summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2004-10-06Forward-port from HEAD:Colin Watson
* If PasswordAuthentication is disabled, then offer to disable ChallengeResponseAuthentication too. The current PAM code will attempt password-style authentication if ChallengeResponseAuthentication is enabled (closes: #250369). * This will ask a question of anyone who installed fresh with 1:3.8p1-2 or later and then upgraded. Sorry about that ... for this reason, the default answer is to leave ChallengeResponseAuthentication enabled.
2004-08-31Move sshd_config(5) to openssh-server, where it belongs.Colin Watson
2004-08-25Don't install the ssh-askpass-gnome .desktop file by default; I've had tooColin Watson
many GNOME people tell me it's the wrong thing to be doing. I've left it in /usr/share/doc/ssh-askpass-gnome/examples/ for now.
2004-08-02Finish openssh 1:3.8.1p1-9.Colin Watson
2004-08-02Drop priorities of openssh-server and ssh to optional.Colin Watson
2004-08-02Remove /etc/ssh/sshd_not_to_be_run on purge of openssh-server. For nowColin Watson
(until sarge+2) it's still honoured to avoid breaking existing configurations, but the right approach is now to remove the openssh-server package if you don't want to run the server. Add a NEWS item to that effect.
2004-08-02According to Matt Zimmerman, there should only be one NEWS file per sourceColin Watson
package.
2004-08-02Add a heuristic to try to make sure the sshd_config upgrade to >= 3.7Colin Watson
happens even though we don't know what version we're upgrading from.
2004-08-02Add copyright file to transitional ssh package.Colin Watson
2004-07-31* Split the ssh binary package into openssh-client and openssh-serverColin Watson
(closes: #39741). openssh-server depends on openssh-client for some common functionality; it didn't seem worth creating yet another package for this. * New transitional ssh package, depending on openssh-client and openssh-server. May be removed once nothing depends on it. * When upgrading from ssh to openssh-{client,server}, it's very difficult for the maintainer scripts to find out what version we're upgrading from without dodgy dpkg hackery. I've therefore taken the opportunity to move a couple of debconf notes into NEWS files, namely ssh/ssh2_keys_merged and ssh/user_environment_tell. * In general, upgrading to this version directly from woody without first upgrading to the version in sarge is not currently guaranteed to work very smoothly due to the aforementioned version discovery problems.
2004-07-30Merge from MAIN:Colin Watson
cvs up -jV_3_8_1_P1-4 -jV_3_8_1_P1-8
2004-07-19Implement hack in http://lists.debian.org/debian-boot/2004/07/msg01207.htmlColin Watson
to get openssh-client-udeb to show up as a retrievable debian-installer component.
2004-07-10Finish 1:3.8.1p1-5. Set urgency to medium due to the orphaned [pam] processColin Watson
fix.
2004-07-10Apply upstream bits of the patch for #258517.Colin Watson
2004-07-10Add scp and sftp to openssh-client-udeb. It might not be very 'u' any more;Colin Watson
oh well.
2004-07-10Apply patch from Darren Tucker to make the PAM authentication SIGCHLDColin Watson
handler kill the PAM thread if its waitpid() call returns 0, as well as the previous check for -1 (closes: #252676).
2004-07-10They aren't all bashisms ...Colin Watson
2004-07-10Fix bashisms in maintainer scripts (thanks, David Weinehall; partial fixColin Watson
for #258517).
2004-06-22debconf-updatepoColin Watson
2004-06-22Disable shadow password support in openssh-server-udeb.Colin Watson
2004-06-14Remove Suggests: dnsutils, as it was only needed for make-ssh-known-hostsColin Watson
(#93265), which has been replaced by ssh-keyscan.
2004-06-02Update German debconf template translation (thanks, Helge Kreutzmann;Colin Watson
closes: #252226).
2004-05-28Finish 1:3.8.1p1-4.Colin Watson
2004-05-28Kill off PAM thread if privsep slave dies (closes: #248125).Colin Watson
2004-05-20Finish 1:3.8.1p1-3.Colin Watson
2004-05-20Add ssh-keygen to openssh-server-udeb.Colin Watson
2004-05-20Finish 1:3.8.1p1-2.Colin Watson
2004-05-20Don't link against libnsl in udeb builds.Colin Watson
2004-05-20Restore ssh-askpass-gnome binary, lost by mistake.Colin Watson
2004-05-20Run debconf-updatepo.Colin Watson
2004-05-14openssh-client-udeb and openssh-server-udeb depend on libnss-files-udebColin Watson
(not yet uploaded).
2004-05-13Add Catalan debconf template translation (thanks, Aleix Badia i Bosch;Colin Watson
closes: #248748).
2004-05-11Finish 1:3.8.1p1-1.Colin Watson
2004-05-11Work around lack of res_query weak alias in libresolv on amd64 (seeColin Watson
#242462, awaiting real fix upstream).
2004-05-11Add openssh-client-udeb and openssh-server-udeb binary packages for use inColin Watson
debian-installer. They still need libnss_files to be supplied in udeb form by glibc.
2004-05-05Note closure of #247538.Colin Watson
2004-05-01Add .desktop file and icon for ssh-askpass-gnome (closes: #232333).Colin Watson
2004-05-01msgmerge update.Colin Watson
2004-05-01Add Turkish debconf template translation (thanks, Recai Oktaş; closes:Colin Watson
#246068).
2004-05-01Update Polish debconf template translation (thanks, Emil Nowak; closes:Colin Watson
#242808).
2004-05-01Fix grammar in sshd(8) (closes: #238753).Colin Watson
2004-05-01Update changelog for 3.8.1p1.Colin Watson
2004-05-01Merge 3.8.1p1 to the trunk, minus RFC.nroff (#211640).Colin Watson
2004-05-01Import OpenSSH 3.8.1p1.Colin Watson
2004-04-29Remove /usr/share/doc/ssh/RFC.gz from the ssh binary package (although it'sColin Watson
still in the source, so this only addresses part of #211640 rather than closing it). It isn't DFSG-free and only documents the obsolete SSH1 protocol, not to mention that it was never a real RFC but only an Internet-Draft. It's available from http://www.free.lp.se/bamse/draft-ylonen-ssh-protocol-00.txt if you want it for some reason.
2004-04-20Make sure there's a newline at the end of sshd_config before adding 'UsePAMColin Watson
yes' (closes: #244829).
2004-04-20Finish 1:3.8p1-3 (actually, I did this ages ago ...).Colin Watson
2004-04-18mark releaseDamien Miller
2004-04-18Add people with several and/or large contributionsDarren Tucker
2004-04-18 - (djm) [openbsd-compat/bsd-cygwin_util.c] Recent versions of Cygwin allowDamien Miller
change of user context without a password, so relax auth method restrictions; from vinschen AT redhat.com; ok dtucker@