Age | Commit message (Collapse) | Author |
|
[ssh.c sshconnect.c]
bugzilla.mindrot.org #223 - ProxyCommands don't exit.
Patch from dtucker@zip.com.au; ok markus@
|
|
[channels.c]
don't quit while creating X11 listening socket.
http://mail-index.netbsd.org/current-users/2002/09/16/0005.html
got from portable. markus ok
|
|
[sshd.8]
reference moduli(5) in FILES /etc/moduli.
|
|
[sshd_config.5]
more details on X11Forwarding security issues and threats; ok markus@
|
|
[session.c]
log when _PATH_NOLOGIN exists; ok markus@
|
|
[channels.c sshconnect.c sshd.c]
remove use of SO_LINGER, it should not be needed. error check
SO_REUSEADDR. fixup comments. ok markus@
|
|
[session.c ssh.1]
add SSH_CONNECTION and deprecate SSH_CLIENT; bug #384. ok markus@
|
|
- stevesk@cvs.openbsd.org 2002/09/12 19:11:52
[ssh-agent.c]
%u for uid print; ok markus@
|
|
pressed.
|
|
|
|
fake-queue.h to sys-tree.h and sys-queue.h
|
|
[sftp-int.c]
zap unused var introduced in last commit
|
|
with SO_PEERCRED support. Faked for systems which lack it.
|
|
[sftp.1 sftp-client.c sftp-client.h sftp-common.c sftp-common.h]
[sftp-glob.c sftp-glob.h sftp-int.c sftp-server.c]
support for short/long listings and globbing in "ls"; ok markus@
|
|
[authfd.c authfd.h ssh.c]
don't connect to agent to test for presence if we've previously
connected; ok markus@
|
|
[ssh.1]
add agent and X11 forwarding warning text from ssh_config.5; ok markus@
|
|
[ssh-agent.c]
check the euid of the connecting process with getpeereid(2);
ok provos deraadt stevesk
|
|
[channels.c kex.h key.c monitor.c monitor_wrap.c radix.c uuencode.c]
signed vs unsigned from -pedantic; ok henning@
|
|
[auth1.c auth.h auth-krb5.c monitor.c monitor.h]
[monitor_wrap.c monitor_wrap.h]
kerberos support for privsep. confirmed to work by lha@stacken.kth.se
patch from markus
|
|
- markus@cvs.openbsd.org 2002/09/08 20:24:08
[hostfile.h]
no comma at end of enumerator list
|
|
|
|
Patch from Robert Halubek <rob@adso.com.pl>
|
|
Patch from Mark Bradshaw <bradshaw@staff.crosswalk.com>
|
|
|
|
Nalin Dahyabhai <nalin@redhat.com>
|
|
|
|
- stevesk@cvs.openbsd.org 2002/09/04 18:52:42
[servconf.c sshd.8 sshd_config.5]
default LoginGraceTime to 2m; 1m may be too short for slow systems.
ok markus@
|
|
|
|
|
|
[ssh_config.5 sshd_config.5]
state XAuthLocation is a full pathname
|
|
[ssh.c]
shrink initial privilege bracket for setuid case; ok markus@
|
|
[ssh_config.5]
more on UsePrivilegedPort and setuid root; ok markus@
|
|
[ssh.1 ssh.c]
deprecate -P as UsePrivilegedPort defaults to no now; ok markus@
|
|
[monitor.c session.c sshlogin.c sshlogin.h]
pass addrlen with sockaddr *; from Hajimu UMEMOTO <ume@FreeBSD.org>
NOTE: there are also p-specific parts to this patch. ok markus@
|
|
[ssh_config.5]
some warning text for ForwardAgent and ForwardX11; ok markus@
|
|
[ssh-rsa.c]
RSA_public_decrypt() returns -1 on error so len must be signed;
ok markus@
|
|
[session.c]
send signal name (not signal number) in "exit-signal" message; noticed
by galb@vandyke.com
|
|
[auth1.c auth2.c]
auth_root_allowed() is handled by the monitor in the privsep case,
so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325
|
|
[ssh-agent.c]
shutdown(SHUT_RDWR) not needed before close here; ok markus@
|
|
[clientloop.c]
format with current EscapeChar; bugzilla #388 from wknox@mitre.org.
ok markus@
|
|
[ssh-agent.c]
use common close function; ok markus@
|
|
[ssh-agent.c]
raise listen backlog; ok markus@
|
|
[servconf.c sshd.8 sshd_config sshd_config.5]
change LoginGraceTime default to 1 minute; ok mouring@ markus@
|
|
[sshd.8]
`RSA' updated to refer to `public key', where it matters.
okay markus@
|
|
[ssh-agent.c]
make ssh-agent setgid, disallow ptrace.
(note: change not yet made in Makefile)
|
|
it to ULONG_MAX.
|
|
[ssh_config.5]
ordered list here
|
|
[ssh.1]
ForwardAgent has defaulted to no for over 2 years; be more clear here.
|
|
[ssh.1 sshd.8 sshd_config.5]
more PermitUserEnvironment; ok markus@
|
|
[sshd_config.5]
proxy vs. fake display
|