summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2001-04-11 - markus@cvs.openbsd.org 2001/04/10 12:15:23Ben Lindstrom
[channels.c] debug cleanup
2001-04-11 - itojun@cvs.openbsd.org 2001/04/10 09:13:22Ben Lindstrom
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8] document id_rsa{.pub,}. markus ok
2001-04-11 - markus@cvs.openbsd.org 2001/04/10 07:46:58Ben Lindstrom
[channels.c] cleanup socks4 handling
2001-04-10 - stevesk@cvs.openbsd.org 2001/04/09 18:00:15Ben Lindstrom
[sshd.8] ListenAddress mandoc from aaron@
2001-04-10 - markus@cvs.openbsd.org 2001/04/09 15:19:49Ben Lindstrom
[ssh-add.1] ssh-add retries the last passphrase...
2001-04-10 - markus@cvs.openbsd.org 2001/04/09 15:12:23Ben Lindstrom
[ssh-add.c] passphrase caching: ssh-add tries last passphrase, clears passphrase if not successful and after last try. based on discussions with espie@, jakob@, ... and code from jakob@ and wolfgang@wsrcc.com
2001-04-10 - stevesk@cvs.openbsd.org 2001/04/09 00:42:05Ben Lindstrom
[sftp.1] spelling
2001-04-10 - stevesk@cvs.openbsd.org 2001/04/08 23:28:27Ben Lindstrom
[sshd.8] spelling
2001-04-10 - deraadt@cvs.openbsd.org 2001/04/08 20:52:55Ben Lindstrom
[sftp.c] do not modify an actual argv[] entry
2001-04-09 - (stevesk) use setresgid() for setegid() if neededKevin Steves
2001-04-08 - (stevesk) configure.in: typoKevin Steves
2001-04-08 - markus@cvs.openbsd.org 2001/04/08 11:24:33Ben Lindstrom
[uidswap.c] KNF
2001-04-08 - markus@cvs.openbsd.org 2001/04/07 08:55:18Ben Lindstrom
[buffer.c channels.c channels.h readconf.c ssh.c] allow the ssh client act as a SOCKS4 proxy (dynamic local portforwarding). work by Dan Kaminsky <dankamin@cisco.com> and me. thanks to Dan for this great patch: use 'ssh -D 1080 host' and make netscape use localhost:1080 as a socks proxy.
2001-04-08 - markus@cvs.openbsd.org 2001/04/06 21:00:17Ben Lindstrom
[auth-rh-rsa.c auth-rhosts.c auth-rsa.c auth2.c channels.c session.c ssh.c sshconnect.c sshconnect.h uidswap.c uidswap.h] do gid/groups-swap in addition to uid-swap, should help if /home/group is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks to olar@openwall.com is comments. we had many requests for this.
2001-04-08 - markus@cvs.openbsd.org 2001/04/08 11:27:33Ben Lindstrom
[clientloop.c] leave_raw_mode if ssh2 "session" is closed
2001-04-08 - markus@cvs.openbsd.org 2001/04/08 13:03:00Ben Lindstrom
[ssh-add.c] init pointers with NULL, thanks to danimal@danimal.org
2001-04-08 - stevesk@cvs.openbsd.org 2001/04/08 16:01:36Ben Lindstrom
[sshd.8] document ListenAddress addr:port
2001-04-07 - stevesk@cvs.openbsd.org 2001/04/06 22:25:25Ben Lindstrom
[servconf.c] in addition to: ListenAddress host|ipv4_addr|ipv6_addr permit: ListenAddress [host|ipv4_addr|ipv6_addr]:port ListenAddress host|ipv4_addr:port sshd.8 updates coming. ok markus@
2001-04-07 - stevesk@cvs.openbsd.org 2001/04/06 22:12:47Ben Lindstrom
[hostfile.c] unused; typo in comment
2001-04-07 - deraadt@cvs.openbsd.org 2001/04/06 16:46:59Ben Lindstrom
[scp.c] remove trailing / from source paths; fixes pr#1756
2001-04-07 - markus@cvs.openbsd.org 2001/04/05 23:39:20Ben Lindstrom
[serverloop.c] keep the ssh session even if there is no active channel. this is more in line with the protocol spec and makes ssh -N -L 1234:server:110 host more useful. based on discussion with <mats@mindbright.se> long time ago and recent mail from <res@shore.net>
2001-04-07 - (bal) CVS ID Resync of version.hBen Lindstrom
2001-04-06 - (stevesk) Makefile.in: log.o is in libssh.aKevin Steves
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 21:05:24Ben Lindstrom
[clientloop.c ssh.c] don't request a session for 'ssh -N', pointed out slade@shore.net
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 21:02:46Ben Lindstrom
[buffer.c] better error message
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 20:01:10Ben Lindstrom
[clientloop.c] for ~R print message if server does not support rekeying. (and fix ~R).
2001-04-05 - stevesk@cvs.openbsd.org 2001/04/05 15:48:18Ben Lindstrom
[canohost.c canohost.h session.c] move get_remote_name_or_ip() to canohost.[ch]; for portable. ok markus@
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 15:45:43Ben Lindstrom
[ssh.1] ssh defaults to protocol v2; from quisar@quisar.ambre.net
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 11:09:17Ben Lindstrom
[clientloop.c compat.c compat.h] add SSH_BUG_NOREKEY and detect broken (=all old) openssh versions.
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 10:42:57Ben Lindstrom
[auth-chall.c authfd.c channels.c clientloop.c kex.c kexgex.c key.c mac.c packet.c serverloop.c sftp-client.c sftp-client.h sftp-glob.c sftp-glob.h sftp-int.c sftp-server.c sftp.c ssh-keygen.c sshconnect.c sshconnect2.c sshd.c] fix whitespace: unexpand + trailing spaces.
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 10:39:48Ben Lindstrom
[version.h] temporary version 2.5.4 (supports rekeying). this is not an official release.
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 10:39:03Ben Lindstrom
[compress.c compress.h packet.c] reset compress state per direction when rekeying.
2001-04-05 - markus@cvs.openbsd.org 2001/04/05 10:00:06Ben Lindstrom
[compat.c] 2.3.x does old GEX, too; report jakob@
2001-04-05 - (stevesk) logintest.c: fix for systems without __prognameKevin Steves
2001-04-05 - (stevesk) don't use vhangup() if defined(HAVE_DEV_PTMX); also removesKevin Steves
BROKEN_VHANGUP
2001-04-05 - markus@cvs.openbsd.org 2001/04/04 23:09:18Ben Lindstrom
[dh.c kex.c packet.c] clear+free keys,iv for rekeying. + fix DH mem leaks. ok niels@
2001-04-04 - markus@cvs.openbsd.org 2001/04/04 22:04:35Ben Lindstrom
[kex.c kexgex.c serverloop.c] parse full kexinit packet. make server-side more robust, too.
2001-04-04 - markus@cvs.openbsd.org 2001/04/04 20:32:56Ben Lindstrom
[auth2.c] we don't care about missing bannerfiles; from tsoome@ut.ee, ok deraadt@
2001-04-04 - markus@cvs.openbsd.org 2001/04/04 20:25:38Ben Lindstrom
[channels.c channels.h clientloop.c kex.c kex.h serverloop.c sshconnect2.c sshd.c] more robust rekeying don't send channel data after rekeying is started.
2001-04-04 - markus@cvs.openbsd.org 2001/04/04 15:50:55Ben Lindstrom
[compat.c] f-secure 1.3.2 does not handle IGNORE; from milliondl@ornl.gov
2001-04-04 - markus@cvs.openbsd.org 2001/04/04 14:34:58Ben Lindstrom
[clientloop.c kex.c kex.h serverloop.c sshconnect2.c sshd.c] enable server side rekeying + some rekey related clientup. todo: we should not send any non-KEX messages after we send KEXINIT
2001-04-04 - markus@cvs.openbsd.org 2001/04/04 09:48:35Ben Lindstrom
[kex.c kex.h kexdh.c kexgex.c packet.c sshconnect2.c sshd.c] don't sent multiple kexinit-requests. send newkeys, block while waiting for newkeys. fix comments.
2001-04-04 - (bal) Oops.. Missed including kexdh.c and kexgex.c in OpenBSD sync.Ben Lindstrom
2001-04-04 - markus@cvs.openbsd.org 2001/04/04 00:06:54Ben Lindstrom
[clientloop.c sshconnect2.c] enable client rekeying (1) force rekeying with ~R, or (2) if the server requests rekeying. works against ssh-2.0.12/2.0.13/2.1.0/2.2.0/2.3.0/2.3.1/2.4.0
2001-04-04 - markus@cvs.openbsd.org 2001/04/03 23:32:12Ben Lindstrom
[kex.c kex.h packet.c sshconnect2.c sshd.c] undo parts of recent my changes: main part of keyexchange does not need dispatch-callbacks, since application data is delayed until the keyexchange completes (if i understand the drafts correctly). add some infrastructure for re-keying.
2001-04-04 - todd@cvs.openbsd.org 2001/04/03 21:19:38Ben Lindstrom
[ssh_config] id_rsa1/2 -> id_rsa; ok markus@
2001-04-04 - markus@cvs.openbsd.org 2001/04/03 19:53:29Ben Lindstrom
[dh.c dh.h kex.c kex.h sshconnect2.c sshd.c] move kex to kex*.c, used dispatch_set() callbacks for kex. should make rekeying easier.
2001-04-04 - stevesk@cvs.openbsd.org 2001/04/03 13:56:11Ben Lindstrom
[sftp-glob.c ssh-agent.c ssh-keygen.c] free() -> xfree()
2001-04-04 - deraadt@cvs.openbsd.org 2001/04/02 17:32:23Ben Lindstrom
[ssh-agent.1] grammar; slade@shore.net
2001-04-03 - (stevesk) nchan.c: remove ostate checks and add EINVAL toKevin Steves
shutdown(SHUT_RD) error() bypass for HP-UX.