| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-06-06 | Set SELinux context on private host keys as well as public host keys | Colin Watson | |
| (closes: #687436). | |||
| 2013-06-06 | Rebuild against debhelper 9.20130604 with fixed dependencies for | Colin Watson | |
| invoke-rc.d and Upstart jobs (closes: #711364). | |||
| 2013-06-05 | Fix non-portable shell in ssh-copy-id (closes: #711162). | Colin Watson | |
| 2013-05-22 | releasing version 1:6.2p2-3 | Colin Watson | |
| 2013-05-22 | If the running init daemon is Upstart, then, on the first upgrade to | Colin Watson | |
| this version, check whether sysvinit is still managing sshd; if so, manually stop it so that it can be restarted under upstart. We do this near the end of the postinst, so it shouldn't result in any appreciable extra window where sshd is not running during upgrade. | |||
| 2013-05-22 | releasing version 1:6.2p2-2 | Colin Watson | |
| 2013-05-22 | Remove ancient commented-out code. | Colin Watson | |
| 2013-05-22 | Fix dh_builddeb invocation so that we really use xz compression for | Colin Watson | |
| binary packages, as intended since 1:6.1p1-2. | |||
| 2013-05-22 | Bracket our session stack with calls to pam_selinux close/open (thanks, | Colin Watson | |
| Laurent Bigonville; closes: #679458). | |||
| 2013-05-22 | Use the pam_loginuid session module (thanks, Laurent Bigonville; closes: | Colin Watson | |
| #677440, LP: #1067779). | |||
| 2013-05-22 | * Remove the check for vulnerable host keys; this was first added five | Colin Watson | |
| years ago, and everyone should have upgraded through a version that applied these checks by now. The ssh-vulnkey tool and the blacklisting support in sshd are still here, at least for the moment. * This removes the last of our uses of debconf (closes: #221531). | |||
| 2013-05-22 | Drop now-unused Lintian override. | Colin Watson | |
| 2013-05-22 | Switch to new unified layout for Upstart jobs as documented in | Colin Watson | |
| https://wiki.ubuntu.com/UpstartCompatibleInitScripts: the init script checks for a running Upstart, and we now let dh_installinit handle most of the heavy lifting in maintainer scripts. Ubuntu users should be essentially unaffected except that sshd may no longer start automatically in chroots if the running Upstart predates 0.9.0; but the main goal is simply not to break when openssh-server is installed in a chroot. | |||
| 2013-05-22 | Replace old manual conffile handling code with dpkg-maintscript-helper, | Colin Watson | |
| via dh_installdeb. | |||
| 2013-05-22 | close bug | Colin Watson | |
| 2013-05-22 | Add #DEBHELPER# tokens to openssh-client.postinst and | Colin Watson | |
| openssh-server.postinst. | |||
| 2013-05-22 | Clarify changelog: upgrades -> direct upgrades. | Colin Watson | |
| 2013-05-22 | Remove lots of maintainer script support for upgrades from pre-etch | Colin Watson | |
| (three releases before current stable). | |||
| 2013-05-22 | Another unregistration. | Colin Watson | |
| 2013-05-21 | Remove support for upgrading from ssh-nonfree. | Colin Watson | |
| 2013-05-21 | Remove ssh/use_old_init_script, which was a workaround for a very old | Colin Watson | |
| bug in /etc/init.d/ssh. If anyone has ignored this for >10 years then they aren't going to be convinced now. | |||
| 2013-05-21 | Drop conffile handling for upgrades from pre-split ssh package; this was | Colin Watson | |
| originally added in 1:4.3p2-7 / 1:4.3p2-8, and contained a truly ghastly hack around a misbehaviour in sarge's dpkg. Since this is now four Debian releases ago, we can afford to drop this and simplify the packaging. | |||
| 2013-05-21 | Change start condition of Upstart job to be just the standard "runlevel | Colin Watson | |
| [2345]", rather than "filesystem or runlevel [2345]"; the latter makes it unreasonably difficult to ensure that urandom starts before ssh, and is not really necessary since one of static-network-up and failsafe-boot is guaranteed to happen and will trigger entry to the default runlevel, and we don't care about ssh starting before the network (LP: #1098299). | |||
| 2013-05-16 | releasing version 1:6.2p2-1 | Colin Watson | |
| 2013-05-16 | * New upstream release (http://www.openssh.com/txt/release-6.2p2): | Colin Watson | |
| - Only warn for missing identity files that were explicitly specified (closes: #708275). - Fix bug in contributed contrib/ssh-copy-id script that could result in "rm *" being called on mktemp failure (closes: #708419). | |||
| 2013-05-16 | merge 6.2p2 | Colin Watson | |
| 2013-05-16 | Import 6.2p2 tarball | Colin Watson | |
| 2013-05-16 | - (djm) Release 6.2p2 | Damien Miller | |
| 2013-05-16 | - (djm) [contrib/ssh-copy-id] Fix bug that could cause "rm *" to be | Damien Miller | |
| executed if mktemp failed; bz#2105 ok dtucker@ | |||
| 2013-05-13 | releasing version 1:6.2p1-3 | Colin Watson | |
| 2013-05-13 | Renumber Debian-specific additions to enum monitor_reqtype so that they | Colin Watson | |
| fit within a single byte (thanks, Jason Conti; LP: #1179202). | |||
| 2013-05-13 | renumber monitor requests to allow more space | Colin Watson | |
| 2013-05-10 | - (djm) [README] Update release notes URL | Damien Miller | |
| 2013-05-10 | - (djm) [version.h contrib/caldera/openssh.spec contrib/redhat/openssh.spec] | Damien Miller | |
| [contrib/suse/openssh.spec] Crank version numbers for release. | |||
| 2013-05-10 | - djm@cvs.openbsd.org 2013/04/11 02:27:50 | Damien Miller | |
| [packet.c] quiet disconnect notifications on the server from error() back to logit() if it is a normal client closure; bz#2057 ok+feedback dtucker@ | |||
| 2013-05-09 | releasing version 1:6.2p1-2 | Colin Watson | |
| 2013-05-09 | Fix consolekit mismerges in monitor.c and monitor_wrap.c. | Colin Watson | |
| 2013-05-09 | * Fix build failure on Ubuntu: | Colin Watson | |
| - Include openbsd-compat/sys-queue.h from consolekit.c. | |||
| 2013-05-07 | releasing version 1:6.2p1-1 | Colin Watson | |
| 2013-05-07 | Move platform_sys_dir_uid to misc.c to fix linking following ↵ | Colin Watson | |
| user-group-modes.patch. | |||
| 2013-05-07 | * New upstream release (http://www.openssh.com/txt/release-6.2). | Colin Watson | |
| - Add support for multiple required authentication in SSH protocol 2 via an AuthenticationMethods option (closes: #195716). - Fix Sophie Germain formula in moduli(5) (closes: #698612). - Update ssh-copy-id to Phil Hands' greatly revised version (closes: #99785, #322228, #620428; LP: #518883, #835901, #1074798). | |||
| 2013-05-07 | merge 6.2p1; reorder additions to monitor.h for easier merging in future | Colin Watson | |
| 2013-05-07 | Import 6.2p1 tarball | Colin Watson | |
| 2013-05-06 | Use dh-autoreconf. | Colin Watson | |
| 2013-04-05 | - djm@cvs.openbsd.org 2013/02/22 22:09:01 | Darren Tucker | |
| [ssh.c] Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlier version) | |||
| 2013-04-05 | - markus@cvs.openbsd.org 2013/02/22 19:13:56 | Darren Tucker | |
| [sshconnect.c] support ProxyCommand=- (stdin/out already point to the proxy); ok djm@ | |||
| 2013-04-05 | - dtucker@cvs.openbsd.org 2013/02/22 04:45:09 | Darren Tucker | |
| [ssh.c readconf.c readconf.h] Don't complain if IdentityFiles specified in system-wide configs are missing. ok djm, deraadt | |||
| 2013-04-05 | - dtucker@cvs.openbsd.org 2013/02/19 02:12:47 | Darren Tucker | |
| [krl.c] Remove bogus include. ok djm (id sync only) | |||
| 2013-04-05 | - dtucker@cvs.openbsd.org 2013/02/17 23:16:57 | Darren Tucker | |
| [readconf.c ssh.c readconf.h sshconnect2.c] Keep track of which IndentityFile options were manually supplied and which were default options, and don't warn if the latter are missing. ok markus@ | |||
| 2013-04-05 | - (dtucker) [openbsd-compat/bsd-cygwin_util.{c,h}] Don't include windows.h | Darren Tucker | |
| to avoid conflicting definitions of __int64, adding the required bits. Patch from Corinna Vinschen. (pulled from HEAD but kept the ChangeLog date as it was) | |||
 |
index : openssh.git | |
| summaryrefslogtreecommitdiff |