summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2003-11-21 - (djm) OpenBSD CVS SyncDamien Miller
- markus@cvs.openbsd.org 2003/11/20 11:39:28 [progressmeter.c] fix rounding errors; from andreas@
2003-11-18 - djm@cvs.openbsd.org 2003/11/18 10:53:07Damien Miller
[monitor.c] unbreak fake authloop for non-existent users (my screwup). Spotted and tested by dtucker@; ok markus@
2003-11-18 - (djm) OpenBSD CVS SyncDamien Miller
- dtucker@cvs.openbsd.org 2003/11/18 00:40:05 [serverloop.c] Correct check for authctxt->valid. ok djm@
2003-11-18 - (dtucker) [auth-pam.c] Only use pam_putenv if our platform has it. ok djm@Darren Tucker
2003-11-18 - (dtucker) [auth-pam.c] Convert chauthtok_conv into a generic tty_conv,Darren Tucker
and use it for do_pam_session. Fixes problems like pam_motd not displaying anything. ok djm@
2003-11-18 - (djm) Fix early exit for root auth success when UsePAM=yes andDamien Miller
PermitRootLogin=no
2003-11-17 - markus@cvs.openbsd.org 2003/11/17 11:06:07Damien Miller
[auth2-gss.c gss-genr.c gss-serv.c monitor.c monitor.h monitor_wrap.c] [monitor_wrap.h sshconnect2.c ssh-gss.h] replace "gssapi" with "gssapi-with-mic"; from Simon Wilkinson; test + ok jakob.
2003-11-17 - (djm) Export environment variables from authentication subprocess toDamien Miller
parent. Part of Bug #717
2003-11-17 - (djm) Bug #632: Don't call pam_end indirectly from within kbd-intDamien Miller
conversation function
2003-11-17 - djm@cvs.openbsd.org 2003/11/17 09:45:39Damien Miller
[msg.c msg.h sshconnect2.c ssh-keysign.c] return error on msg send/receive failure (rather than fatal); ok markus@
2003-11-17 - markus@cvs.openbsd.org 2003/11/14 13:19:09Damien Miller
[sshconnect2.c] cleanup and minor fixes for the client code; from Simon Wilkinson
2003-11-17 - jmc@cvs.openbsd.org 2003/11/12 20:14:51Damien Miller
[ssh_config.5] make verb agree with subject, and kill some whitespace;
2003-11-17 - jakob@cvs.openbsd.org 2003/11/12 16:39:58Damien Miller
[dns.c dns.h readconf.c ssh_config.5 sshconnect.c] update SSHFP validation. ok markus@
2003-11-17 - dtucker@cvs.openbsd.org 2003/11/12 10:12:15Damien Miller
[scp.c] When called with -q, pass -q to ssh; suppresses SSH2 banner. ok markus@
2003-11-17 - jakob@cvs.openbsd.org 2003/11/10 16:23:41Damien Miller
[bufaux.c bufaux.h cipher.c cipher.h hostfile.c hostfile.h key.c] [key.h sftp-common.c sftp-common.h sftp-server.c sshconnect.c sshd.c] [ssh-dss.c ssh-rsa.c uuencode.c uuencode.h] constify. ok markus@ & djm@
2003-11-17 - jmc@cvs.openbsd.org 2003/11/08 19:17:29Damien Miller
[sftp-int.c] typos from Jonathon Gray;
2003-11-17 - jakob@cvs.openbsd.org 2003/11/08 16:02:40Damien Miller
[auth1.c] remove unused variable (pw). ok djm@ (id sync only - still used in portable)
2003-11-17 - djm@cvs.openbsd.org 2003/11/04 08:54:09Damien Miller
[auth1.c auth2.c auth2-pubkey.c auth.h auth-krb5.c auth-passwd.c] [auth-rhosts.c auth-rh-rsa.c auth-rsa.c monitor.c serverloop.c] [session.c] standardise arguments to auth methods - they should all take authctxt. check authctxt->valid rather then pw != NULL; ok markus@
2003-11-17 - jakob@cvs.openbsd.org 2003/11/03 09:37:32Damien Miller
[sshconnect.c] do not free static type pointer in warn_changed_key()
2003-11-17 - jakob@cvs.openbsd.org 2003/11/03 09:09:41Damien Miller
[sshconnect.c] move changed key warning into warn_changed_key(). ok markus@
2003-11-17 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2003/11/03 09:03:37 [auth-chall.c] make this a little more idiot-proof; ok markus@ (includes portable-specific changes)
2003-11-15 - (dtucker) [regress/agent-ptrace.sh] Test for GDB output from Solaris andDarren Tucker
HP-UX, skip test on AIX.
2003-11-13 - (dtucker) [auth-pam.c] Add newline to accumulated PAM_TEXT_INFO andDarren Tucker
PAM_ERROR_MSG messages.
2003-11-13 - (dtucker) [README ssh-host-config ssh-user-config Makefile] (AllDarren Tucker
contrib/cygwin). Major update from vinschen at redhat.com. - Makefile provides a `cygwin-postinstall' target to run right after `make install'. - Better support for Windows 2003 Server. - Try to get permissions as correct as possible. - New command line options to allow full automated host configuration. - Create configs from skeletons in /etc/defaults/etc. - Use /bin/bash, allows reading user input with readline support. - Remove really old configs from /usr/local.
2003-11-13 - (dtucker) [auth-pam.c] Append newlines to lines output by theDarren Tucker
pam_chauthtok_conv().
2003-11-06 - (djm) Clarify UsePAM consequences a little moreDamien Miller
2003-11-03 - (dtucker) [regress/agent-ptrace.sh] Use numeric uid and gid.Darren Tucker
2003-11-03 - markus@cvs.openbsd.org 2003/11/02 11:01:03Darren Tucker
[auth2-gss.c compat.c compat.h sshconnect2.c] remove support for SSH_BUG_GSSAPI_BER; simon@sxw.org.uk
2003-11-03 - markus@cvs.openbsd.org 2003/10/28 09:08:06Darren Tucker
[misc.c] error->debug for getsockopt+TCP_NODELAY; several requests
2003-11-03 - avsm@cvs.openbsd.org 2003/10/26 16:57:43Darren Tucker
[sshconnect2.c] rename 'supported' static var in userauth_gssapi() to 'gss_supported' to avoid shadowing the global version. markus@ ok
2003-11-03 - markus@cvs.openbsd.org 2003/10/21 09:50:06Darren Tucker
[auth2-gss.c] make sure the doid is larger than 2
2003-11-03 - markus@cvs.openbsd.org 2003/10/15 09:48:45Darren Tucker
[monitor_wrap.c] check pmonitor != NULL
2003-11-03 - (dtucker) [contrib/cygwin/ssh-host-config] Ensure entries in /etc/servicesDarren Tucker
are created correctly with CRLF line terminations. Patch from vinschen at redhat.com.
2003-10-21Remove OBJ, shouldn't be thereDarren Tucker
2003-10-21 - (dtucker) [regress/agent-ptrace.sh] Skip agent-test unless SUDO is set,Darren Tucker
make agent setgid during test.
2003-10-21 - (dtucker) [INSTALL] Some system crypt() functions support MD5 passwordsDarren Tucker
directly. Noted by Darren.Moffat at sun.com.
2003-10-17 - (dtucker) [INSTALL] Note that --with-md5 is now required on platforms withDarren Tucker
MD5 passwords even if PAM support is enabled. From steev at detritus.net.
2003-10-15[regress/banner.sh] portability fix.Tim Rice
2003-10-15 - (dtucker) [auth.c] Check for disabled password expiry on HP-UX Trusted Mode.Darren Tucker
2003-10-15Fix comments to reflect recent change.Darren Tucker
2003-10-15 - (dtucker) [acconfig.h configure.ac dns.c openbsd-compat/getrrsetbyname.cDarren Tucker
openbsd-compat/getrrsetbyname.h] DNS fingerprint support is now always compiled in but disabled in config.
2003-10-15 - markus@cvs.openbsd.org 2003/10/14 19:54:39Darren Tucker
[session.c ssh-agent.c] 10X for mkdtemp; djm@
2003-10-15 - jakob@cvs.openbsd.org 2003/10/14 19:43:23Darren Tucker
[README.dns] update Resynced with OpenBSD too: DNSFP support is now always compiled in so the configure support (and documentation thereof) can go away.
2003-10-15 - jakob@cvs.openbsd.org 2003/10/14 19:42:10Darren Tucker
[dns.c dns.h readconf.c ssh-keygen.c sshconnect.c] include SSHFP lookup code (not enabled by default). ok markus@
2003-10-15 - markus@cvs.openbsd.org 2003/10/13 08:22:25Darren Tucker
[scp.1 sftp.1] don't refer to options related to forwarding; ok jmc@
2003-10-15 - jmc@cvs.openbsd.org 2003/10/12 13:12:13Darren Tucker
[ssh_config.5] note that EnableSSHKeySign should be in the non-hostspecific section; remove unnecessary .Pp; ok markus@
2003-10-15 - markus@cvs.openbsd.org 2003/10/11 11:36:23Darren Tucker
[monitor_wrap.c] return NULL for missing banner; ok djm@
2003-10-15 - markus@cvs.openbsd.org 2003/10/11 08:26:43Darren Tucker
[sshconnect2.c] search keys in reverse order; fixes #684
2003-10-15 - markus@cvs.openbsd.org 2003/10/11 08:24:08Darren Tucker
[readconf.c readconf.h ssh.1 ssh.c ssh_config.5] remote x11 clients are now untrusted by default, uses xauth(8) to generate untrusted cookies; ForwardX11Trusted=yes restores old behaviour. ok deraadt; feedback and ok djm/fries
2003-10-15 - markus@cvs.openbsd.org 2003/10/08 15:21:24Darren Tucker
[readconf.c ssh_config.5] default GSS API to no in client, too; ok jakob, deraadt@