Age | Commit message (Collapse) | Author | |
---|---|---|---|
2002-09-05 | - (djm) Merge openssh-TODO.patch from Redhat (null) beta | Damien Miller | |
2002-09-05 | - (djm) OpenBSD CVS Sync | Damien Miller | |
- stevesk@cvs.openbsd.org 2002/09/04 18:52:42 [servconf.c sshd.8 sshd_config.5] default LoginGraceTime to 2m; 1m may be too short for slow systems. ok markus@ | |||
2002-09-04 | - (djm) Patch from itojun@ for Darwin OS: test getaddrinfo, reorder libcrypt | Damien Miller | |
2002-09-04 | - (djm) Fix Redhat RPM build dependancy test | Damien Miller | |
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/29 22:54:10 | Damien Miller | |
[ssh_config.5 sshd_config.5] state XAuthLocation is a full pathname | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/29 19:49:42 | Damien Miller | |
[ssh.c] shrink initial privilege bracket for setuid case; ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/29 16:09:02 | Damien Miller | |
[ssh_config.5] more on UsePrivilegedPort and setuid root; ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/29 16:02:54 | Damien Miller | |
[ssh.1 ssh.c] deprecate -P as UsePrivilegedPort defaults to no now; ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/29 15:57:25 | Damien Miller | |
[monitor.c session.c sshlogin.c sshlogin.h] pass addrlen with sockaddr *; from Hajimu UMEMOTO <ume@FreeBSD.org> NOTE: there are also p-specific parts to this patch. ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/27 17:18:40 | Damien Miller | |
[ssh_config.5] some warning text for ForwardAgent and ForwardX11; ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/27 17:13:56 | Damien Miller | |
[ssh-rsa.c] RSA_public_decrypt() returns -1 on error so len must be signed; ok markus@ | |||
2002-09-04 | - markus@cvs.openbsd.org 2002/08/22 21:45:41 | Damien Miller | |
[session.c] send signal name (not signal number) in "exit-signal" message; noticed by galb@vandyke.com | |||
2002-09-04 | - markus@cvs.openbsd.org 2002/08/22 21:33:58 | Damien Miller | |
[auth1.c auth2.c] auth_root_allowed() is handled by the monitor in the privsep case, so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325 | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/22 20:57:19 | Damien Miller | |
[ssh-agent.c] shutdown(SHUT_RDWR) not needed before close here; ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/22 19:38:42 | Damien Miller | |
[clientloop.c] format with current EscapeChar; bugzilla #388 from wknox@mitre.org. ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/22 19:27:53 | Damien Miller | |
[ssh-agent.c] use common close function; ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/21 20:10:28 | Damien Miller | |
[ssh-agent.c] raise listen backlog; ok markus@ | |||
2002-09-04 | - stevesk@cvs.openbsd.org 2002/08/21 19:38:06 | Damien Miller | |
[servconf.c sshd.8 sshd_config sshd_config.5] change LoginGraceTime default to 1 minute; ok mouring@ markus@ | |||
2002-09-04 | - espie@cvs.openbsd.org 2002/08/21 11:20:59 | Damien Miller | |
[sshd.8] `RSA' updated to refer to `public key', where it matters. okay markus@ | |||
2002-09-04 | - markus@cvs.openbsd.org 2002/08/12 10:46:35 | Damien Miller | |
[ssh-agent.c] make ssh-agent setgid, disallow ptrace. (note: change not yet made in Makefile) | |||
2002-08-21 | - (bal) [defines.h] Some platforms don't have SIZE_T_MAX. So assign | Ben Lindstrom | |
it to ULONG_MAX. | |||
2002-08-20 | - stevesk@cvs.openbsd.org 2002/08/17 23:55:01 | Ben Lindstrom | |
[ssh_config.5] ordered list here | |||
2002-08-20 | - stevesk@cvs.openbsd.org 2002/08/17 23:07:14 | Ben Lindstrom | |
[ssh.1] ForwardAgent has defaulted to no for over 2 years; be more clear here. | |||
2002-08-20 | - stevesk@cvs.openbsd.org 2002/08/12 17:30:35 | Ben Lindstrom | |
[ssh.1 sshd.8 sshd_config.5] more PermitUserEnvironment; ok markus@ | |||
2002-08-20 | - stevesk@cvs.openbsd.org 2002/08/09 17:41:12 | Ben Lindstrom | |
[sshd_config.5] proxy vs. fake display | |||
2002-08-20 | - stevesk@cvs.openbsd.org 2002/08/09 17:21:42 | Ben Lindstrom | |
[sshd_config.5] use Op for mdoc conformance; from esr@golux.thyrsus.com ok aaron@ | |||
2002-08-20 | - stevesk@cvs.openbsd.org 2002/08/08 23:54:52 | Ben Lindstrom | |
[auth.c] typo in comment | |||
2002-08-20 | - aaron@cvs.openbsd.org 2002/08/08 13:50:23 | Ben Lindstrom | |
[sshconnect1.c] Use & to test if bits are set, not &&; markus@ ok. | |||
2002-08-20 | - markus@cvs.openbsd.org 2002/08/02 22:20:30 | Ben Lindstrom | |
[ssh-rsa.c] replace RSA_verify with our own version and avoid the OpenSSL ASN.1 parser for authentication; ok deraadt/djm | |||
2002-08-20 | - markus@cvs.openbsd.org 2002/08/02 21:23:41 | Ben Lindstrom | |
[ssh-rsa.c] diff is u_int (2x); ok deraadt/provos | |||
2002-08-20 | - marc@cvs.openbsd.org 2002/08/02 16:00:07 | Ben Lindstrom | |
[ssh.1 sshd.8] note that .ssh/environment is only read when allowed (PermitUserEnvironment in sshd_config). OK markus@ | |||
2002-08-20 | - millert@cvs.openbsd.org 2002/08/02 14:43:15 | Ben Lindstrom | |
[monitor.c monitor_mm.c] Change mm_zalloc() sanity checks to be more in line with what we do in calloc() and add a check to monitor_mm.c. OK provos@ and markus@ | |||
2002-08-13 | [configure.ac] Display OpenSSL header/library version. | Tim Rice | |
Patch by dtucker@zip.com.au | |||
2002-08-01 | - markus@cvs.openbsd.org 2002/07/30 17:03:55 | Ben Lindstrom | |
[auth-options.c servconf.c servconf.h session.c sshd_config sshd_config.5] add PermitUserEnvironment (off by default!); from dot@dotat.at; ok provos, deraadt | |||
2002-08-01 | - markus@cvs.openbsd.org 2002/07/29 18:57:30 | Ben Lindstrom | |
[sshconnect.c] print file:line | |||
2002-08-01 | - mouring@cvs.openbsd.org 2002/07/25 01:16:59 | Ben Lindstrom | |
[sftp.c] FallBackToRsh does not exist anywhere else. Remove it from here. OK deraadt. | |||
2002-08-01 | - markus@cvs.openbsd.org 2002/07/24 16:11:18 | Ben Lindstrom | |
[hostfile.c hostfile.h sshconnect.c] print out all known keys for a host if we get a unknown host key, see discussion at http://marc.theaimsgroup.com/?t=101069210100016&r=1&w=4 the ssharp mitm tool attacks users in a similar way, so i'd like to pointed out again: A MITM attack is always possible if the ssh client prints: The authenticity of host 'bla' can't be established. (protocol version 2 with pubkey authentication allows you to detect MITM attacks) | |||
2002-07-30 | - (bal) [uidswap.c] SCO compile correction by gert@greenie.muc.de | Ben Lindstrom | |
2002-07-28 | - (stevesk) [ssh-rand-helper.c] RAND_bytes() and SHA1_Final() unsigned | Kevin Steves | |
char arg. | |||
2002-07-28 | - (stevesk) [CREDITS] solar | Kevin Steves | |
2002-07-28 | - (stevesk) [auth-pam.c] should use PAM_MSG_MEMBER(); from solar | Kevin Steves | |
2002-07-25 | - (djm) Latest config.guess and config.sub from ftp://ftp.gnu.org/gnu/config/ | Damien Miller | |
2002-07-25 | - (djm) Remove some cruft from INSTALL | Damien Miller | |
2002-07-23 | - stevesk@cvs.openbsd.org 2002/07/15 17:15:31 | Ben Lindstrom | |
[uidswap.c] little more debugging; ok markus@ | |||
2002-07-23 | - stevesk@cvs.openbsd.org 2002/07/23 16:03:10 | Ben Lindstrom | |
[sshd.c] utmp_len is unsigned; display error consistent with other options. ok markus@ | |||
2002-07-23 | - stevesk@cvs.openbsd.org 2002/07/22 17:32:56 | Ben Lindstrom | |
[monitor.c] u_int here; ok provos@ | |||
2002-07-23 | - markus@cvs.openbsd.org 2002/07/22 11:03:06 | Ben Lindstrom | |
[session.c] fallback to _PATH_STDPATH on setusercontext+LOGIN_SETPATH errors; | |||
2002-07-23 | - stevesk@cvs.openbsd.org 2002/07/21 18:34:43 | Ben Lindstrom | |
[auth-options.h] remove invalid comment | |||
2002-07-23 | - stevesk@cvs.openbsd.org 2002/07/21 18:32:20 | Ben Lindstrom | |
[auth-options.c] unneeded includes | |||
2002-07-23 | - (bal) sync ID w/ ssh-agent.c | Ben Lindstrom | |