summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2008-11-03 - stevesk@cvs.openbsd.org 2008/10/10 05:00:12Damien Miller
[key.c] typo in error message; ok djm@
2008-11-03 - stevesk@cvs.openbsd.org 2008/10/10 04:55:16Damien Miller
[scp.c] spelling in comment; ok djm@
2008-11-03 - jmc@cvs.openbsd.org 2008/10/09 06:54:22Damien Miller
[ssh.c] add -y to usage();
2008-11-03 - djm@cvs.openbsd.org 2008/10/09 03:50:54Damien Miller
[servconf.c sshd_config.5] support setting PermitEmptyPasswords in a Match block requested in PR3891; ok dtucker@
2008-11-03 - djm@cvs.openbsd.org 2008/10/08 23:34:03Damien Miller
[ssh.1 ssh.c] Add -y option to force logging via syslog rather than stderr. Useful for daemonised ssh connection (ssh -f). Patch originally from and ok'd by markus@
2008-11-03aadt@cvs.openbsd.org 2008/10/03 23:56:28Damien Miller
[sshconnect2.c] Repair strnvis() buffersize of 4*n+1, with termination gauranteed by the function. spotted by des@freebsd, who commited an incorrect fix to the freebsd tree and (as is fairly typical) did not report the problem to us. But this fix is correct. ok djm
2008-11-03 - jmc@cvs.openbsd.org 2008/10/03 13:08:12Damien Miller
[sshd.8] do not give an example of how to chmod files: we can presume the user knows that. removes an ambiguity in the permission of authorized_keys; ok deraadt
2008-11-03 - millert@cvs.openbsd.org 2008/10/02 14:39:35Damien Miller
[session.c] Convert an unchecked strdup to xstrdup. OK deraadt@
2008-11-03 - markus@cvs.openbsd.org 2008/09/11 14:22:37Damien Miller
[compat.c compat.h nchan.c ssh.c] only send eow and no-more-sessions requests to openssh 5 and newer; fixes interop problems with broken ssh v2 implementations; ok djm@
2008-11-03 - djm@cvs.openbsd.org 2008/09/06 12:24:13Damien Miller
[kex.c] OpenSSL 0.9.8h supplies a real EVP_sha256 so we do not need our replacement anymore (ID sync only for portable - we still need this)
2008-11-03 - djm@cvs.openbsd.org 2008/08/21 04:09:57Damien Miller
[session.c] allow ForceCommand internal-sftp with arguments. based on patch from michael.barabanov AT gmail.com; ok markus@
2008-11-03 - krw@cvs.openbsd.org 2008/08/02 04:29:51Damien Miller
[ssh_config.5] whitepsace -> whitespace. From Matthew Clarke via bugs@.
2008-11-03 - markus@cvs.openbsd.org 2008/07/31 14:48:28Damien Miller
[sshconnect2.c] don't allocate space for empty banners; report t8m at centrum.cz; ok deraadt
2008-11-03 - grunk@cvs.openbsd.org 2008/07/25 07:05:16Damien Miller
[key.c] In random art visualization, make sure to use the end marker only at the end. Initial diff by Dirk Loss, tweaks and ok djm@
2008-11-03 - grunk@cvs.openbsd.org 2008/07/25 06:56:35Damien Miller
[ssh_config] Add VisualHostKey to example file, ok djm@
2008-11-03 - sthen@cvs.openbsd.org 2008/07/24 23:55:30Damien Miller
[ssh-keygen.1] Add "ssh-keygen -F -l" to synopsis (displays fingerprint from known_hosts). ok djm@
2008-09-06 - (dtucker) [config.guess config.sub] Update to latest versions fromDarren Tucker
http://git.savannah.gnu.org/gitweb/ (2008-04-14 and 2008-06-16 respectively).
2008-08-30 - (dtucker) [openbsd-compat/bsd-poll.c] correctly check for number of FDsDarren Tucker
larger than FD_SETSIZE (OpenSSH only ever uses poll with one fd). Patch from Nicholas Marriott.
2008-07-23 - (djm) [servconf.c] Print UsePAM option in config test mode (when itDamien Miller
has been compiled in); report from nix-corp AT esperi.org.uk ok dtucker@
2008-07-23 - djm@cvs.openbsd.org 2008/07/23 07:36:55Damien Miller
[servconf.c] do not try to print options that have been compile-time disabled in config test mode (sshd -T); report from nix-corp AT esperi.org.uk ok dtucker@
2008-07-21 - (djm) Release OpenSSH-5.1Damien Miller
2008-07-21 - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec]Damien Miller
[contrib/suse/openssh.spec] Update version number in README and RPM specs
2008-07-21 - djm@cvs.openbsd.org 2008/07/21 08:19:07Damien Miller
[version.h] openssh-5.1
2008-07-21 - jmc@cvs.openbsd.org 2008/07/18 22:51:01Damien Miller
[sftp-server.8] no need for .Pp before or after .Sh;
2008-07-17 - (djm) [sshconnect2.c] vis.h isn't available everywhereDamien Miller
2008-07-17 - (dtucker) [openbsd-compat/bsd-cygwin_util.c] Remove long-unneeded compatDarren Tucker
code, replace with equivalent cygwin library call. Patch from vinschen at redhat.comi, ok djm@.
2008-07-17 - djm@cvs.openbsd.org 2008/07/17 08:51:07Damien Miller
[auth2-hostbased.c] strip trailing '.' from hostname when HostbasedUsesNameFromPacketOnly=yes report and patch from res AT qoxp.net (bz#1200); ok markus@
2008-07-17 - djm@cvs.openbsd.org 2008/07/17 08:48:00Damien Miller
[sshconnect2.c] strnvis preauth banner; pointed out by mpf@ ok markus@
2008-07-16 - djm@cvs.openbsd.org 2008/07/16 11:52:19Damien Miller
[channels.c] this loop index should be automatic, not static
2008-07-16 - djm@cvs.openbsd.org 2008/07/16 11:51:14Damien Miller
[clientloop.c] rename variable first_gc -> last_gc (since it is actually the last in the list).
2008-07-16 - djm@cvs.openbsd.org 2008/07/15 02:23:14Damien Miller
[sftp.1] number of pipelined requests is now 64; prodded by Iain.Morgan AT nasa.gov
2008-07-14 - (djm) [openbsd-compat/fake-rfc2553.c openbsd-compat/fake-rfc2553.h]Damien Miller
return EAI_FAMILY when trying to lookup unsupported address family; from vinschen AT redhat.com
2008-07-14 - (djm) [contrib/cygwin/Makefile contrib/cygwin/ssh-host-config]Damien Miller
[contrib/cygwin/ssh-user-config contrib/cygwin/sshd-inetd] Revamped and simplified Cygwin ssh-host-config script that uses unified csih configuration tool. Requires recent Cygwin. Patch from vinschen AT redhat.com
2008-07-14 - djm@cvs.openbsd.org 2008/07/14 01:55:56Damien Miller
[sftp-server.8] mention requirement for /dev/log inside chroot when using sftp-server with ChrootDirectory
2008-07-14 - (djm) [umac.c] Rename variable s/buffer_ptr/bufp/ to avoid clash;Damien Miller
reported by cristian.ionescu-idbohrn AT axis.com
2008-07-14 - (djm) [openbsd-compat/rresvport.c] Add unistd.h for missing close()Damien Miller
prototype; reported by cristian.ionescu-idbohrn AT axis.com
2008-07-14 - (djm) [openbsd-compat/bindresvport.c] Rename variables s/sin/in/ toDamien Miller
avoid clash with sin(3) function; reported by cristian.ionescu-idbohrn AT axis.com
2008-07-14 - djm@cvs.openbsd.org 2008/07/13 22:16:03Damien Miller
[sftp.c] increase number of piplelined requests so they properly fill the (recently increased) channel window. prompted by rapier AT psc.edu; ok markus@
2008-07-14 - djm@cvs.openbsd.org 2008/07/13 22:13:07Damien Miller
[channels.c] use struct sockaddr_storage instead of struct sockaddr for accept(2) address argument. from visibilis AT yahoo.com in bz#1485; ok markus@
2008-07-14 - sthen@cvs.openbsd.org 2008/07/13 21:22:52Damien Miller
[ssh-keygen.c] Change "ssh-keygen -F [host] -l" to not display random art unless -v is also specified, making it consistent with the manual and other uses of -l. ok grunk@
2008-07-12 - djm@cvs.openbsd.org 2008/07/12 05:33:41Damien Miller
[scp.1] better description for -i flag: s/RSA authentication/public key authentication/
2008-07-12 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2008/07/12 04:52:50 [channels.c] unbreak; move clearing of cctx struct to before first use reported by dkrause@
2008-07-11 - markus@cvs.openbsd.org 2008/07/10 18:08:11Damien Miller
[clientloop.c monitor.c monitor_wrap.c packet.c packet.h sshd.c] sync v1 and v2 traffic accounting; add it to sshd, too; ok djm@, dtucker@
2008-07-11 - markus@cvs.openbsd.org 2008/07/10 18:05:58Damien Miller
[channels.c] missing bzero; from mickey; ok djm@
2008-07-11 - stevesk@cvs.openbsd.org 2008/07/07 23:32:51Damien Miller
[key.c] /*NOTREACHED*/ for lint warning: warning: function key_equal falls off bottom without returning value ok djm@
2008-07-11 - stevesk@cvs.openbsd.org 2008/07/07 00:31:41Damien Miller
[ttymodes.c] we don't need arg after the debug3() was removed. from lint. ok djm@
2008-07-09 - (djm) [configure.ac] Add -Wformat-security to CFLAGS for gcc 3.x and 4.xDamien Miller
2008-07-09 - (djm) [auth.c] Missing unistd.h for close()Damien Miller
2008-07-09 - (djm) [auth1.c] Fix format string vulnerability in protocol 1 PAMDamien Miller
account check failure path. The vulnerable format buffer is supplied from PAM and should not contain attacker-supplied data.
2008-07-09 - (djm) [Makefile.in] Print "all tests passed" when all regress tests passDamien Miller