Commit Graph

2555 Commits

Author SHA1 Message Date
Damien Miller 538f1819d8 - markus@cvs.openbsd.org 2002/09/10 20:24:47
[ssh-agent.c]
     check the euid of the connecting process with getpeereid(2);
     ok provos deraadt stevesk
2002-09-12 09:51:10 +10:00
Damien Miller a10f56151b - markus@cvs.openbsd.org 2002/09/09 14:54:15
[channels.c kex.h key.c monitor.c monitor_wrap.c radix.c uuencode.c]
     signed vs unsigned from -pedantic; ok henning@
2002-09-12 09:49:15 +10:00
Damien Miller 25162f2518 - itojun@cvs.openbsd.org 2002/09/09 06:48:06
[auth1.c auth.h auth-krb5.c monitor.c monitor.h]
     [monitor_wrap.c monitor_wrap.h]
     kerberos support for privsep.  confirmed to work by lha@stacken.kth.se
     patch from markus
2002-09-12 09:47:29 +10:00
Damien Miller 4d53d39b07 - (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2002/09/08 20:24:08
     [hostfile.h]
     no comma at end of enumerator list
2002-09-12 09:43:56 +10:00
Damien Miller 71eb0c1550 - (djm) Sync openbsd-compat with OpenBSD -current 2002-09-11 10:29:11 +10:00
Damien Miller c34e03e471 - (djm) Bug #138: Make protocol 1 blowfish work with old OpenSSL.
Patch from Robert Halubek <rob@adso.com.pl>
2002-09-10 22:26:17 +10:00
Damien Miller e9994cb4d7 - (djm) Bug #365: Read /.ssh/environment properly under CygWin.
Patch from Mark Bradshaw <bradshaw@staff.crosswalk.com>
2002-09-10 21:43:53 +10:00
Damien Miller 005d4560ed - (djm) Add support for building gtk2 password requestor from Redhat beta 2002-09-05 16:53:20 +10:00
Damien Miller 44d5b60336 - (djm) Add gnome-ssh-askpass2.c (gtk2) by merge with patch from
Nalin Dahyabhai <nalin@redhat.com>
2002-09-05 16:46:24 +10:00
Damien Miller 539983800d - (djm) Merge openssh-TODO.patch from Redhat (null) beta 2002-09-05 16:32:02 +10:00
Damien Miller c13486300d - (djm) OpenBSD CVS Sync
- stevesk@cvs.openbsd.org 2002/09/04 18:52:42
     [servconf.c sshd.8 sshd_config.5]
     default LoginGraceTime to 2m; 1m may be too short for slow systems.
     ok markus@
2002-09-05 14:35:14 +10:00
Damien Miller fc93d4bd31 - (djm) Patch from itojun@ for Darwin OS: test getaddrinfo, reorder libcrypt 2002-09-04 23:26:29 +10:00
Damien Miller 6b09792a55 - (djm) Fix Redhat RPM build dependancy test 2002-09-04 17:19:04 +10:00
Damien Miller 05913badf3 - stevesk@cvs.openbsd.org 2002/08/29 22:54:10
[ssh_config.5 sshd_config.5]
     state XAuthLocation is a full pathname
2002-09-04 16:51:03 +10:00
Damien Miller 50b9a60082 - stevesk@cvs.openbsd.org 2002/08/29 19:49:42
[ssh.c]
     shrink initial privilege bracket for setuid case; ok markus@
2002-09-04 16:50:06 +10:00
Damien Miller 9b1dacdf2c - stevesk@cvs.openbsd.org 2002/08/29 16:09:02
[ssh_config.5]
     more on UsePrivilegedPort and setuid root; ok markus@
2002-09-04 16:47:35 +10:00
Damien Miller 147bba3453 - stevesk@cvs.openbsd.org 2002/08/29 16:02:54
[ssh.1 ssh.c]
     deprecate -P as UsePrivilegedPort defaults to no now; ok markus@
2002-09-04 16:46:06 +10:00
Damien Miller ebc2306629 - stevesk@cvs.openbsd.org 2002/08/29 15:57:25
[monitor.c session.c sshlogin.c sshlogin.h]
     pass addrlen with sockaddr *; from Hajimu UMEMOTO <ume@FreeBSD.org>
     NOTE: there are also p-specific parts to this patch. ok markus@
2002-09-04 16:45:09 +10:00
Damien Miller af65304a3c - stevesk@cvs.openbsd.org 2002/08/27 17:18:40
[ssh_config.5]
     some warning text for ForwardAgent and ForwardX11; ok markus@
2002-09-04 16:40:37 +10:00
Damien Miller f7c2391d83 - stevesk@cvs.openbsd.org 2002/08/27 17:13:56
[ssh-rsa.c]
     RSA_public_decrypt() returns -1 on error so len must be signed;
     ok markus@
2002-09-04 16:39:48 +10:00
Damien Miller 5a80bba86f - markus@cvs.openbsd.org 2002/08/22 21:45:41
[session.c]
     send signal name (not signal number) in "exit-signal" message; noticed
     by galb@vandyke.com
2002-09-04 16:39:02 +10:00
Damien Miller de6f2de8ad - markus@cvs.openbsd.org 2002/08/22 21:33:58
[auth1.c auth2.c]
     auth_root_allowed() is handled by the monitor in the privsep case,
     so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325
2002-09-04 16:37:26 +10:00
Damien Miller 061d5b144f - stevesk@cvs.openbsd.org 2002/08/22 20:57:19
[ssh-agent.c]
     shutdown(SHUT_RDWR) not needed before close here; ok markus@
2002-09-04 16:33:31 +10:00
Damien Miller 066928648b - stevesk@cvs.openbsd.org 2002/08/22 19:38:42
[clientloop.c]
     format with current EscapeChar; bugzilla #388 from wknox@mitre.org.
     ok markus@
2002-09-04 16:32:10 +10:00
Damien Miller 58f3486c74 - stevesk@cvs.openbsd.org 2002/08/22 19:27:53
[ssh-agent.c]
     use common close function; ok markus@
2002-09-04 16:31:21 +10:00
Damien Miller 4efdfff6ba - stevesk@cvs.openbsd.org 2002/08/21 20:10:28
[ssh-agent.c]
     raise listen backlog; ok markus@
2002-09-04 16:28:18 +10:00
Damien Miller f771ab75f0 - stevesk@cvs.openbsd.org 2002/08/21 19:38:06
[servconf.c sshd.8 sshd_config sshd_config.5]
     change LoginGraceTime default to 1 minute; ok mouring@ markus@
2002-09-04 16:25:52 +10:00
Damien Miller b83df8d505 - espie@cvs.openbsd.org 2002/08/21 11:20:59
[sshd.8]
     `RSA' updated to refer to `public key', where it matters.
     okay markus@
2002-09-04 16:24:55 +10:00
Damien Miller 6cffb9a8cd - markus@cvs.openbsd.org 2002/08/12 10:46:35
[ssh-agent.c]
     make ssh-agent setgid, disallow ptrace.
     (note: change not yet made in Makefile)
2002-09-04 16:20:26 +10:00
Ben Lindstrom 3962119c8a - (bal) [defines.h] Some platforms don't have SIZE_T_MAX. So assign
it to ULONG_MAX.
2002-08-21 02:54:11 +00:00
Ben Lindstrom 479b476af6 - stevesk@cvs.openbsd.org 2002/08/17 23:55:01
[ssh_config.5]
     ordered list here
2002-08-20 19:04:51 +00:00
Ben Lindstrom 3541f18e10 - stevesk@cvs.openbsd.org 2002/08/17 23:07:14
[ssh.1]
     ForwardAgent has defaulted to no for over 2 years; be more clear here.
2002-08-20 19:03:20 +00:00
Ben Lindstrom bd9bf38b00 - stevesk@cvs.openbsd.org 2002/08/12 17:30:35
[ssh.1 sshd.8 sshd_config.5]
     more PermitUserEnvironment; ok markus@
2002-08-20 18:54:20 +00:00
Ben Lindstrom 15b6120e63 - stevesk@cvs.openbsd.org 2002/08/09 17:41:12
[sshd_config.5]
     proxy vs. fake display
2002-08-20 18:44:24 +00:00
Ben Lindstrom 1f8cf4f4fb - stevesk@cvs.openbsd.org 2002/08/09 17:21:42
[sshd_config.5]
     use Op for mdoc conformance; from esr@golux.thyrsus.com
     ok aaron@
2002-08-20 18:43:27 +00:00
Ben Lindstrom d4ee3497ca - stevesk@cvs.openbsd.org 2002/08/08 23:54:52
[auth.c]
     typo in comment
2002-08-20 18:42:13 +00:00
Ben Lindstrom e143f61b6f - aaron@cvs.openbsd.org 2002/08/08 13:50:23
[sshconnect1.c]
     Use & to test if bits are set, not &&; markus@ ok.
2002-08-20 18:41:15 +00:00
Ben Lindstrom 0deb5d958a - markus@cvs.openbsd.org 2002/08/02 22:20:30
[ssh-rsa.c]
     replace RSA_verify with our own version and avoid the OpenSSL ASN.1 parser
     for authentication; ok deraadt/djm
2002-08-20 18:40:03 +00:00
Ben Lindstrom 0e50d846b3 - markus@cvs.openbsd.org 2002/08/02 21:23:41
[ssh-rsa.c]
     diff is u_int (2x); ok deraadt/provos
2002-08-20 18:39:14 +00:00
Ben Lindstrom dc7adf2670 - marc@cvs.openbsd.org 2002/08/02 16:00:07
[ssh.1 sshd.8]
     note that .ssh/environment is only read when
     allowed (PermitUserEnvironment in sshd_config).
     OK markus@
2002-08-20 18:38:02 +00:00
Ben Lindstrom 0a4f7542da - millert@cvs.openbsd.org 2002/08/02 14:43:15
[monitor.c monitor_mm.c]
     Change mm_zalloc() sanity checks to be more in line with what
     we do in calloc() and add a check to monitor_mm.c.
     OK provos@ and markus@
2002-08-20 18:36:25 +00:00
Tim Rice d730b78071 [configure.ac] Display OpenSSL header/library version.
Patch by dtucker@zip.com.au
2002-08-13 18:52:10 -07:00
Ben Lindstrom 5d860f02ca - markus@cvs.openbsd.org 2002/07/30 17:03:55
[auth-options.c servconf.c servconf.h session.c sshd_config sshd_config.5]
     add PermitUserEnvironment (off by default!); from dot@dotat.at;
     ok provos, deraadt
2002-08-01 01:28:38 +00:00
Ben Lindstrom 4b99be899c - markus@cvs.openbsd.org 2002/07/29 18:57:30
[sshconnect.c]
     print file:line
2002-08-01 01:26:29 +00:00
Ben Lindstrom 8d631e8515 - mouring@cvs.openbsd.org 2002/07/25 01:16:59
[sftp.c]
     FallBackToRsh does not exist anywhere else.  Remove it from here.
     OK deraadt.
2002-08-01 01:25:00 +00:00
Ben Lindstrom 3ed6640532 - markus@cvs.openbsd.org 2002/07/24 16:11:18
[hostfile.c hostfile.h sshconnect.c]
     print out all known keys for a host if we get a unknown host key,
     see discussion at http://marc.theaimsgroup.com/?t=101069210100016&r=1&w=4

     the ssharp mitm tool attacks users in a similar way, so i'd like to
     pointed out again:
        A MITM attack is always possible if the ssh client prints:
        The authenticity of host 'bla' can't be established.
     (protocol version 2 with pubkey authentication allows you to detect
     MITM attacks)
2002-08-01 01:21:56 +00:00
Ben Lindstrom 18d2b5d399 - (bal) [uidswap.c] SCO compile correction by gert@greenie.muc.de 2002-07-30 19:32:07 +00:00
Kevin Steves 4bdb547ff4 - (stevesk) [ssh-rand-helper.c] RAND_bytes() and SHA1_Final() unsigned
char arg.
2002-07-28 20:42:23 +00:00
Kevin Steves e7dbdf7ff8 - (stevesk) [CREDITS] solar 2002-07-28 20:31:18 +00:00
Kevin Steves 6a998ebfa9 - (stevesk) [auth-pam.c] should use PAM_MSG_MEMBER(); from solar 2002-07-28 20:24:07 +00:00
Damien Miller a7609f548f - (djm) Latest config.guess and config.sub from ftp://ftp.gnu.org/gnu/config/ 2002-07-25 14:40:22 +10:00
Damien Miller 6d8d78827e - (djm) Remove some cruft from INSTALL 2002-07-25 14:36:24 +10:00
Ben Lindstrom 1fa330cf35 - stevesk@cvs.openbsd.org 2002/07/15 17:15:31
[uidswap.c]
     little more debugging; ok markus@
2002-07-23 21:29:49 +00:00
Ben Lindstrom 41daec7538 - stevesk@cvs.openbsd.org 2002/07/23 16:03:10
[sshd.c]
     utmp_len is unsigned; display error consistent with other options.
     ok markus@
2002-07-23 21:15:13 +00:00
Ben Lindstrom 7cea16bad5 - stevesk@cvs.openbsd.org 2002/07/22 17:32:56
[monitor.c]
     u_int here; ok provos@
2002-07-23 21:13:40 +00:00
Ben Lindstrom b9051ec9a4 - markus@cvs.openbsd.org 2002/07/22 11:03:06
[session.c]
     fallback to _PATH_STDPATH on setusercontext+LOGIN_SETPATH errors;
2002-07-23 21:11:09 +00:00
Ben Lindstrom 3cc4450d54 - stevesk@cvs.openbsd.org 2002/07/21 18:34:43
[auth-options.h]
     remove invalid comment
2002-07-23 21:07:45 +00:00
Ben Lindstrom 218a07dfb4 - stevesk@cvs.openbsd.org 2002/07/21 18:32:20
[auth-options.c]
     unneeded includes
2002-07-23 21:06:45 +00:00
Ben Lindstrom 82ec9836b2 - (bal) sync ID w/ ssh-agent.c 2002-07-23 21:05:17 +00:00
Ben Lindstrom ee8d52d008 - stevesk@cvs.openbsd.org 2002/07/19 17:42:40
[ssh.c]
     display a warning from ssh when XAuthLocation does not exist or xauth
     returned no authentication data. ok markus@
2002-07-23 21:03:02 +00:00
Ben Lindstrom 264ee307a8 - markus@cvs.openbsd.org 2002/07/19 15:43:33
[log.c log.h session.c sshd.c]
     remove fatal cleanups after fork; based on discussions with and code
     from solar.
2002-07-23 21:01:56 +00:00
Ben Lindstrom 6f52b3e399 - (bal) [bsd-cray.c bsd-cray.h] Part 2 of Cray merger. 2002-07-23 21:00:17 +00:00
Kevin Steves 6fa740ba84 - (stevesk) [auth-pam.c] typo in comment 2002-07-23 00:51:53 +00:00
Kevin Steves 38b050a0f5 - (stevesk) [auth-pam.[ch] session.c] pam_getenvlist() must be
freed by the caller; add free_pam_environment() and use it.
2002-07-23 00:44:07 +00:00
Ben Lindstrom 446d886fa5 - (bal) [monitor_mm.c openbsd-compat/xmmap.h] Move xmmap() defines
into it's own header.
2002-07-23 00:03:33 +00:00
Ben Lindstrom 762104ede0 - (bal) [configure.ac] Missing ;; from cray patch. 2002-07-23 00:00:05 +00:00
Ben Lindstrom 232ccf7754 - (bal) [configure.ac defines.h loginrec.c sshd.c sshpty.c] Partial sync
with Cray (mostly #ifdef renaming).  Patch by wendyp@cray.com.
2002-07-22 23:34:25 +00:00
Kevin Steves 066e1ab8a3 - (stevesk) [xmmap.c] missing prototype for fatal() 2002-07-22 16:20:29 +00:00
Ben Lindstrom beb5f3304b - (bal) AIX tty data limiting patch fix by leigh@solinno.co.uk 2002-07-22 15:28:53 +00:00
Kevin Steves 287077eaf2 - (stevesk) [auth-pam.[ch] ssh.h] move SSHD_PAM_SERVICE to auth-pam.h 2002-07-21 23:59:39 +00:00
Kevin Steves 21e04eb2be - (stevesk) [auth-pam.h] unneeded include 2002-07-21 23:20:07 +00:00
Kevin Steves 7ba4970498 - (stevesk) [auth-pam.h] license 2002-07-21 23:16:00 +00:00
Kevin Steves 3429a1bf60 - (stevesk) [auth-pam.c] cast to avoid initialization type mismatch
warning on pam_conv struct conversation function.
2002-07-21 22:49:47 +00:00
Kevin Steves 63007d42ee - (stevesk) [auth-pam.c] merge rest of solar's PAM patch;
PAM_NEW_AUTHTOK_REQD remains in #if 0 for now.
2002-07-21 17:57:01 +00:00
Kevin Steves 6cdecd0892 - (stevesk) [auth-pam.c] merge cosmetic changes from solar's
openssh-3.4p1-owl-password-changing.diff
2002-07-21 17:26:54 +00:00
Kevin Steves 3a8819102c - (stevesk) [ssh-keygen.c] bug #231: always init/seed_rng(). 2002-07-20 19:05:40 +00:00
Tim Rice f028f1e460 [configure.ac] test for libxnet on HP. Patch by dtucker@zip.com.au 2002-07-19 12:41:10 -07:00
Tim Rice f1a1001f0e [contrib/solaris/buildpkg.sh] create privsep user/group if needed.
Patch by dtucker@zip.com.au
2002-07-19 11:57:57 -07:00
Tim Rice eae876e8ae [includes.h] Bug 267 add stdint.h 2002-07-18 11:49:32 -07:00
Tim Rice 907881ec8e [configure.ac] Bug 267 rework int64_t test. 2002-07-18 11:44:50 -07:00
Tim Rice 76645849d3 [monitor_mm.c] add missing declaration for xmmap(). Reported
by ayamura@ayamura.org
2002-07-18 11:34:29 -07:00
Tim Rice b8b23047f8 [defines.h] Bug 313 patch by dirk.meyer@dinoex.sub.org 2002-07-18 09:31:51 -07:00
Tim Rice e22be3b11e [configure.ac] change how we do paths in AC_PATH_PROGS tests
for autoconf 2.53. Based on a patch by jrj@purdue.edu
2002-07-17 19:20:07 -07:00
Ben Lindstrom 2faabf3d79 - (bal) aixbff package updated by dtucker@zip.com.au 2002-07-18 01:04:50 +00:00
Tim Rice ffaf445371 [contrib/solaris/opensshd.in] Only kill sshd if .pid file found 2002-07-16 14:24:38 -07:00
Ben Lindstrom 104c3feb69 - (bal) Privsep user creation support in Solaris buildpkg.sh by
dtucker@zip.com.au
2002-07-15 18:49:20 +00:00
Ben Lindstrom 938b828566 - (bal) Remove unused tty defined in do_setusercontext() pointed out by
dtucker@zip.com.au plus a a more KNF since I am near it.
2002-07-15 17:58:34 +00:00
Ben Lindstrom c491b0def1 - markus@cvs.openbsd.org 2002/07/12 15:50:17
[cipher.c]
     EVP_CIPH_CUSTOM_IV for our own rijndael
2002-07-15 17:52:49 +00:00
Ben Lindstrom 728aa7e18c - itojun@cvs.openbsd.org 2002/07/12 13:29:09
[sshconnect.c]
     print connect failure during debugging mode.
2002-07-15 17:48:11 +00:00
Tim Rice 370e0bac16 [loginrec.c] Bug 348: add missing found = 1; to wtmpx_islogin()
report by rodney@bond.net
2002-07-14 15:50:51 -07:00
Tim Rice cdb82946b6 [loginrec.c] Bug 347: Fix typo (WTMPX_FILE) report by rodney@bond.net 2002-07-14 15:33:20 -07:00
Tim Rice a091159884 [ssh_prng_cmds.in] Bug 323 arp -n flag doesn't exist under Solaris.
report by chris@by-design.net
2002-07-14 14:43:57 -07:00
Tim Rice 40017b0e7a (bal/tim) [acconfig.h configure.ac monitor_mm.c servconf.c
openbsd-compat/Makefile.in] support compression on platforms that
  have no/broken MAP_ANON. Moved code to openbsd-compat/xmmap.c
  Based on patch from nalin@redhat.com of code extracted from Owl's package
2002-07-14 13:36:49 -07:00
Tim Rice 952101952f [Makefile.in] replace "id sshd" with "sshd -t" 2002-07-14 10:02:20 -07:00
Tim Rice 4796a291f1 [configure.ac] remove unused filepriv line 2002-07-12 18:11:24 -07:00
Tim Rice 1363b3c987 [Makefile.in] quiet down install-files: and check-user: 2002-07-12 09:04:06 -07:00
Ben Lindstrom 6f893880cc - deraadt@cvs.openbsd.org 2002/07/10 17:53:54
[rijndael.c]
     use right sizeof in memcpy; markus ok
2002-07-11 04:01:29 +00:00
Ben Lindstrom a6cd75c49e - itojun@cvs.openbsd.org 2002/07/10 10:28:15
[sshconnect.c]
     bark if all connection attempt fails.
2002-07-11 04:00:19 +00:00
Ben Lindstrom 9c44554a41 - stevesk@cvs.openbsd.org 2002/07/09 17:46:25
[sshd_config.5]
     clarify no preference ordering in protocol list; ok markus@
2002-07-11 03:59:18 +00:00
Ben Lindstrom ba8df7d76d - itojun@cvs.openbsd.org 2002/07/09 12:04:02
[sshconnect.c]
     ed static function (less warnings)
2002-07-11 03:58:11 +00:00
Ben Lindstrom e982773d2a - itojun@cvs.openbsd.org 2002/07/09 11:56:27
[canohost.c]
     suppress log on reverse lookup failiure, as there's no real value in
     doing so.
     markus ok
2002-07-11 03:56:46 +00:00
Ben Lindstrom efee05958c - itojun@cvs.openbsd.org 2002/07/09 11:56:50
[sshconnect.c]
     silently try next address on connect(2).  markus ok
2002-07-11 03:54:43 +00:00
Tim Rice 6827395b07 [contrib/cygwin/ssh-host-config] explicitely sets the permissions
on /var/empty to 755	Patch by vinschen@redhat.com
2002-07-10 07:40:11 -07:00
Ben Lindstrom 99a4e14fe0 - (bal) NO_IPPORT_RESERVED_CONCEPT used instead of CYGWIN so other platforms
lacking that concept can share it. Patch by vinschen@redhat.com
2002-07-09 14:06:40 +00:00
Tim Rice cbb9066d2d [configure.ac] fix libc89 utimes test. Mention default path for
--with-privsep-path=
2002-07-08 19:17:10 -07:00
Tim Rice 2d0bf3dcfd [Makefile.in] workaround for broken pakadd on some systems.
With "ln -s ssh$(EXEEXT) $(DESTDIR)$(bindir)/slogin" you wild end up with
   lrwxrwxrwx    1 root     sys            4 Jul  8 18:43 slogin -> /ssh
after the package was installed.
2002-07-08 19:10:05 -07:00
Tim Rice 88177245cb [openssh/contrib/solaris/buildpkg.sh] add PKG_INSTALL_ROOT to
work in a jumpstart environment. patch by kbrint@rufus.net
2002-07-08 19:02:10 -07:00
Ben Lindstrom 5c98db50bf - (bal) Minor KNF on ssh-keyscan.c
This is really from Theo's patch.  I missed it by looking at the wrong
function call.
2002-07-07 22:25:29 +00:00
Ben Lindstrom 6a9fbc96c0 - stevesk@cvs.openbsd.org 2002/07/06 17:47:58
[ssh-keyscan.c]
     unused variable
2002-07-07 22:19:13 +00:00
Ben Lindstrom 965710f66e - deraadt@cvs.openbsd.org 2002/07/06 01:01:26
[ssh-keyscan.c]
     KNF, realloc fix, and clean usage
2002-07-07 22:17:22 +00:00
Ben Lindstrom 8e8ef2a3ff - deraadt@cvs.openbsd.org 2002/07/06 01:00:49
[log.c]
     KNF
2002-07-07 22:14:55 +00:00
Ben Lindstrom 2bf759cba5 - markus@cvs.openbsd.org 2002/07/04 10:41:47
[key.c monitor_wrap.c ssh-dss.c ssh-rsa.c]
     don't allocate, copy, and discard if there is not interested in the data;
     ok deraadt@
2002-07-07 22:13:31 +00:00
Ben Lindstrom 8b2eecdf9f - deraadt@cvs.openbsd.org 2002/07/04 08:12:15
[channels.c packet.c]
     blah blah minor nothing as i read and re-read and re-read...
2002-07-07 22:11:51 +00:00
Ben Lindstrom c51b924a80 - deraadt@cvs.openbsd.org 2002/07/04 04:15:33
[key.c monitor_wrap.c sftp-glob.c ssh-dss.c ssh-rsa.c]
     patch memory leaks; grendel@zeitbombe.org
2002-07-07 22:10:15 +00:00
Ben Lindstrom 8abe736dd7 - (bal) [realpath.c] Updated with OpenBSD tree. 2002-07-07 22:07:10 +00:00
Tim Rice e475a3cf3b [contrib/cygwin/ssh-host-config] sshd account creation fixes
patch from vinschen@redhat.com
2002-07-07 14:07:46 -07:00
Tim Rice 9dd30817ef [acconfig.h configure.ac sshd.c] s/BROKEN_FD_PASSING/DISABLE_FD_PASSING/ 2002-07-07 13:43:36 -07:00
Tim Rice cc25206d31 [Makefile.in] use umask instead of chmod on $(PRIVSEP_PATH) 2002-07-07 13:30:45 -07:00
Tim Rice b66e292912 [contrib/cygwin/ssh-host-config] double slash corrction
from vinschen@redhat.com
2002-07-05 16:22:32 -07:00
Tim Rice e958ed3624 [configure.ac] AIX 4.2.1 has authenticate() in libs.
Reported by Darren Tucker <dtucker@zip.com.au>
2002-07-05 07:12:33 -07:00
Ben Lindstrom d00a1a1a03 - (bal) One too many nulls in ports-aix.c 2002-07-04 19:33:49 +00:00
Ben Lindstrom 604de56009 - (bal) glob.c defines TILDE and AIX also defines it. #undef it first.
bug #265
2002-07-04 18:20:51 +00:00
Ben Lindstrom 92ea0eadbe - (bal) Limit data to TTY for AIX only (Newer versions can't handle the
faster data rate)  Bug #124
2002-07-04 18:11:09 +00:00
Ben Lindstrom 51b2488aad - (bal) Clean up aix_usrinfo(). Ignore TTY= period I guess. 2002-07-04 03:08:40 +00:00
Ben Lindstrom ee3a8e4abc - (bal) Missed Makefile.in change. keysign needs readconf.o 2002-07-04 03:07:15 +00:00
Ben Lindstrom e06eb68226 - (bal) Failed password attempts don't increment counter on AIX. Bug #145 2002-07-04 00:27:21 +00:00
Ben Lindstrom 5d35a2f582 - markus@cvs.openbsd.org 2002/07/03 14:21:05
[ssh-keysign.8 ssh-keysign.c ssh.c ssh_config]
     re-enable ssh-keysign's sbit, but make ssh-keysign read
     /etc/ssh/ssh_config and exit if HostbasedAuthentication is disabled
     globally. based on discussions with deraadt, itojun and sommerfeld;
     ok itojun@
2002-07-04 00:19:40 +00:00
Ben Lindstrom 43ce2c86a8 - markus@cvs.openbsd.org 2002/07/03 09:55:38
[ssh-keysign.c]
     use RSA_blinding_on() for rsa hostkeys (suggested by Bill Sommerfeld)
     in order to avoid a possible Kocher timing attack pointed out by Charles
     Hannum; ok provos@
2002-07-04 00:17:33 +00:00
Ben Lindstrom 343010ad50 - markus@cvs.openbsd.org 2002/07/01 19:48:46
[sshconnect2.c]
     for compression=yes, we fallback to no-compression if the server does
     not support compression, vice versa for compression=no. ok mouring@
2002-07-04 00:16:25 +00:00
Ben Lindstrom fd2aacedab - deraadt@cvs.openbsd.org 2002/07/01 16:15:25
[msg.c]
     %u
2002-07-04 00:15:22 +00:00
Ben Lindstrom a962c2fb35 - deraadt@cvs.openbsd.org 2002/06/30 21:59:45
[auth-bsdauth.c auth-skey.c auth2-chall.c clientloop.c key.c
      monitor_wrap.c monitor_wrap.h scard.h session.h sftp-glob.c ssh.c
      sshconnect2.c sshd.c]
     minor KNF
2002-07-04 00:14:17 +00:00
Ben Lindstrom 5a9d0eaba6 - deraadt@cvs.openbsd.org 2002/06/30 21:54:16
[auth2.c session.c sshd.c]
     lint asks that we use names that do not overlap
2002-07-04 00:12:53 +00:00
Ben Lindstrom 810af968b8 - deraadt@cvs.openbsd.org 2002/06/28 23:05:06
[sshd.c]
     gidset[2] -> gidset[1]; markus ok
2002-07-04 00:11:40 +00:00
Ben Lindstrom fbbfa8422f - deraadt@cvs.openbsd.org 2002/06/28 10:08:25
[sshd.c]
     range check -u option at invocation
2002-07-04 00:10:34 +00:00
Ben Lindstrom b1bdc5a6ad - deraadt@cvs.openbsd.org 2002/06/28 01:50:37
[monitor_wrap.c]
     use ssize_t
2002-07-04 00:09:26 +00:00
Ben Lindstrom a79616278e - millert@cvs.openbsd.org 2002/06/28 01:49:31
[monitor_mm.c]
     tree(3) wants an int return value for its compare functions and
     the difference between two pointers is not an int.  Just do the
     safest thing and store the result in a long and then return 0,
     -1, or 1 based on that result.
2002-07-04 00:08:23 +00:00
Ben Lindstrom edd098b196 - stevesk@cvs.openbsd.org 2002/06/27 19:49:08
[ssh-keyscan.c]
     use convtime(); ok markus@
2002-07-04 00:07:13 +00:00
Ben Lindstrom eec16fcb27 - deraadt@cvs.openbsd.org 2002/06/27 10:35:47
[auth2-none.c monitor.c sftp-client.c]
     use xfree()
2002-07-04 00:06:15 +00:00
Ben Lindstrom 35a2cb9b41 - deraadt@cvs.openbsd.org 2002/06/27 09:08:00
[monitor.c]
     improve mm_zalloc check; markus ok
2002-07-04 00:05:06 +00:00
Ben Lindstrom 04f9af7dfc - markus@cvs.openbsd.org 2002/06/27 08:49:44
[dh.c ssh-keyscan.c sshconnect.c]
     more checks for NULL pointers; from grendel@zeitbombe.org; ok deraadt@
2002-07-04 00:03:56 +00:00
Ben Lindstrom 723e29aa20 - (bal) minor correction to utimes() replacement. Patch by
onoe@sm.sony.co.jp
2002-07-03 23:50:00 +00:00
Ben Lindstrom 6dbf3001ec - (bal) Updated contrib/cygwin/ patch by vinschen@redhat.com 2002-07-03 23:33:19 +00:00
Damien Miller 23fe57c51c - (djm) Use PAM_MSG_MEMBER for PAM_TEXT_INFO messages, use xmalloc &
friends consistently. Spotted by Solar Designer <solar@openwall.com>
2002-07-02 17:08:23 +10:00
Ben Lindstrom de07cbf1ed - (bal) fix to auth2-pam.c to swap fatal() arguments, A bit of style
clean up while I'm near it.
2002-06-28 16:48:11 +00:00
Ben Lindstrom 68e8311321 - (bal) FreeBSD needs <sys/types.h> to detect if mmap() is supported.
Bug #303
2002-06-28 00:37:33 +00:00
Ben Lindstrom dd21fe9ca0 - (bal) s/config.h/includes.h/ in openbsd-compat/ for *.c. Otherwise wise
have issues of our fixes not propogating right (ie bcopy instead of
   memmove).  OK tim
2002-06-27 18:23:20 +00:00
Ben Lindstrom 596273516c - (bal) Cygwin uid0 fix by vinschen@redhat.com 2002-06-27 18:02:21 +00:00
Kevin Steves bdf3e89f1a 20020628
- (stevesk) [sshd_config] PAMAuthenticationViaKbdInt no; commented
   options should contain default value.  from solar.
2002-06-27 16:59:50 +00:00
Ben Lindstrom fe275982e3 - markus@cvs.openbsd.org 2002/06/26 22:27:32
[ssh-keysign.c]
     bug #304, xfree(data) called to early; openssh@sigint.cs.purdue.edu
2002-06-27 00:25:07 +00:00
Ben Lindstrom 085124998d - deraadt@cvs.openbsd.org 2002/06/26 15:00:32
[monitor_wrap.c]
     more %u
2002-06-27 00:23:02 +00:00