Age | Commit message (Collapse) | Author |
|
[uidswap.c]
set non-privileged gid before uid; tholo@ and deraadt@
|
|
|
|
|
|
of the hard-coded value "sshd"; from Mark D. Roth <roth@feep.net>
|
|
|
|
[clientloop.c ssh.1]
Split out and improve escape character documentation, mention ~R in
~? help text; ok markus@
|
|
tree) pointed out by Tom Holroyd <tomh@po.crl.go.jp>
|
|
[auth2.c]
use local variable, no function call needed.
(btw, hostbased works now with ssh.com >= 2.0.13)
|
|
[authfile.c]
error->debug; noted by fries@
|
|
[auth2.c compat.c sshconnect2.c]
more ssh v2 hostbased-auth interop: ssh.com >= 2.1.0 works now
(however the 2.1.0 server seems to work only if debug is enabled...)
|
|
[auth2.c]
no longer const
|
|
[auth2.c sshconnect2.c]
use FDQN with trailing dot in the hostbased auth packets, ok deraadt@
|
|
[readpass.c ssh-add.c]
call askpass from ssh, too, based on work by roth@feep.net, ok deraadt
|
|
[ssh-keyscan.1]
Fix typo reported in PR/1779
|
|
Mark D. Roth <roth+openssh@feep.net>), and fixed PIDDIR support.
|
|
be working again.
|
|
[canohost.c]
debug->debug3
|
|
[session.c]
move auth_approval to do_authenticated().
do_child(): nuke hostkeys from memory
don't source .ssh/rc for subsystems.
|
|
[channels.c ssh.c]
undo socks5 and https support since they are not really used and
only bloat ssh. remove -D from usage(), since '-D' is experimental.
|
|
[key.c key.h readconf.c readconf.h ssh.1 sshconnect2.c]
add HostKeyAlgorithms; based on patch from res@shore.net; ok provos@
|
|
[clientloop.c]
handle EINTR/EAGAIN on read; ok deraadt@
|
|
[sshconnect1.c]
check for key!=NULL, thanks to costa
|
|
[key.c]
better safe than sorry in later mods; yongari@kt-is.co.kr
|
|
|
|
and temporary commneted out catman-do: since it's broken. Patches
for the first two by Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
|
|
logins and logins where access was denied by SIA. Patch from Chris Adams
<cmadams@hiwaay.net>
|
|
|
|
[session.c]
Split motd and hushlogin checks into seperate functions, helps for
portable. From Chris Adams <cmadams@hiwaay.net>; ok markus@
|
|
[xmalloc.c]
xrealloc dealing with ptr == nULL; mouring
|
|
- mouring@cvs.openbsd.org 2001/04/16 02:31:44
[scp.c sftp.c]
IPv6 support for sftp (which I bungled in my last patch) which is
borrowed from scp.c. Thanks to Markus@ for pointing it out.
|
|
[readconf.c servconf.c]
use fatal() or error() vs. fprintf(); ok markus@
|
|
|
|
[sshd.8]
some ClientAlive cleanup; ok markus@
|
|
[clientloop.c]
set stdin/out/err to nonblocking in SSH proto 1, too. suggested by ho@
should fix some of the blocking problems for rsync over SSH-1
|
|
[authfile.c ssh-keygen.c sshd.c]
don't use errno for key_{load,save}_private; discussion w/ solar@openwall
|
|
Roth <roth+openssh@feep.net>
|
|
[dh.c sftp-glob.c sftp-glob.h sftp-int.c sshconnect2.c sshd.c]
some unused variable and typos; from tomh@po.crl.go.jp
|
|
- stevesk@cvs.openbsd.org 2001/04/15 01:35:22
[ttymodes.c]
fix comments
|
|
|
|
[scp.c]
'T' handling rcp/scp sync; ok markus@
|
|
[clientloop.c packet.h session.c ssh.c ttymodes.c ttymodes.h]
protocol 2 tty modes support; ok markus@
|
|
[ssh-add.c]
use clear_pass instead of xfree()
|
|
[channels.c]
remove some channels that are not appropriate for keepalive.
|
|
[ssh-add.c]
do not double free
|
|
[channels.c channels.h servconf.c servconf.h serverloop.c sshd.8]
Add options ClientAliveInterval and ClientAliveCountMax to sshd.
This gives the ability to do a "keepalive" via the encrypted channel
which can't be spoofed (unlike TCP keepalives). Useful for when you want
to use ssh connections to authenticate people for something, and know
relatively quickly when they are no longer authenticated. Disabled
by default (of course). ok markus@
|
|
<vinschen@redhat.com>
|
|
|
|
[ssh.c]
missing \n in error message
|
|
[sftp-int.c sftp-int.h sftp.1 sftp.c]
Add support for:
sftp [user@]host[:file [file]] - Fetch remote file(s)
sftp [user@]host[:dir[/]] - Start in remote dir/
OK deraadt@
|
|
[misc.c misc.h readconf.c servconf.c ssh.c sshd.c]
robust port validation; ok markus@ jakob@
|