| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-05-06 | Use dh-autoreconf. | Colin Watson | |
| 2013-03-25 | releasing version 1:6.1p1-4 | Colin Watson | |
| 2013-03-25 | Add ssh-agent upstart user job. This implements something similar to | Stéphane Graber | |
| the 90x11-common_ssh-agent Xsession script. That is, start ssh-agent and set the appropriate environment variables (closes: #703906). | |||
| 2013-03-25 | debian/openssh-server.sshd.pam: Explicitly state that ~/.pam_environment | Gunnar Hjalmarsson | |
| should be read, and move the pam_env calls from "auth" to "session" so that it's also read when $HOME is encrypted (LP: #952185). | |||
| 2013-02-08 | releasing version 1:6.1p1-3 | Colin Watson | |
| 2013-02-08 | CVE-2010-5107: Improve DoS resistance by changing default of MaxStartups | Colin Watson | |
| to 10:30:100 (closes: #700102). | |||
| 2012-12-19 | Give ssh and ssh-krb5 versioned dependencies on openssh-client and | Colin Watson | |
| openssh-server, to try to reduce confusion when people run 'apt-get install ssh' or similar and expect that to upgrade everything relevant. | |||
| 2012-11-26 | releasing version 1:6.1p1-2 | Colin Watson | |
| 2012-11-26 | Simplify --with-consolekit handling. | Colin Watson | |
| 2012-11-26 | Install apport hooks. | Colin Watson | |
| 2012-11-26 | Add mention of ssh-keygen in ssh connect warning (Scott Moser). | Colin Watson | |
| 2012-11-26 | Tweak sshd(8) to refer to ssh's Upstart job as well as its init script. | Colin Watson | |
| 2012-11-26 | Merge Upstart job scripting support from Ubuntu, to handle the Upstart job ↵ | Colin Watson | |
| being primary there. | |||
| 2012-11-25 | Only build with -j if DEB_BUILD_OPTIONS=parallel=* is used (closes: | Colin Watson | |
| #694282). | |||
| 2012-11-01 | Add an Upstart job (not currently used by default in Debian). | Colin Watson | |
| 2012-10-31 | Drop openssh-blacklist and openssh-blacklist-extra to Suggests. It's | Colin Watson | |
| been long enough since the relevant vulnerability that we shouldn't need these installed by default nowadays. | |||
| 2012-10-31 | * Merge from Ubuntu: | Colin Watson | |
| - Add support for registering ConsoleKit sessions on login. (This is currently enabled only when building for Ubuntu.) | |||
| 2012-09-28 | Use xz compression for binary packages. | Colin Watson | |
| 2012-09-07 | releasing version 1:6.1p1-1 | Colin Watson | |
| 2012-09-07 | Consolidate the two "Miscellaneous bug fixes" sections of debian/patches/series. | Colin Watson | |
| 2012-09-07 | * New upstream release (http://www.openssh.com/txt/release-6.1). | Colin Watson | |
| - Enable pre-auth sandboxing by default for new installs. - Allow "PermitOpen none" to refuse all port-forwarding requests (closes: #543683). | |||
| 2012-09-06 | merge 6.1p1 | Colin Watson | |
| 2012-09-06 | Import 6.1p1 tarball | Colin Watson | |
| 2012-08-29 | - (djm) Release openssh-6.1 | Damien Miller | |
| 2012-08-28 | - (dtucker) [openbsd-compat/bsd-cygwin_util.h] define WIN32_LEAN_AND_MEAN | Darren Tucker | |
| for compatibility with future mingw-w64 headers. Patch from vinschen at redhat com. | |||
| 2012-08-24 | releasing version 1:6.0p1-3 | Colin Watson | |
| 2012-08-24 | Add ncurses-term to openssh-server's Recommends, since it's often needed | Colin Watson | |
| to support unusual terminal emulators on clients (closes: #675362). | |||
| 2012-08-24 | Call restorecon on copied ~/.ssh/authorized_keys if possible, since some | Colin Watson | |
| SELinux policies require this (closes: #658675). | |||
| 2012-08-22 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] | Damien Miller | |
| [contrib/suse/openssh.spec] Update version numbers | |||
| 2012-07-31 | - markus@cvs.openbsd.org 2012/07/22 18:19:21 | Damien Miller | |
| [version.h] openssh 6.1 | |||
| 2012-07-31 | - dtucker@cvs.openbsd.org 2012/07/13 01:35:21 | Damien Miller | |
| [servconf.c] handle long comments in config files better. bz#2025, ok markus | |||
| 2012-07-31 | fix truncated entry | Damien Miller | |
| 2012-07-31 | - djm@cvs.openbsd.org 2012/07/10 02:19:15 | Damien Miller | |
| [servconf.c servconf.h sshd.c sshd_config] Turn on systrace sandboxing of pre-auth sshd by default for new installs by shipping a config that overrides the current UsePrivilegeSeparation=yes default. Make it easier to flip the default in the future by adding too. | |||
| 2012-07-31 | - jmc@cvs.openbsd.org 2012/07/06 06:38:03 | Damien Miller | |
| [ssh-keygen.c] missing full stop in usage(); | |||
| 2012-07-20 | Import regened moduli file. | Darren Tucker | |
| 2012-07-16 | * debconf template translations: | Colin Watson | |
| - Add Indonesian (thanks, Andika Triwidada; closes: #681670). | |||
| 2012-07-06 | - djm@cvs.openbsd.org 2012/07/06 01:47:38 | Damien Miller | |
| [ssh.c] move setting of tty_flag to after config parsing so RequestTTY options are correctly picked up. bz#1995 patch from przemoc AT gmail.com; ok dtucker@ | |||
| 2012-07-06 | - djm@cvs.openbsd.org 2012/07/06 01:37:21 | Damien Miller | |
| [mux.c] fix memory leak of passed-in environment variables and connection context when new session message is malformed; bz#2003 from Bert.Wesarg AT googlemail.com | |||
| 2012-07-06 | - dtucker@cvs.openbsd.org 2012/07/06 00:41:59 | Damien Miller | |
| [moduli.c ssh-keygen.1 ssh-keygen.c] Add options to specify starting line number and number of lines to process when screening moduli candidates. This allows processing of different parts of a candidate moduli file in parallel. man page help jmc@, ok djm@ | |||
| 2012-07-06 | - (djm) [configure.ac] Recursively expand $(bindir) to ensure it has no | Damien Miller | |
| unexpanded $(prefix) embedded. bz#2007 patch from nix-corp AT esperi.org.uk; ok dtucker@ | |||
| 2012-07-06 | - (djm) [sandbox-seccomp-filter.c] fallback to rlimit if seccomp filter is | Damien Miller | |
| not available. Allows use of sshd compiled on host with a filter-capable kernel on hosts that lack the support. bz#2011 ok dtucker@ | |||
| 2012-07-04 | - (dtucker) [configure.ac openbsd-compat/bsd-misc.h] Add setlinebuf for | Darren Tucker | |
| platforms that don't have it. "looks good" tim@ | |||
| 2012-07-03 | - (dtucker) [configure.ac sandbox-rlimit.c] Test whether or not | Darren Tucker | |
| setrlimit(RLIMIT_FSIZE, rl_zero) and skip it if it's not supported. Its benefit is minor, so it's not worth disabling the sandbox if it doesn't work. | |||
| 2012-07-03 | - (dtucker) [configure.ac] Detect platforms that can't use select(2) with | Darren Tucker | |
| setrlimit(RLIMIT_NOFILE, rl_zero) and disable the rlimit sandbox on those. | |||
| 2012-07-03 | - (dtucker) [regress/test-exec.sh] Correct uname for cygwin/w2k. | Darren Tucker | |
| 2012-07-03 | - (dtucker) [regress/reexec.sh regress/sftp-cmds.sh regress/test-exec.sh] | Darren Tucker | |
| Move cygwin detection to test-exec and use to skip reexec test on cygwin. | |||
| 2012-07-03 | - dtucker@cvs.openbsd.org 2012/07/02 14:37:06 | Darren Tucker | |
| [regress/connect-privsep.sh] remove exit from end of test since it prevents reporting failure | |||
| 2012-07-02 | - dtucker@cvs.openbsd.org 2012/07/02 12:13:26 | Darren Tucker | |
| [ssh-pkcs11-helper.c sftp-client.c] fix a couple of "assigned but not used" warnings. ok markus@ | |||
| 2012-07-02 | - dtucker@cvs.openbsd.org 2012/07/02 08:50:03 | Darren Tucker | |
| [ssh.c] set interactive ToS for forwarded X11 sessions. ok djm@ | |||
| 2012-07-02 | - markus@cvs.openbsd.org 2012/06/30 14:35:09 | Darren Tucker | |
| [sandbox-systrace.c sshd.c] fix a during the load of the sandbox policies (child can still make the read-syscall and wait forever for systrace-answers) by replacing the read/write synchronisation with SIGSTOP/SIGCONT; report and help hshoexer@; ok djm@, dtucker@ | |||
 |
index : openssh.git | |
| summaryrefslogtreecommitdiff |