summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2005-11-05 - djm@cvs.openbsd.org 2005/10/30 04:03:24Damien Miller
[ssh.c] fix misleading debug message; ok dtucker@
2005-11-05 - djm@cvs.openbsd.org 2005/10/30 04:01:03Damien Miller
[ssh-keyscan.c] make ssh-keygen discard junk from server before SSH- ident, spotted by dave AT cirt.net; ok dtucker@
2005-11-05 - djm@cvs.openbsd.org 2005/10/30 01:23:19Damien Miller
[ssh_config.5] mention control socket fallback behaviour, reported by tryponraj AT gmail.com
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/17 14:13:35Damien Miller
[dns.c dns.h] more cleanups; ok jakob@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/17 14:01:28Damien Miller
[dns.c] remove #ifdef LWRES; ok jakob@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/17 13:45:05Damien Miller
[dns.c] fix memory leaks from 2 sources: 1) key_fingerprint_raw() 2) malloc in dns_read_rdata() ok jakob@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/15 15:28:12Damien Miller
[sshconnect.c] make external definition static; ok deraadt@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/14 02:29:37Damien Miller
[channels.c clientloop.c] free()->xfree(); ok djm@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/14 02:17:59Damien Miller
[ssh-keygen.c ssh.c sshconnect2.c] no trailing "\n" for log functions; ok djm@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/13 22:24:31Damien Miller
[auth2-gss.c gss-genr.c gss-serv.c monitor.c] KNF; ok djm@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/13 19:13:41Damien Miller
[dns.c] unneeded #include, unused declaration, little knf; ok deraadt@
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/13 19:08:08Damien Miller
[gss-serv-krb5.c gss-serv.c] unused declarations; ok deraadt@ (id sync only for gss-serv-krb5.c)
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/13 14:20:37Damien Miller
[gss-serv.c] spelling in comments
2005-11-05 - stevesk@cvs.openbsd.org 2005/10/13 14:03:01Damien Miller
[auth2-gss.c gss-genr.c gss-serv.c] remove unneeded #includes; ok markus@
2005-11-05 - djm@cvs.openbsd.org 2005/10/11 23:37:37Damien Miller
[channels.c] bz #1076 set SO_REUSEADDR on X11 forwarding listner sockets, preventing bind() failure when a previous connection's listeners are in TIME_WAIT, reported by plattner AT inf.ethz.ch; ok dtucker@
2005-11-05 - djm@cvs.openbsd.org 2005/10/10 10:23:08Damien Miller
[channels.c channels.h clientloop.c serverloop.c session.c] fix regression I introduced in 4.2: X11 forwardings initiated after a session has exited (e.g. "(sleep 5; xterm) &") would not start. bz #1086 reported by t8m AT centrum.cz; ok markus@ dtucker@
2005-11-05 - (djm) OpenBSD CVS SyncDamien Miller
- markus@cvs.openbsd.org 2005/10/07 11:13:57 [ssh-keygen.c] change DSA default back to 1024, as it's defined for 1024 bits only and this causes interop problems with other clients. moreover, in order to improve the security of DSA you need to change more components of DSA key generation (e.g. the internal SHA1 hash); ok deraadt
2005-11-02 - (dtucker) [openbsd-compat/bsd-misc.c] Bug #1108: fix broken strdup().Darren Tucker
Reported by olavi at ipunplugged.com and antoine.brodin at laposte.net via FreeBSD.
2005-10-30 - (dtucker) [session.c] Bug #1045do not check /etc/nologin when PAM isDarren Tucker
enabled, instead allow PAM to handle it. Note that on platforms using PAM, the pam_nologin module should be added to sshd's session stack in order to maintain exising behaviour. Based on patch and discussion from t8m at centrum.cz, ok djm@
2005-10-30 - (djm) [contrib/suse/openssh.spec contrib/suse/rc.Damien Miller
sshd contrib/suse/sysconfig.ssh] Bug #1106: Updated SuSE spec and init files from imorgan AT nas.nasa.gov
2005-10-25 - (dtucker) [contrib/cygwin/ssh-user-config] Remove duplicate yes/noDarren Tucker
prompt. Patch from vinschen at redhat.com.
2005-10-25 - (dtucker) [configure.ac] Bug #1104: Tru64's printf family doesn'tDarren Tucker
understand "%lld", even though the compiler has "long long", so handle it as a special case. Patch tested by mcaskill.scott at epa.gov. (actually was included in previous commit)
2005-10-25 - (dtucker) [configure.ac] Relocate LLONG_MAX calculation to after theDarren Tucker
sizeof(long long) checks, to make fixing bug #1104 easier (no changes yet).
2005-10-17 - (dtucker) [configure.ac] Bug #1097: Fix configure for cross-compiling.Darren Tucker
/etc/default/login report and testing from aabaker at iee.org, corrections from tim@.
2005-10-09 - (dtucker) [configure.ac defines.h openbsd-compat/vis.{c,h}] Sync currentDarren Tucker
versions from OpenBSD. ok djm@
2005-10-08 - (djm) [configure.ac] missing 'test' call for -with-Werror testDamien Miller
2005-10-08 - (dtucker) [configure.ac] Bug #1098: define $MAIL for HP-UX; report fromDarren Tucker
brian.smith at agilent com.
2005-10-06typoDarren Tucker
2005-10-05 - (dtucker) [configure.ac sshd.8] Enable locked account check (a prependedDarren Tucker
"*LOCKED*" string) for FreeBSD. Patch jeremie at le-hen.org and senthilkumar_sen at hotpop.com.
2005-10-03 - (dtucker) [regress/README.regress] Bug #989: Document limitation that scpDarren Tucker
is required in the system path for the multiplex test to work.
2005-10-03 - dtucker@cvs.openbsd.org 2005/10/03 07:44:42Darren Tucker
[canohost.c] Relocate check_ip_options call to prevent logging of garbage for connections with IP options set. bz#1092 from David Leonard, "looks good" deraadt@
2005-10-03 - jaredy@cvs.openbsd.org 2005/09/30 20:34:26Darren Tucker
[ssh-keyscan.1] deploy .An -nosplit; ok jmc
2005-10-03 - djm@cvs.openbsd.org 2005/09/21 23:37:11Darren Tucker
[sshd.c] change label at markus@'s request
2005-10-03 - djm@cvs.openbsd.org 2005/09/21 23:36:54Darren Tucker
[sshd_config.5] aquire -> acquire, from stevesk@
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 23:31:31Darren Tucker
[ssh.1] spelling nit from stevesk@
2005-10-03 - jmc@cvs.openbsd.org 2005/09/19 15:42:44Darren Tucker
[ssh.c] update -D usage here too;
2005-10-03 - jmc@cvs.openbsd.org 2005/09/19 15:38:27Darren Tucker
[ssh.1] some more .Bk/.Ek to avoid ugly line split;
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 11:48:10Darren Tucker
[gss-serv.c] typo
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 11:47:09Darren Tucker
[sshd.c] stop connection abort on rekey with delayed compression enabled when post-auth privsep is disabled (e.g. when root is logged in); ok dtucker@
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 11:37:34Darren Tucker
[ssh_config.5 ssh.1] mention ability to specify bind_address for DynamicForward and -D options; bz#1077 spotted by Haruyama Seigo
2005-10-03 - djm@cvs.openbsd.org 2005/09/13 23:40:07Darren Tucker
[sshd.c ssh.c misc.h sftp.c ssh-keygen.c ssh-keysign.c sftp-server.c scp.c misc.c ssh-keyscan.c ssh-add.c ssh-agent.c] ensure that stdio fds are attached; ok deraadt@
2005-10-03 - markus@cvs.openbsd.org 2005/09/09 19:18:05Darren Tucker
[clientloop.c] typo; from mark at mcs.vuw.ac.nz, bug #1082
2005-10-03 - markus@cvs.openbsd.org 2005/09/07 08:53:53Darren Tucker
[channels.c] enforce chanid != NULL; ok djm
2005-09-30 - (dtucker) [monitor.c] Bug #1087: Send loginmsg to preauth privsepDarren Tucker
child during PAM account check without clearing it. This restores the post-login warnings such as LDAP password expiry. Patch from Tomas Mraz with help from several others.
2005-09-30 - (dtucker) [openbsd-compat/openbsd-compat.h] Bug #1096: Add prototypeDarren Tucker
for strtoll. Patch from o.flebbe at science-computing.de.
2005-09-29 - (dtucker) [monitor_wrap.c] Remove duplicate definition of loginmsgDarren Tucker
introduced during sync.
2005-09-28 - (dtucker) [auth-pam.c] Bug #1028: send final non-query messages fromDarren Tucker
PAM via keyboard-interactive. Patch tested by the folks at Vintela.
2005-09-28 - (dtucker) [entropy.c] Use u_char for receiving RNG seed for consistencyDarren Tucker
2005-09-27 - (dtucker) [entropy.c entropy.h sshd.c] Pass RNG seed to the reexec'edDarren Tucker
process when sshd relies on ssh-random-helper. Should result in faster logins on systems without a real random device or prngd. ok djm@
2005-09-27 - (dtucker) [entropy.c] Remove unnecessary tests for getuid and geteuidDarren Tucker
calls, since they can't possibly fail. ok djm@