary .Pp;
o) better -mdoc style;
o) typo;
o) sort SEE ALSO;
aaron@ ok
2001-06-25 04:10:54 +00:00
07094e52e7
- markus@cvs.openbsd.org 2001/06/21 21:08:25
...
[session.c]
don't reset forced_command (we allow multiple login shells in
ssh2); dwd@bell-labs.com
2001-06-25 03:59:43 +00:00
824569537f
- (stevesk) handle systems without pw_expire and pw_change.
2001-06-22 21:14:18 +00:00
601e43638e
- markus@cvs.openbsd.org 2001/06/20 13:56:39
...
[channels.c channels.h clientloop.c packet.c serverloop.c]
move from channel_stop_listening to channel_free_all,
call channel_free_all before calling waitpid() in serverloop.
fixes the utmp handling; report from Lutz.Jaenicke@aet.TU-Cottbus.DE
2001-06-21 03:19:23 +00:00
0a7ca6c7ba
- markus@cvs.openbsd.org 2001/06/19 15:40:45
...
[session.c]
allocate and free at the same level.
2001-06-21 03:17:42 +00:00
699776e9ec
- markus@cvs.openbsd.org 2001/06/19 14:09:45
...
[session.c sshd.8]
disable x11-fwd if use_login is enabled; from lukem@wasabisystems.com
2001-06-21 03:14:49 +00:00
c85ab8afab
- markus@cvs.openbsd.org 2001/06/19 12:34:09
...
[session.c]
cleanup forced command handling, from dwd@bell-labs.com
2001-06-21 03:13:10 +00:00
3af4d4634f
- markus@cvs.openbsd.org 2001/06/16 08:58:34
...
[misc.c]
copy pw_expire and pw_change, too.
2001-06-21 03:11:27 +00:00
738f51e3df
- markus@cvs.openbsd.org 2001/06/16 08:57:35
...
[scp.c]
no stdio or exit() in signal handlers.
2001-06-21 03:08:58 +00:00
83417a86da
- markus@cvs.openbsd.org 2001/06/16 08:50:39
...
[channels.h]
bad //-style comment; thx to stevev@darkwing.uoregon.edu
2001-06-21 03:07:27 +00:00
352b1c2130
- markus@cvs.openbsd.org 2001/06/16 08:49:38
...
[misc.c]
typo; dunlap@apl.washington.edu
2001-06-21 03:04:37 +00:00
805cf5a788
- (stevesk) update TODO: STREAMS pty systems don't call vhangup() now
2001-06-15 04:23:12 +00:00
974fb9cf2f
- (stevesk) don't set SA_RESTART and set SIGCHLD to SIG_DFL
...
around grantpt().
2001-06-15 00:04:23 +00:00
7a83722577
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/06/13 09:10:31
[session.c]
typo, use pid not s->pid, mstone@cs.loyola.edu
2001-06-13 19:23:32 +00:00
c51ae1bdaa
- markus@cvs.openbsd.org 2001/06/12 21:30:57
...
[session.c]
unused
2001-06-13 04:43:52 +00:00
2bcdf064d8
- markus@cvs.openbsd.org 2001/06/12 21:21:29
...
[session.c]
remove xauth-cookie-in-tmp handling. use default $XAUTHORITY, since
we do already trust $HOME/.ssh
you can use .ssh/sshrc and .ssh/environment if you want to customize
the location of the xauth cookies
2001-06-13 04:41:41 +00:00
16d45b3952
- markus@cvs.openbsd.org 2001/06/12 16:11:26
...
[packet.c]
do not log() packet_set_maxsize
2001-06-13 04:39:18 +00:00
49c126044d
- markus@cvs.openbsd.org 2001/06/12 16:10:38
...
[session.c]
merge ssh1/ssh2 tty msg parse and alloc code
2001-06-13 04:37:36 +00:00
7eaf8e4e26
- markus@cvs.openbsd.org 2001/06/12 10:58:29
...
[session.c]
merge session_free into session_close()
merge pty_cleanup_proc into session_pty_cleanup()
2001-06-13 04:35:43 +00:00
34a996877e
- markus@cvs.openbsd.org 2001/06/11 16:04:38
...
[sshd.8]
typo; bdubreuil@crrel.usace.army.mil
2001-06-12 00:23:12 +00:00
88259fbbc5
- markus@cvs.openbsd.org 2001/06/11 10:18:24
...
[session.c]
reset pointer to NULL after xfree(); report from solar@openwall.com
2001-06-12 00:21:34 +00:00
0a0c3a63d0
- scp.c ID update (upstream synced vfsprintf() from us)
2001-06-12 00:15:57 +00:00
16c1bd6d09
- markus@cvs.openbsd.org 2001/06/10 11:29:20
...
[dispatch.c]
we support rekeying
protocol errors are fatal.
2001-06-12 00:12:56 +00:00
0b35572596
- (bal) Fixed Makefile.in so that 'configure; make install' works.
2001-06-10 17:43:35 +00:00
d7d7da12ec
- (bal) Handle broken krb4 issues on Solaris with multiple defined u_*_t
...
types. Patch by Jan IVEN <Jan.Iven@cern.ch>
2001-06-10 17:35:45 +00:00
68c3ce1075
- (bal) NeXT/MacOS X lack libgen.h and dirname(). Patch by Mark Miller
...
<markm@swoon.net>
2001-06-10 17:24:51 +00:00
d1aed9c057
- (bal) Missed two files in major resync. auth-bsdauth.c and auth-skey.c
2001-06-10 00:41:18 +00:00
9841b0a1ac
- (bal) --with-catman should be --with-mantype patch by Dave
...
Dykstra <dwd@bell-labs.com>
2001-06-09 02:26:58 +00:00
b30768f504
- (bal) ANSIify strmode()
2001-06-09 02:22:16 +00:00
23fec14710
- (bal) configure.in fix for Tru64 (forgeting to reset $LIB)
2001-06-09 02:16:28 +00:00
1bf11f6af7
- markus@cvs.openbsd.org 2001/06/08 15:25:40
...
[includes.h pathnames.h readconf.c servconf.c]
move the path for xauth to pathnames.h
2001-06-09 01:48:01 +00:00
4d3f227699
- markus@cvs.openbsd.org 2001/06/07 22:25:02
...
[session.c]
don't overwrite errno
delay deletion of the xauth cookie
2001-06-09 01:44:07 +00:00
664408d2a7
- markus@cvs.openbsd.org 2001/06/07 20:23:05
...
[authfd.c authfile.c channels.c kexdh.c kexgex.c packet.c ssh.c
sshconnect.c sshconnect1.c]
use xxx_put_cstring()
2001-06-09 01:42:01 +00:00
9d0c06667e
- markus@cvs.openbsd.org 2001/06/07 19:57:53
...
[auth2.c]
style is used for bsdauth.
disconnect on user/service change (ietf-drafts)
2001-06-09 01:40:00 +00:00
5acb5d03ed
- markus@cvs.openbsd.org 2001/06/06 23:19:35
...
[ssh-add.c]
remove debug message; Darren.Moffat@eng.sun.com
2001-06-09 01:38:24 +00:00
c66d436f60
- markus@cvs.openbsd.org 2001/06/06 23:13:54
...
[ssh-dss.c ssh-rsa.c]
cleanup, remove old code
2001-06-09 01:36:21 +00:00
cb3929d1d9
- markus@cvs.openbsd.org 2001/06/05 16:46:19
...
[session.c]
let session_close() delete the pty. deny x11fwd if xauthfile is set.
2001-06-09 01:34:15 +00:00
df4981bc31
- markus@cvs.openbsd.org 2001/06/05 10:24:32
...
[channels.c]
don't delete the auth socket in channel_stop_listening()
auth_sock_cleanup_proc() will take care of this.
2001-06-09 01:32:29 +00:00
a238f6e834
- pvalchev@cvs.openbsd.org 2001/06/05 05:05:39
...
[ssh-keyscan.1 ssh-keyscan.c]
License clarification from David Mazieres, ok deraadt@
2001-06-09 01:30:39 +00:00
768176b240
- markus@cvs.openbsd.org 2001/06/04 23:16:16
...
[session.c]
merge ssh1/2 x11-fwd setup, create listener after tmp-dir
2001-06-09 01:29:12 +00:00
ec46e0b5fd
- markus@cvs.openbsd.org 2001/06/04 23:07:21
...
[clientloop.c serverloop.c sshd.c]
set flags in the signal handlers, do real work in the main loop,
ok provos@
2001-06-09 01:27:31 +00:00
983c098311
- markus@cvs.openbsd.org 2001/06/04 21:59:43
...
[channels.c channels.h session.c]
switch uid when cleaning up tmp files and sockets; reported by
zen-parse@gmx.net on bugtraq
2001-06-09 01:20:06 +00:00
742e89ec5d
- markus@cvs.openbsd.org 2001/06/03 20:06:11
...
[auth2-chall.c]
the challenge response device decides how to handle non-existing
users.
-> fake challenges for skey and cryptocard
2001-06-09 01:17:23 +00:00
9cc9464613
- markus@cvs.openbsd.org 2001/06/03 19:38:42
...
[scp.c]
pass -v to ssh; from slade@shore.net
2001-06-09 01:15:11 +00:00
2a097a4543
- markus@cvs.openbsd.org 2001/06/03 19:36:44
...
[ssh-keygen.1]
1-2 bits of entrophy per character (not per word), ok stevesk@
2001-06-09 01:13:40 +00:00
838394ca26
- markus@cvs.openbsd.org 2001/06/03 14:55:39
...
[channels.c channels.h session.c]
use fatal_register_cleanup instead of atexit, sync with x11 authdir
handling
2001-06-09 01:11:59 +00:00
c4b7225b8d
- markus@cvs.openbsd.org 2001/05/31 13:08:04
...
[sshd_config]
group options and add some more comments
2001-06-09 01:09:51 +00:00
3b670d09a8
- (bal) Ooops.. nchan.c resync from OpenBSD ssh Attic.
2001-06-09 00:57:39 +00:00
a6fc91e86e
- (bal) nchan.c CVS ID Update.
2001-06-09 00:44:44 +00:00
e9c999137a
- (bal) Channels.c and Channels.h -- "Merge Functions, simplify" (draged
...
out of ssh Attic)
2001-06-09 00:41:05 +00:00
c763767f18
[NOTE: Next patch will sync nchan.c, channels.c and channels.h and all this
...
pain will be over.]
- markus@cvs.openbsd.org 2001/05/31 10:30:17
[auth-options.c auth2.c channels.c channels.h clientloop.c nchan.c
packet.c serverloop.c session.c ssh.c]
undo the .c file split, just merge the header and keep the cvs
history
2001-06-09 00:36:26 +00:00
5ec2645a2d
- markus@cvs.openbsd.org 2001/05/30 15:20:10
...
[ssh.c]
merge functions, simplify.
2001-06-09 00:18:51 +00:00
e6455aee8f
[NOTE: File split is was not done in Portabl Tree]
...
- markus@cvs.openbsd.org 2001/05/30 12:55:13
[auth-options.c auth2.c channels.c channels.h clientloop.c nchan.c
packet.c serverloop.c session.c ssh.c ssh1.h]
channel layer cleanup: merge header files and split .c files
2001-06-09 00:17:10 +00:00
2d0356f7de
- markus@cvs.openbsd.org 2001/05/29 12:31:27
...
[authfile.c]
typo
2001-06-05 21:13:57 +00:00
80c6d77085
- markus@cvs.openbsd.org 2001/05/28 23:58:35
...
[packet.c packet.h sshconnect.c sshd.c]
remove some lines, simplify.
2001-06-05 21:09:18 +00:00
4c247550ae
- markus@cvs.openbsd.org 2001/05/28 23:25:24
...
[channels.c]
cleanup, typo
2001-06-05 20:56:47 +00:00
c0dee1a148
- markus@cvs.openbsd.org 2001/05/28 23:14:49
...
[channels.c channels.h nchan.c]
undo broken channel fix and try a different one. there
should be still some select errors...
2001-06-05 20:52:50 +00:00
a3828d4812
- markus@cvs.openbsd.org 2001/05/28 22:51:11
...
[cipher.c cipher.h]
simpler 3des for ssh1
2001-06-05 20:50:16 +00:00
322915d5e4
- markus@cvs.openbsd.org 2001/05/28 10:08:55
...
[authfile.c]
key_load_private: set comment to filename for PEM keys
2001-06-05 20:46:32 +00:00
3b89c5ef89
- markus@cvs.openbsd.org 2001/05/28 08:04:39
...
[ssh.c]
fix usage()
2001-06-05 20:44:16 +00:00
d78ae766de
- markus@cvs.openbsd.org 2001/05/25 14:37:32
...
[ssh-keygen.c]
use -P for -e and -y, too.
2001-06-05 20:35:09 +00:00
2b1f71baee
- stevesk@cvs.openbsd.org 2001/05/24 18:57:53
...
[clientloop.c readconf.c ssh.c ssh.h]
don't perform escape processing when ``EscapeChar none''; ok markus@
2001-06-05 20:32:21 +00:00
60567ff890
- markus@cvs.openbsd.org 2001/05/24 11:12:42
...
[auth.c]
fix comment; from jakob@
2001-06-05 20:27:53 +00:00
bfb3a0e973
- markus@cvs.openbsd.org 2001/05/20 17:20:36
...
[auth-rsa.c auth.c auth.h auth2.c servconf.c servconf.h sshd.8
sshd_config]
configurable authorized_keys{,2} location; originally from peter@;
ok djm@
2001-06-05 20:25:05 +00:00
e259544876
- stevesk@cvs.openbsd.org 2001/05/19 19:57:09
...
[channels.c]
typo in error message
2001-06-05 20:01:39 +00:00
1bda4c835e
- stevesk@cvs.openbsd.org 2001/05/19 19:43:57
...
[misc.c misc.h servconf.c sshd.8 sshd.c]
sshd command-line arguments and configuration file options that
specify time may be expressed using a sequence of the form:
time[qualifier], where time is a positive integer value and qualifier
is one of the following:
<none>,s,m,h,d,w
Examples:
600 600 seconds (10 minutes)
10m 10 minutes
1h30m 1 hour 30 minutes (90 minutes)
ok markus@
2001-06-05 19:59:08 +00:00
bd0e2de8e5
- markus@cvs.openbsd.org 2001/05/19 16:46:19
...
[ssh.1 sshd.8]
document MACs defaults with .Dq
2001-06-05 19:52:52 +00:00
1bfe29151b
- markus@cvs.openbsd.org 2001/05/19 16:32:16
...
[ssh.1 sshconnect2.c]
change preferredauthentication order to
publickey,hostbased,password,keyboard-interactive
document that hostbased defaults to no, document order
2001-06-05 19:37:25 +00:00
608d1d1f9b
- markus@cvs.openbsd.org 2001/05/19 16:08:43
...
[sshd.8]
sort options; Matthew.Stier@fnc.fujitsu.com
2001-06-05 19:33:22 +00:00
7bad55b8cb
- markus@cvs.openbsd.org 2001/05/19 16:05:41
...
[scp.c]
ftruncate() instead of open()+O_TRUNC like rcp.c does
allows scp /path/to/file localhost:/path/to/file
2001-06-05 19:31:41 +00:00
7d68fbf4c5
- djm@cvs.openbsd.org 2001/05/19 00:36:40
...
[session.c]
Disable X11 forwarding if xauth binary is not found. Patch from Nalin
Dahyabhai <nalin@redhat.com>; ok markus@
2001-06-05 19:29:20 +00:00
551ea37576
- markus@cvs.openbsd.org 2001/05/18 14:13:29
...
[auth-chall.c auth.h auth1.c auth2-chall.c auth2.c readconf.c
readconf.h servconf.c servconf.h sshconnect1.c sshconnect2.c sshd.c]
improved kbd-interactive support. work by per@appgate.com and me
2001-06-05 18:56:16 +00:00
c4bcb7d9e3
- markus@cvs.openbsd.org 2001/05/17 21:34:15
...
[ssh.1]
no spaces in PreferredAuthentications;
meixner@rbg.informatik.tu-darmstadt.de
2001-06-05 18:39:10 +00:00
36fb6e5862
- (tim) [conifgure.in] add setvbuf test needed for sftp-int.c
...
Patch by Corinna Vinschen <vinschen@redhat.com>
2001-05-28 10:17:34 -07:00
b467ddb124
- (bal) Corrected on_exit() emulation via atexit().
2001-05-17 03:40:05 +00:00
ca60a9bf66
- (bal) Enabled USE_PIPES for Cygwin on Corinna Vinschen <vinschen@redhat.com>
2001-05-17 03:32:50 +00:00
b6147ab9e9
- markus@cvs.openbsd.org 2001/05/16 22:09:21
...
[channels.c nchan.c]
more select() error fixes (don't set rfd/wfd to -1).
2001-05-17 03:21:27 +00:00
c8b3f47676
- markus@cvs.openbsd.org 2001/05/16 21:53:53
...
[clientloop.c]
check for open sessions before we call select(); fixes the x11 client
bug reported by bowman@math.ualberta.ca
2001-05-17 03:19:40 +00:00
06b08018ef
- markus@cvs.openbsd.org 2001/05/16 20:51:57
...
[authfile.c]
return comments for private pem files, too; report from nolan@naic.edu
2001-05-17 03:17:55 +00:00
7121507b19
- deraadt@cvs.openbsd.org 2001/05/15 22:04:01
...
[ssh.1]
X11 forwarding details improved
2001-05-17 03:16:18 +00:00
abbb73d089
- markus@cvs.openbsd.org 2001/05/12 19:53:13
...
[sftp-server.c]
readlink does not NULL-terminate; mhe@home.se
2001-05-17 03:14:57 +00:00
6ef3964c79
- (bal) Patch to partial sync up contrib/solaris/ packaging software.
...
Patch by pete <ninjaz@webexpress.com>
2001-05-12 16:50:50 +00:00
c93e84c2ce
- markus@cvs.openbsd.org 2001/05/11 14:59:56
...
[clientloop.c misc.c misc.h]
add unset_nonblock for stdout/err flushing in client_loop().
2001-05-12 00:08:37 +00:00
ddb4f24056
- markus@cvs.openbsd.org 2001/05/09 23:01:31
...
[rijndael.h]
fix prototype; J.S.Peatfield@damtp.cam.ac.uk
2001-05-10 23:26:11 +00:00
6d618466e8
- markus@cvs.openbsd.org 2001/05/09 22:51:57
...
[channels.c]
fix -R for protocol 2, noticed by greg@nest.cx .
bug was introduced with experimental dynamic forwarding.
2001-05-10 23:24:49 +00:00
6aebb340fb
- (bal) Updates from the Sony NEWS-OS platform by NAKAJI Hiroyuki
...
<nakaji@tutrp.tut.ac.jp>
2001-05-09 00:38:19 +00:00
56b9d459ff
- markus@cvs.openbsd.org 2001/05/08 22:48:07
...
[atomicio.c]
no need for xmalloc.h, thanks to espie@
2001-05-09 00:02:52 +00:00
a69d89bb45
I have no clue how this file was mised.. <frown>
...
- markus@cvs.openbsd.org 2001/05/08 19:17:31
[channels.c serverloop.c clientloop.c]
adds correct error reporting to async connect()s
fixes the server-discards-data-before-connected-bug found by
onoe@sm.sony.co.jp
2001-05-09 00:01:18 +00:00
23fedf5e49
- markus@cvs.openbsd.org 2001/05/06 21:45:14
...
[clientloop.c]
use atomicio for flushing stdout/stderr bufs. thanks to
jbw@izanami.cee.hw.ac.uk
2001-05-08 23:58:37 +00:00
72af2ef8db
- (bal) ./configure support to disable SIA on OSF1. Patch by
...
Chris Adams <cmadams@hiwaay.net>
2001-05-08 20:42:28 +00:00
97c677d4f0
- (bal) UseLogin patch for Solaris/UNICOS. Patch by Wayne Davison
...
<wayne@blorf.net>
2001-05-08 20:33:05 +00:00
387c472660
- mouring@cvs.openbsd.org 2001/05/08 19:45:25
...
[misc.c misc.h scp.c sftp.c]
Use addargs() in sftp plus some clean up of addargs(). OK Markus
2001-05-08 20:27:25 +00:00
6912866893
- markus@cvs.openbsd.org 2001/05/08 19:17:31
...
[channels.c serverloop.c]
adds correct error reporting to async connect()s
fixes the server-discards-data-before-connected-bug found by
onoe@sm.sony.co.jp
2001-05-08 20:07:39 +00:00
e487d84e03
- markus@cvs.openbsd.org 2001/05/06 21:23:31
...
[cli.c]
cli_read() fails to catch SIGINT + overflow; from obdb@zzlevo.net
2001-05-08 20:05:44 +00:00
253effb61d
- (bal) Fixed configure test for USE_SIA.
2001-05-07 12:54:26 +00:00
f278613f5e
- (bal) CVS ID updates for readpass.c, readpass.h, cli.c, and cli.h
2001-05-06 18:01:43 +00:00
aafff9cc76
- stevesk@cvs.openbsd.org 2001/05/05 13:42:52
...
[sftp.1 ssh-add.1 ssh-keygen.1]
typos, grammar
2001-05-06 03:01:02 +00:00
93d1fe8112
- (bal) Add 'seed_rng()' to ssh-add.c
2001-05-06 02:57:20 +00:00
5428bea574
- (bal) White Space and #ifdef sync with OpenBSD
2001-05-06 02:53:25 +00:00
5bf5f2c8f8
- (djm) Update config.guess and config.sub with latest versions (from
...
ftp://ftp.gnu.org/gnu/config/) to allow configure on ia64-hpux.
Suggested by Jason Mader <jason@ncac.gwu.edu>
2001-05-06 10:54:15 +10:00
99c73b377a
- markus@cvs.openbsd.org 2001/05/04 23:47:34
...
[channels.c channels.h clientloop.c nchan.c nchan.h serverloop.c ssh.c]
move to Channel **channels (instead of Channel *channels), fixes realloc
problems. channel_new now returns a Channel *, favour Channel * over
channel id. remove old channel_allocate interface.
2001-05-05 04:09:47 +00:00
c8cb8c0405
- markus@cvs.openbsd.org 2001/05/04 14:34:34
...
[channels.c]
channel_new() reallocs channels[], we cannot use Channel *c after calling
channel_new(), XXX fix this in the future...
2001-05-04 22:40:28 +00:00
f0609f8bd3
- stevesk@cvs.openbsd.org 2001/05/04 14:21:56
...
[ssh.1 sshd.8]
typos
2001-05-04 22:38:43 +00:00
4529b70b4c
- mouring@cvs.openbsd.org 2001/05/03 23:09:53
...
[misc.c misc.h scp.c sftp.c]
Move colon() and cleanhost() to misc.c where I should I have put it in
the first place
2001-05-03 23:39:53 +00:00
3524d69737
- (bal) Avoid socket file security issues in ssh-agent for Cygwin.
...
Patch by Egor Duda <deo@logos-m.ru>
2001-05-03 22:59:24 +00:00
834417afa5
- (bal) Updated Cygwin README by Corinna Vinschen <vinschen@redhat.com>
2001-05-03 22:45:21 +00:00
a6218b81ca
- stevesk@cvs.openbsd.org 2001/05/03 21:43:01
...
[servconf.c]
remove "\n" from fatal()
2001-05-03 22:39:11 +00:00
60402fd42a
- markus@cvs.openbsd.org 2001/05/03 15:45:15
...
[session.c]
exec shell -c /bin/sh .ssh/sshrc, from abartlet@pcug.org.au
2001-05-03 22:37:26 +00:00
2b45180b2e
- stevesk@cvs.openbsd.org 2001/05/03 15:07:39
...
[channels.c]
typo in debug() string
2001-05-03 22:35:32 +00:00
8a1371347b
- markus@cvs.openbsd.org 2001/05/02 16:41:20
...
[ssh-add.c]
fix prompt for ssh-add.
2001-05-02 22:40:12 +00:00
6d849315ff
- mouring@cvs.openbsd.org 2001/05/02 01:25:39
...
[readpass.c]
Put the 'const' back into ssh_askpass() function. Pointed out
by Mark Miller <markm@swoon.net>. OK Markus
2001-05-02 01:30:32 +00:00
aebd0b66fd
- markus@cvs.openbsd.org 2001/04/30 16:02:49
...
[compat.c]
ssh-2.0.10 has the weak-key-bug, too.
2001-04-30 23:09:45 +00:00
8c96392255
- markus@cvs.openbsd.org 2001/04/30 15:50:46
...
[compat.c compat.h kex.c]
allow interop with weaker key generation used by ssh-2.0.x, x < 10
2001-04-30 23:06:57 +00:00
67bf50e23a
- (tim) [contrib/caldera/openssh.spec] add Requires line for Caldera 3.1
2001-04-30 11:00:11 -07:00
e0f8804194
- markus@cvs.openbsd.org 2001/04/30 11:18:52
...
[readconf.c readconf.h ssh.1 ssh.c sshconnect.c]
implement 'ssh -b bind_address' like 'telnet -b'
2001-04-30 13:06:24 +00:00
8a188a8027
- (djm) Add .cvsignore files, suggested by Wayne Davison <wayne@blorf.net>
2001-04-30 13:55:37 +10:00
4534492aec
- (tim) New version of mdoc2man.pl from Mark D. Roth <roth+openssh@feep.net>
2001-04-29 18:01:51 -07:00
f343674d5e
- markus@cvs.openbsd.org 2001/04/29 19:16:52
...
[channels.c clientloop.c compat.c compat.h serverloop.c]
more ssh.com-2.0.x bug-compat; from per@appgate.com
2001-04-29 19:52:00 +00:00
2f0304c768
- markus@cvs.openbsd.org 2001/04/29 18:32:52
...
[serverloop.c]
fix whitespace
2001-04-29 19:49:14 +00:00
d240122ee8
Release
2001-04-29 20:45:50 +10:00
a4c02d8004
- (bal) Updated INSTALL. PCRE moved to a new place.
2001-04-28 16:32:10 +00:00
a8c7a62ad4
- (tim) update contrib/caldera files with what Caldera is using.
...
<sps@caldera.de>
2001-04-26 22:50:48 -07:00
bb34625b6c
- (bal) version.h synced, RPM specs updated for 2.9
2001-04-27 02:15:00 +00:00
0f85348e89
- (bal) Cygwin lacks setgroups() API. Patch by Corinna Vinschen
...
<vinschen@redhat.com>
2001-04-27 02:10:15 +00:00
26f33893a6
- (bal) Add /etc/sysconfig/sshd support to redhat's sshd.init. Patch by
...
Pekka Savola <pekkas@netcore.fi>
2001-04-27 00:46:17 +00:00
e39867df6d
- (bal) arpa/nameser.h does not exist on Cygwin. Patch by Corinna
...
Vinschen <vinschen@redhat.com>
2001-04-27 00:34:44 +00:00
3886218d5f
- (bal) Build manpages and config files once unless changed. Patch by
...
Carson Gaspar <carson@taltos.org>
2001-04-27 00:31:07 +00:00
4468b260cf
- (bal) Fixed uidswap.c so it should work on non-posix complient systems.
...
patch based on 2.5.2 version by djm.
2001-04-26 23:03:37 +00:00
07183b8e17
- tim@mindrot.org 2001/04/25 21:38:01 [configure.in]
...
man page detection fixes for SCO
2001-04-25 21:40:28 -07:00
da2ed56f61
- (djm) Include crypt.h if available in auth-passwd.c
2001-04-25 22:50:18 +10:00
f815442116
- (djm) Add new server configuration directive 'PAMAuthenticationViaKbdInt'
...
(default: off), implies KbdInteractiveAuthentication. Suggestion from
markus@
2001-04-25 22:44:14 +10:00
768f975b13
- (bal) Whitespace resync w/ OpenBSD for uidswap.c
2001-04-25 06:27:11 +00:00
3035860f24
- markus@cvs.openbsd.org 2001/04/23 22:14:13
...
[ssh-keygen.c]
remove debug
2001-04-24 16:59:28 +00:00
46c264f2ae
- markus@cvs.openbsd.org 2001/04/23 21:57:07
...
[ssh-keygen.1 ssh-keygen.c]
allow public key for -e, too
2001-04-24 16:56:58 +00:00
4adb091c29
- (bal) Fixed contrib/postinstall.in. Patch by wsanders@wsanders.net
2001-04-24 00:03:58 +00:00
3432834ca4
- (bal) sys/queue.h is bogus for NCR platform. Patch by Daniel Carroll
...
<dan@mesastate.edu>
2001-04-23 22:39:42 +00:00
706e7a9cf9
- (stevesk) auth-pam.c: use PERMIT_NO_PASSWD
2001-04-23 18:38:37 +00:00
265fb440e7
start_pam() not pam_start()
2001-04-23 17:55:26 +00:00
5f3b9b9091
- (stevesk) pam_start() doesn't use DNS now for sshd -u0.
2001-04-23 17:28:28 +00:00
c65e6a0fec
- markus@cvs.openbsd.org 2001/04/22 23:58:36
...
[ssh-keygen.1 ssh.1 sshd.8]
document hostbased and other cleanup
2001-04-23 13:02:16 +00:00
2857d9cf77
- markus@cvs.openbsd.org 2001/04/22 13:41:02
...
[ssh-keygen.1 ssh-keygen.c]
style, noted by stevesk; sort flags in usage
2001-04-22 17:19:46 +00:00
160ec62dce
- markus@cvs.openbsd.org 2001/04/22 13:32:27
...
[sftp-server.8 sftp.1 ssh.1 sshd.8]
xref draft-ietf-secsh-*
2001-04-22 17:17:46 +00:00
5a70782576
- markus@cvs.openbsd.org 2001/04/22 13:25:37
...
[ssh-keygen.1 ssh-keygen.c]
rename arguments -x -> -e (export key), -X -> -i (import key)
xref draft-ietf-secsh-publickeyfile-01.txt
2001-04-22 17:15:46 +00:00
4eda71d3de
- markus@cvs.openbsd.org 2001/04/22 12:34:05
...
[scp.c]
scp > 2GB; niles@scyld.com ; ok deraadt@, djm@
2001-04-22 17:13:20 +00:00
f8d245756b
- djm@cvs.openbsd.org 2001/04/22 08:13:30
...
[ssh.1]
typos spotted by stevesk@; ok deraadt@
2001-04-22 17:11:56 +00:00
8376ac354a
- mouring@cvs.openbsd.org 2001/04/21 00:55:57
...
[sftp.1]
Spelling
2001-04-22 17:10:11 +00:00
ee2786a2a1
- markus@cvs.openbsd.org 2001/04/20 16:32:22
...
[uidswap.c]
set non-privileged gid before uid; tholo@ and deraadt@
2001-04-22 17:08:00 +00:00
b8fbb8eca0
fix perl test, fix nroff test, fix Makefile to build outside source tree
2001-04-21 14:31:52 -07:00
32c97c3712
- (stevesk) document PAM service name change in INSTALL
2001-04-20 20:56:21 +00:00
85ecbe767e
- (stevesk) set the default PAM service name to __progname instead
...
of the hard-coded value "sshd"; from Mark D. Roth <roth@feep.net>
2001-04-20 17:43:47 +00:00
c3d0071552
- Update RPM spec files for CVS version.h
2001-04-20 23:19:37 +10:00
9ffdcb5478
- djm@cvs.openbsd.org 2001/04/20 07:17:51
...
[clientloop.c ssh.1]
Split out and improve escape character documentation, mention ~R in
~? help text; ok markus@
2001-04-20 12:50:51 +00:00
82f077d0dc
- (bal) Put scp-common.h back into scp.c (it exists in the upstream
...
tree) pointed out by Tom Holroyd <tomh@po.crl.go.jp>
2001-04-20 04:59:22 +00:00
3f36496e33
- markus@cvs.openbsd.org 2001/04/19 00:05:11
...
[auth2.c]
use local variable, no function call needed.
(btw, hostbased works now with ssh.com >= 2.0.13)
2001-04-19 20:50:07 +00:00
648772faf5
- markus@cvs.openbsd.org 2001/04/18 23:44:51
...
[authfile.c]
error->debug; noted by fries@
2001-04-19 20:47:10 +00:00
671388f233
- markus@cvs.openbsd.org 2001/04/18 23:43:26
...
[auth2.c compat.c sshconnect2.c]
more ssh v2 hostbased-auth interop: ssh.com >= 2.1.0 works now
(however the 2.1.0 server seems to work only if debug is enabled...)
2001-04-19 20:40:45 +00:00
4aa603c150
- markus@cvs.openbsd.org 2001/04/18 22:48:26
...
[auth2.c]
no longer const
2001-04-19 20:38:06 +00:00
2bffd6fd1b
- markus@cvs.openbsd.org 2001/04/18 22:03:45
...
[auth2.c sshconnect2.c]
use FDQN with trailing dot in the hostbased auth packets, ok deraadt@
2001-04-19 20:35:40 +00:00
5eb97b6f3d
- markus@cvs.openbsd.org 2001/04/18 21:57:42
...
[readpass.c ssh-add.c]
call askpass from ssh, too, based on work by roth@feep.net , ok deraadt
2001-04-19 20:33:07 +00:00
f73e05eca8
- ian@cvs.openbsd.org 2001/04/18 16:21:05
...
[ssh-keyscan.1]
Fix typo reported in PR/1779
2001-04-19 20:31:02 +00:00
bc70992058
- (bal) Makfile day... Cleaned up multiple mantype support (Patch by
...
Mark D. Roth <roth+openssh@feep.net>), and fixed PIDDIR support.
2001-04-18 18:04:21 +00:00
e2e66a27a7
- (bal) renabled 'catman-do:' and fixed it. So now catman pages should
...
be working again.
2001-04-18 15:46:01 +00:00
121c7852fe
- markus@cvs.openbsd.org 2001/04/18 14:15:00
...
[canohost.c]
debug->debug3
2001-04-18 15:32:44 +00:00
005dd22c97
- markus@cvs.openbsd.org 2001/04/17 19:34:25
...
[session.c]
move auth_approval to do_authenticated().
do_child(): nuke hostkeys from memory
don't source .ssh/rc for subsystems.
2001-04-18 15:29:33 +00:00
2b261b9035
- markus@cvs.openbsd.org 2001/04/17 12:55:04
...
[channels.c ssh.c]
undo socks5 and https support since they are not really used and
only bloat ssh. remove -D from usage(), since '-D' is experimental.
2001-04-17 18:14:34 +00:00
982dbbcfda
- markus@cvs.openbsd.org 2001/04/17 10:53:26
...
[key.c key.h readconf.c readconf.h ssh.1 sshconnect2.c]
add HostKeyAlgorithms; based on patch from res@shore.net ; ok provos@
2001-04-17 18:11:36 +00:00
4c8cff14dd
- markus@cvs.openbsd.org 2001/04/17 09:52:48
...
[clientloop.c]
handle EINTR/EAGAIN on read; ok deraadt@
2001-04-17 18:09:42 +00:00
9cb59afb90
- markus@cvs.openbsd.org 2001/04/17 08:14:01
...
[sshconnect1.c]
check for key!=NULL, thanks to costa
2001-04-17 18:08:15 +00:00
459d1913bf
- deraadt@cvs.openbsd.org 2001/04/16 08:26:04
...
[key.c]
better safe than sorry in later mods; yongari@kt-is.co.kr
2001-04-17 18:06:14 +00:00
04eeadea1d
Spelling.
2001-04-17 17:58:55 +00:00
47e0c0b100
- (bal) Add perl5 check for HP/UX, Removed GNUness from Makefile.in
...
and temporary commneted out catman-do: since it's broken. Patches
for the first two by Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-04-17 17:57:09 +00:00
364a9bd9ce
- Fix OSF SIA support displaying too much information for quiet
...
logins and logins where access was denied by SIA. Patch from Chris Adams
<cmadams@hiwaay.net>
2001-04-16 18:37:05 +10:00
cf205e8f35
- djm@cvs.openbsd.org 2001/04/16 08:19:31
...
[session.c]
Split motd and hushlogin checks into seperate functions, helps for
portable. From Chris Adams <cmadams@hiwaay.net>; ok markus@
2001-04-16 18:29:15 +10:00
0b1e0a1218
- deraadt@cvs.openbsd.org 2001/04/16 08:05:34
...
[xmalloc.c]
xrealloc dealing with ptr == nULL; mouring
2001-04-16 18:27:07 +10:00
21134b5b09
- (djm) OpenBSD CVS Sync
...
- mouring@cvs.openbsd.org 2001/04/16 02:31:44
[scp.c sftp.c]
IPv6 support for sftp (which I bungled in my last patch) which is
borrowed from scp.c. Thanks to Markus@ for pointing it out.
2001-04-16 18:26:41 +10:00
b5cdc66438
- stevesk@cvs.openbsd.org 2001/04/15 21:28:35
...
[readconf.c servconf.c]
use fatal() or error() vs. fprintf(); ok markus@
2001-04-16 02:13:26 +00:00
bdc2beb678
- (bal) CVS ID fix up and slight manpage fix from OpenBSD tree.
2001-04-16 02:11:52 +00:00
a8f3972ce6
- stevesk@cvs.openbsd.org 2001/04/15 19:41:21
...
[sshd.8]
some ClientAlive cleanup; ok markus@
2001-04-16 02:03:49 +00:00
302ea6f2f9
- markus@cvs.openbsd.org 2001/04/15 17:16:00
...
[clientloop.c]
set stdin/out/err to nonblocking in SSH proto 1, too. suggested by ho@
should fix some of the blocking problems for rsync over SSH-1
2001-04-16 02:01:25 +00:00
15f33866a6
- markus@cvs.openbsd.org 2001/04/15 16:58:03
...
[authfile.c ssh-keygen.c sshd.c]
don't use errno for key_{load,save}_private; discussion w/ solar@openwall
2001-04-16 02:00:02 +00:00
897741eeaa
- (djm) Convert mandoc manpages to man automatically. Patch from Mark D.
...
Roth <roth+openssh@feep.net>
2001-04-16 10:41:46 +10:00
206941fdd8
- markus@cvs.openbsd.org 2001/04/15 08:43:47
...
[dh.c sftp-glob.c sftp-glob.h sftp-int.c sshconnect2.c sshd.c]
some unused variable and typos; from tomh@po.crl.go.jp
2001-04-15 14:27:16 +00:00
ac2f003903
- OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2001/04/15 01:35:22
[ttymodes.c]
fix comments
2001-04-15 14:25:12 +00:00
e626cf8b4a
- Missed sshtty.[ch] in Sync.
2001-04-14 23:21:50 +00:00
f719a20110
- stevesk@cvs.openbsd.org 2001/04/14 17:04:42
...
[scp.c]
'T' handling rcp/scp sync; ok markus@
2001-04-14 23:14:22 +00:00
ae8e2d30db
- stevesk@cvs.openbsd.org 2001/04/14 16:33:20
...
[clientloop.c packet.h session.c ssh.c ttymodes.c ttymodes.h]
protocol 2 tty modes support; ok markus@
2001-04-14 23:13:02 +00:00
7457f2af01
- markus@cvs.openbsd.org 2001/04/14 16:27:57
...
[ssh-add.c]
use clear_pass instead of xfree()
2001-04-14 23:10:09 +00:00
d334b2768b
- markus@cvs.openbsd.org 2001/04/14 16:17:14
...
[channels.c]
remove some channels that are not appropriate for keepalive.
2001-04-14 23:08:36 +00:00
da5d9b1225
- deraadt@cvs.openbsd.org 2001/04/14 04:31:01
...
[ssh-add.c]
do not double free
2001-04-14 23:07:16 +00:00
5744dc421d
- beck@cvs.openbsd.org 2001/04/13 22:46:54
...
[channels.c channels.h servconf.c servconf.h serverloop.c sshd.8]
Add options ClientAliveInterval and ClientAliveCountMax to sshd.
This gives the ability to do a "keepalive" via the encrypted channel
which can't be spoofed (unlike TCP keepalives). Useful for when you want
to use ssh connections to authenticate people for something, and know
relatively quickly when they are no longer authenticated. Disabled
by default (of course). ok markus@
2001-04-13 23:28:01 +00:00
402b331945
- Cygwin sftp/sftp-server binary mode patch from Corinna Vinschen
...
<vinschen@redhat.com>
2001-04-14 00:28:42 +10:00
6e77a538ca
- Sync with OpenBSD glob.c, strlcat.c and vis.c changes
2001-04-14 00:22:33 +10:00
92d4a02001
- stevesk@cvs.openbsd.org 2001/04/13 01:26:17
...
[ssh.c]
missing \n in error message
2001-04-13 04:44:37 +00:00
63667f6568
- mouring@cvs.openbsd.org 2001/04/12 23:17:54
...
[sftp-int.c sftp-int.h sftp.1 sftp.c]
Add support for:
sftp [user@]host[:file [file]] - Fetch remote file(s)
sftp [user@]host[:dir[/]] - Start in remote dir/
OK deraadt@
2001-04-13 00:00:14 +00:00
19066a112b
- stevesk@cvs.openbsd.org 2001/04/12 20:09:38
...
[misc.c misc.h readconf.c servconf.c ssh.c sshd.c]
robust port validation; ok markus@ jakob@
2001-04-12 23:39:26 +00:00
d69dab3cde
- markus@cvs.openbsd.org 2001/04/12 19:39:27
...
[readconf.c]
typo
2001-04-12 23:36:05 +00:00
5eabda303a
- markus@cvs.openbsd.org 2001/04/12 19:15:26
...
[auth-rhosts.c auth.h auth2.c buffer.c canohost.c canohost.h
compat.c compat.h hostfile.c pathnames.h readconf.c readconf.h
servconf.c servconf.h ssh.c sshconnect.c sshconnect.h sshconnect1.c
sshconnect2.c sshd_config]
implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2)
similar to RhostRSAAuthentication unless you enable (the experimental)
HostbasedUsesNameFromPacketOnly option. please test. :)
2001-04-12 23:34:34 +00:00
0998872972
- (bal) Added openbsd-compat/inet_ntop.[ch] since HP/UX (and others)
...
lack it.
2001-04-12 21:35:52 +00:00
2b646528cb
- markus@cvs.openbsd.org 2001/04/12 14:29:09
...
[ssh.c]
show debug output during option processing, report from
pekkas@netcore.fi
2001-04-12 16:16:57 +00:00
9fce9f02e8
- lebel@cvs.openbsd.org 2001/04/11 16:25:30
...
[sshd.8 sshd.c]
implement the -e option into sshd:
-e When this option is specified, sshd will send the output to the
standard error instead of the system log.
markus@ OK.
2001-04-11 23:10:09 +00:00
6fa9d10ed5
- markus@cvs.openbsd.org 2001/04/11 13:56:13
...
[channels.c ssh.c]
https-connect and socks5 support. i feel so bad.
2001-04-11 23:08:17 +00:00
146edb9832
- markus@cvs.openbsd.org 2001/04/11 10:59:01
...
[ssh.c]
use strtol() for ports, thanks jakob@
2001-04-11 23:06:28 +00:00
23d9a6d38e
- djm@cvs.openbsd.org 2001/04/11 07:06:22
...
[sftp-int.c]
'mget' and 'mput' aliases; ok markus@
2001-04-11 23:05:17 +00:00
c486d88bf8
- markus@cvs.openbsd.org 2001/04/10 12:15:23
...
[channels.c]
debug cleanup
2001-04-11 16:08:34 +00:00
18a82ac029
- itojun@cvs.openbsd.org 2001/04/10 09:13:22
...
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
document id_rsa{.pub,}. markus ok
2001-04-11 15:59:35 +00:00
b392151685
- markus@cvs.openbsd.org 2001/04/10 07:46:58
...
[channels.c]
cleanup socks4 handling
2001-04-11 15:57:50 +00:00
1a598a4597
- stevesk@cvs.openbsd.org 2001/04/09 18:00:15
...
[sshd.8]
ListenAddress mandoc from aaron@
2001-04-10 02:48:50 +00:00
12de61680e
- markus@cvs.openbsd.org 2001/04/09 15:19:49
...
[ssh-add.1]
ssh-add retries the last passphrase...
2001-04-10 02:46:54 +00:00
ee61794620
- markus@cvs.openbsd.org 2001/04/09 15:12:23
...
[ssh-add.c]
passphrase caching: ssh-add tries last passphrase, clears passphrase if
not successful and after last try.
based on discussions with espie@, jakob@, ... and code from jakob@ and
wolfgang@wsrcc.com
2001-04-10 02:45:32 +00:00
8ffeacfb2d
- stevesk@cvs.openbsd.org 2001/04/09 00:42:05
...
[sftp.1]
spelling
2001-04-10 02:43:57 +00:00
4b3564e6f2
- stevesk@cvs.openbsd.org 2001/04/08 23:28:27
...
[sshd.8]
spelling
2001-04-10 02:41:56 +00:00
9492484a27
- deraadt@cvs.openbsd.org 2001/04/08 20:52:55
...
[sftp.c]
do not modify an actual argv[] entry
2001-04-10 02:40:17 +00:00
cb17e99fae
- (stevesk) use setresgid() for setegid() if needed
2001-04-09 14:50:52 +00:00
393d2f782d
- (stevesk) configure.in: typo
2001-04-08 22:50:43 +00:00
f52373f732
- markus@cvs.openbsd.org 2001/04/08 11:24:33
...
[uidswap.c]
KNF
2001-04-08 18:38:04 +00:00
3bb4f9da73
- markus@cvs.openbsd.org 2001/04/07 08:55:18
...
[buffer.c channels.c channels.h readconf.c ssh.c]
allow the ssh client act as a SOCKS4 proxy (dynamic local
portforwarding). work by Dan Kaminsky <dankamin@cisco.com> and me.
thanks to Dan for this great patch: use 'ssh -D 1080 host' and make
netscape use localhost:1080 as a socks proxy.
2001-04-08 18:30:26 +00:00
3fcf1a22b5
- markus@cvs.openbsd.org 2001/04/06 21:00:17
...
[auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth2.c channels.c session.c
ssh.c sshconnect.c sshconnect.h uidswap.c uidswap.h]
do gid/groups-swap in addition to uid-swap, should help if /home/group
is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks
to olar@openwall.com is comments. we had many requests for this.
2001-04-08 18:26:59 +00:00
d344763643
- markus@cvs.openbsd.org 2001/04/08 11:27:33
...
[clientloop.c]
leave_raw_mode if ssh2 "session" is closed
2001-04-08 18:07:22 +00:00
d5730a8b85
- markus@cvs.openbsd.org 2001/04/08 13:03:00
...
[ssh-add.c]
init pointers with NULL, thanks to danimal@danimal.org
2001-04-08 18:04:36 +00:00
49e57a871a
- stevesk@cvs.openbsd.org 2001/04/08 16:01:36
...
[sshd.8]
document ListenAddress addr:port
2001-04-08 18:02:43 +00:00
c510af40e3
- stevesk@cvs.openbsd.org 2001/04/06 22:25:25
...
[servconf.c]
in addition to:
ListenAddress host|ipv4_addr|ipv6_addr
permit:
ListenAddress [host|ipv4_addr|ipv6_addr]:port
ListenAddress host|ipv4_addr:port
sshd.8 updates coming. ok markus@
2001-04-07 17:25:48 +00:00
ab0cedc587
- stevesk@cvs.openbsd.org 2001/04/06 22:12:47
...
[hostfile.c]
unused; typo in comment
2001-04-07 17:23:43 +00:00
d47cf4d53c
- deraadt@cvs.openbsd.org 2001/04/06 16:46:59
...
[scp.c]
remove trailing / from source paths; fixes pr#1756
2001-04-07 01:14:38 +00:00
e34ab4c04e
- markus@cvs.openbsd.org 2001/04/05 23:39:20
...
[serverloop.c]
keep the ssh session even if there is no active channel.
this is more in line with the protocol spec and makes
ssh -N -L 1234:server:110 host
more useful.
based on discussion with <mats@mindbright.se> long time ago
and recent mail from <res@shore.net>
2001-04-07 01:12:11 +00:00
8248d116c4
- (bal) CVS ID Resync of version.h
2001-04-07 01:08:46 +00:00
be48f2b4b1
- (stevesk) Makefile.in: log.o is in libssh.a
2001-04-06 01:58:37 +00:00
4c3f77dd3b
- markus@cvs.openbsd.org 2001/04/05 21:05:24
...
[clientloop.c ssh.c]
don't request a session for 'ssh -N', pointed out slade@shore.net
2001-04-05 23:37:36 +00:00
d7dd23ffed
- markus@cvs.openbsd.org 2001/04/05 21:02:46
...
[buffer.c]
better error message
2001-04-05 23:36:01 +00:00
11bd89936d
- markus@cvs.openbsd.org 2001/04/05 20:01:10
...
[clientloop.c]
for ~R print message if server does not support rekeying. (and fix ~R).
2001-04-05 23:34:29 +00:00
f15a386511
- stevesk@cvs.openbsd.org 2001/04/05 15:48:18
...
[canohost.c canohost.h session.c]
move get_remote_name_or_ip() to canohost.[ch]; for portable. ok markus@
2001-04-05 23:32:17 +00:00
f327235f65
- markus@cvs.openbsd.org 2001/04/05 15:45:43
...
[ssh.1]
ssh defaults to protocol v2; from quisar@quisar.ambre.net
2001-04-05 23:29:59 +00:00
a8baf36d41
- markus@cvs.openbsd.org 2001/04/05 11:09:17
...
[clientloop.c compat.c compat.h]
add SSH_BUG_NOREKEY and detect broken (=all old) openssh versions.
2001-04-05 23:28:36 +00:00
a3700050ec
- markus@cvs.openbsd.org 2001/04/05 10:42:57
...
[auth-chall.c authfd.c channels.c clientloop.c kex.c kexgex.c key.c
mac.c packet.c serverloop.c sftp-client.c sftp-client.h sftp-glob.c
sftp-glob.h sftp-int.c sftp-server.c sftp.c ssh-keygen.c sshconnect.c
sshconnect2.c sshd.c]
fix whitespace: unexpand + trailing spaces.
2001-04-05 23:26:32 +00:00
a6c20148f5
- markus@cvs.openbsd.org 2001/04/05 10:39:48
...
[version.h]
temporary version 2.5.4 (supports rekeying).
this is not an official release.
2001-04-05 23:22:25 +00:00
fb50cdfdb8
- markus@cvs.openbsd.org 2001/04/05 10:39:03
...
[compress.c compress.h packet.c]
reset compress state per direction when rekeying.
2001-04-05 23:20:46 +00:00
4f3ae4c550
- markus@cvs.openbsd.org 2001/04/05 10:00:06
...
[compat.c]
2.3.x does old GEX, too; report jakob@
2001-04-05 23:19:21 +00:00
ff8b4959d9
- (stevesk) logintest.c: fix for systems without __progname
2001-04-05 23:05:22 +00:00
86a52b3dc8
- (stevesk) don't use vhangup() if defined(HAVE_DEV_PTMX); also removes
...
BROKEN_VHANGUP
2001-04-05 17:15:08 +00:00
5ba23b39bf
- markus@cvs.openbsd.org 2001/04/04 23:09:18
...
[dh.c kex.c packet.c]
clear+free keys,iv for rekeying.
+ fix DH mem leaks. ok niels@
2001-04-05 02:05:21 +00:00
8e312f3db0
- markus@cvs.openbsd.org 2001/04/04 22:04:35
...
[kex.c kexgex.c serverloop.c]
parse full kexinit packet.
make server-side more robust, too.
2001-04-04 23:50:21 +00:00
0cae04005e
- markus@cvs.openbsd.org 2001/04/04 20:32:56
...
[auth2.c]
we don't care about missing bannerfiles; from tsoome@ut.ee , ok deraadt@
2001-04-04 23:47:52 +00:00
be2cc43c3a
- markus@cvs.openbsd.org 2001/04/04 20:25:38
...
[channels.c channels.h clientloop.c kex.c kex.h serverloop.c
sshconnect2.c sshd.c]
more robust rekeying
don't send channel data after rekeying is started.
2001-04-04 23:46:07 +00:00
78c261ab4a
- markus@cvs.openbsd.org 2001/04/04 15:50:55
...
[compat.c]
f-secure 1.3.2 does not handle IGNORE; from milliondl@ornl.gov
2001-04-04 23:43:26 +00:00
8ac9106c3d
- markus@cvs.openbsd.org 2001/04/04 14:34:58
...
[clientloop.c kex.c kex.h serverloop.c sshconnect2.c sshd.c]
enable server side rekeying + some rekey related clientup.
todo: we should not send any non-KEX messages after we send KEXINIT
2001-04-04 17:57:54 +00:00
238abf6a14
- markus@cvs.openbsd.org 2001/04/04 09:48:35
...
[kex.c kex.h kexdh.c kexgex.c packet.c sshconnect2.c sshd.c]
don't sent multiple kexinit-requests.
send newkeys, block while waiting for newkeys.
fix comments.
2001-04-04 17:52:53 +00:00
22b19b43e4
- (bal) Oops.. Missed including kexdh.c and kexgex.c in OpenBSD sync.
2001-04-04 17:39:19 +00:00
f28f634a3a
- markus@cvs.openbsd.org 2001/04/04 00:06:54
...
[clientloop.c sshconnect2.c]
enable client rekeying
(1) force rekeying with ~R, or
(2) if the server requests rekeying.
works against ssh-2.0.12/2.0.13/2.1.0/2.2.0/2.3.0/2.3.1/2.4.0
2001-04-04 02:03:04 +00:00
2d90e00309
- markus@cvs.openbsd.org 2001/04/03 23:32:12
...
[kex.c kex.h packet.c sshconnect2.c sshd.c]
undo parts of recent my changes: main part of keyexchange does not
need dispatch-callbacks, since application data is delayed until
the keyexchange completes (if i understand the drafts correctly).
add some infrastructure for re-keying.
2001-04-04 02:00:54 +00:00
9323d96479
- todd@cvs.openbsd.org 2001/04/03 21:19:38
...
[ssh_config]
id_rsa1/2 -> id_rsa; ok markus@
2001-04-04 01:58:48 +00:00
20d7c7b02c
- markus@cvs.openbsd.org 2001/04/03 19:53:29
...
[dh.c dh.h kex.c kex.h sshconnect2.c sshd.c]
move kex to kex*.c, used dispatch_set() callbacks for kex. should
make rekeying easier.
2001-04-04 01:56:17 +00:00
86ebcb6cf5
- stevesk@cvs.openbsd.org 2001/04/03 13:56:11
...
[sftp-glob.c ssh-agent.c ssh-keygen.c]
free() -> xfree()
2001-04-04 01:53:20 +00:00
0d3e8fafa4
- deraadt@cvs.openbsd.org 2001/04/02 17:32:23
...
[ssh-agent.1]
grammar; slade@shore.net
2001-04-04 01:51:25 +00:00
efe5fd811b
- (stevesk) nchan.c: remove ostate checks and add EINVAL to
...
shutdown(SHUT_RD) error() bypass for HP-UX.
2001-04-03 13:02:48 +00:00
3704c2612a
- stevesk@cvs.openbsd.org 2001/04/02 14:20:23
...
[readconf.c servconf.c]
correct comment; ok markus@
2001-04-02 18:20:03 +00:00
55b99e35c7
- stevesk@cvs.openbsd.org 2001/04/02 14:15:31
...
[sshd.8]
typo; ok markus@
2001-04-02 18:18:21 +00:00
6189e1905c
- (stevesk) sshpty.h openbsd sync; PTY_H -> SSHPTY_H
2001-04-02 14:02:55 +00:00
edcd5762e2
- (stevesk) log.c openbsd sync; missing newlines
2001-04-02 13:45:00 +00:00
ff75ac4d68
- OpenBSD CVS Sync
...
- djm@cvs.openbsd.org 2001/03/29 23:42:01
[sshd.c]
Protocol 1 key regeneration log => verbose, some KNF; ok markus@
2001-03-30 10:50:32 +10:00
9709f90684
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/03/29 21:17:40
[dh.c dh.h kex.c kex.h]
prepare for rekeying: move DH code to dh.c
2001-03-30 10:50:10 +10:00
a0ff466d80
- OpenBSD CVS Sync
...
- stevesk@cvs.openbsd.org 2001/03/29 21:06:21
[sshconnect2.c sshd.c]
need to set both STOC and CTOS for SSH_BUG_BIGENDIANAES; ok markus@
2001-03-30 10:49:35 +10:00
653ae11c4a
- OpenBSD CVS Sync
...
- provos@cvs.openbsd.org 2001/03/29 14:24:59
[sshconnect2.c]
use recommended defaults
2001-03-30 10:49:05 +10:00
5d57e50730
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/03/28 22:43:31
[auth.h auth2.c auth2-chall.c]
check auth_root_allowed for kbd-int auth, too.
2001-03-30 10:48:31 +10:00
23e526e271
- OpenBSD CVS Sync
...
- provos@cvs.openbsd.org 2001/03/28 22:04:57
[dh.c]
more sanity checking on primes file
2001-03-30 10:47:43 +10:00
2557bfc5d7
- (djm) OpenBSD CVS Sync
...
- provos@cvs.openbsd.org 2001/03/28 21:59:41
[kex.c kex.h sshconnect2.c sshd.c]
forgot to include min and max params in hash, okay markus@
2001-03-30 10:47:14 +10:00
d8f72ca6d5
- (djm) Another openbsd-compat/glob.c sync
2001-03-30 10:23:17 +10:00
7de696e798
- markus@cvs.openbsd.org 2001/03/28 20:50:45
...
[sshd.c]
call refuse() before close(); from olemx@ans.pl
2001-03-29 00:45:12 +00:00
ff2618c80f
- stevesk@cvs.openbsd.org 2001/03/28 20:04:38
...
[scp.c]
usage more like rcp and add missing -B to usage; ok markus@
2001-03-29 00:43:54 +00:00
bd47226987
- stevesk@cvs.openbsd.org 2001/03/28 19:56:23
...
[scp.c]
start to sync scp closer to rcp; ok markus@
2001-03-29 00:39:55 +00:00
df221391e6
- provos@cvs.openbsd.org 2001/03/27 17:46:50
...
[compat.c compat.h dh.c dh.h ssh2.h sshconnect2.c sshd.c version.h]
make dh group exchange more flexible, allow min and max group size,
okay markus@, deraadt@
2001-03-29 00:36:16 +00:00
60a4381f1a
- markus@cvs.openbsd.org 2001/03/27 10:57:00
...
[compat.c compat.h ssh-rsa.c]
some older systems use NID_md5 instead of NID_sha1 for RSASSA-PKCS1-v1_5
signatures in SSH protocol 2, ok djm@
2001-03-29 00:32:56 +00:00
425fb02f20
- markus@cvs.openbsd.org 2001/03/27 10:34:08
...
[ssh-rsa.c sshd.c]
use EVP_get_digestbynid, reorder some calls and fix missing free.
2001-03-29 00:31:20 +00:00
d09fcf5f6e
- markus@cvs.openbsd.org 2001/03/26 23:23:24
...
[rsa.c rsa.h ssh-agent.c ssh-keygen.c]
try to read private f-secure ssh v2 rsa keys.
2001-03-29 00:29:54 +00:00
c111660896
- markus@cvs.openbsd.org 2001/03/26 23:12:42
...
[authfile.c]
KNF
2001-03-29 00:28:37 +00:00
89b0bd66e2
- stevesk@cvs.openbsd.org 2001/03/26 15:47:59
...
[ssh.1]
document more defaults; misc. cleanup. ok markus@
2001-03-29 00:27:11 +00:00
b68af624a9
- (djm) Sync openbsd-compat/glob.c
2001-03-28 21:05:26 +10:00
9834474151
- (djm) Rework krbIV tests to get us closer to building on Redhat. Still
...
doesn't work because of conflicts between krbIV's and OpenSSL's des.h
2001-03-28 14:37:06 +10:00
18bb473eb0
- (djm) Work around Solaris' broken struct dirent. Diagnosis and suggested
...
fix from Philippe Levan <levan@epix.net>
2001-03-28 14:35:30 +10:00
c79bc0d75b
- (djm) Reorder tests and library inclusion for Krb4/AFS to try to
...
resolve linking conflicts with libcrypto. Report and suggested fix
from Holger Trapp <Holger.Trapp@Informatik.TU-Chemnitz.DE>
2001-03-28 13:03:42 +10:00
f9e9300947
- (djm) Reestablish PAM credentials (which can be supplemental group
...
memberships) after initgroups() blows them away. Report and suggested
fix from Nalin Dahyabhai <nalin@redhat.com>
2001-03-27 16:12:24 +10:00
d0fca423fc
- markus@cvs.openbsd.org 2001/03/26 08:07:09
...
[authfile.c authfile.h ssh-add.c ssh-keygen.c ssh.c sshconnect.c
sshconnect.h sshconnect1.c sshconnect2.c sshd.c]
simpler key load/save interface, see authfile.h
2001-03-26 13:44:06 +00:00
7bfff36ca3
- stevesk@cvs.openbsd.org 2001/03/25 13:16:11
...
[servconf.c servconf.h session.c sshd.8 sshd_config]
PrintLastLog option; from chip@valinux.com with some minor
changes by me. ok markus@
2001-03-26 05:45:53 +00:00
6029432ec5
- djm@cvs.openbsd.org 2001/03/25 00:01:34
...
[session.c]
shorten; ok markus@
2001-03-26 05:38:25 +00:00
9531825dd0
- Fix pointer issues in waitpid() and wait() replaces. Patch by Lutz
...
Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
2001-03-26 05:35:33 +00:00
8ca935655e
- Attempt sync with sshlogin.c w/ OpenBSD (mainly CVS ID)
2001-03-26 05:32:16 +00:00
b44fe0617d
- (djm) Pull out our own SIGPIPE hacks
2001-03-24 15:39:38 +11:00
de71cda078
- markus@cvs.openbsd.org 2001/03/23 14:28:32
...
[session.c sshd.c]
ignore SIGPIPE, restore in child, fixes x11-fwd crashes; with djm@
2001-03-24 00:43:26 +00:00
7527f8b52d
- markus@cvs.openbsd.org 2001/03/23 13:10:57
...
[sftp-int.c]
fix put, upload to _absolute_ path, ok djm@
2001-03-24 00:39:12 +00:00
9e2057cb34
- markus@cvs.openbsd.org 2001/03/23 12:02:49
...
[auth1.c]
authctxt is now passed to do_authenticated
2001-03-24 00:37:59 +00:00
c8530c7f5c
- djm@cvs.openbsd.org 2001/03/23 11:04:07
...
[compat.c compat.h sshconnect2.c sshd.c]
Compat for OpenSSH with broken Rijndael/AES. ok markus@
2001-03-24 00:35:19 +00:00
b94f8b2bcb
- Fixed permissions ssh-keyscan. Thanks to Christopher Linn <celinn@mtu.edu>.
2001-03-24 00:20:56 +00:00
69d8c077d4
- deraadt@cvs.openbsd.org 2001/03/22 20:22:55
...
[sshd.c]
do not place linefeeds in buffer
2001-03-22 22:45:33 +00:00
d9267454ca
- markus@cvs.openbsd.org 2001/03/21 21:06:30
...
[session.c]
missing init; from mib@unimelb.edu.au
2001-03-22 02:06:57 +00:00
f1107f5ede
- jakob@cvs.openbsd.org 2001/03/21 14:20:45
...
[ssh-keygen.c]
add -B flag to usage
2001-03-22 02:05:32 +00:00
Ben Lindstrom
Tim Rice
Kevin Steves
Damien Miller