summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2007-10-26 - chl@cvs.openbsd.org 2007/10/02 17:49:58Damien Miller
[ssh-keygen.c] handles zero-sized strings that fgets can return properly removes trailing newline removes an unused variable correctly counts line number "looks ok" ray@ markus@
2007-10-26 - chl@cvs.openbsd.org 2007/10/02 17:49:58Damien Miller
[ssh-keygen.c] handles zero-sized strings that fgets can return
2007-10-26 - dtucker@cvs.openbsd.org 2007/09/29 00:25:51Damien Miller
[auth2.c] Remove unused prototype. ok djm@
2007-10-26 - ray@cvs.openbsd.org 2007/09/27 00:15:57Damien Miller
[dh.c] Don't return -1 on error in dh_pub_is_valid(), since it evaluates to true. Also fix a typo. Initial diff from Matthew Dempsky, input from djm. OK djm, markus.
2007-10-26 - canacar@cvs.openbsd.org 2007/09/25 23:48:57Damien Miller
[ssh-agent.c] When adding a key that already exists, update the properties (time, confirm, comment) instead of discarding them. ok djm@ markus@
2007-10-26 - djm@cvs.openbsd.org 2007/09/21 08:15:29Damien Miller
[auth-bsdauth.c auth-passwd.c auth.c auth.h auth1.c auth2-chall.c] [monitor.c monitor_wrap.c] unifdef -DBSD_AUTH unifdef -USKEY These options have been in use for some years; ok markus@ "no objection" millert@ (NB. RCD ID sync only for portable)
2007-10-26 - djm@cvs.openbsd.org 2007/09/21 03:05:23Damien Miller
[ssh_config.5] document KbdInteractiveAuthentication in ssh_config.5; patch from dkg AT fifthhorseman.net
2007-10-26 - stevesk@cvs.openbsd.org 2007/09/11 23:49:09Damien Miller
[sshpty.c] remove #if defined block not needed; ok markus@ dtucker@ (NB. RCD ID sync only for portable)
2007-09-27 - (dtucker) [configure.ac defines.h] Shadow expiry does not work on QNX6Darren Tucker
so disable it for that platform. From bacon at cs nyu edu.
2007-09-27 - (dtucker) [configure.ac atomicio.c] Fall back to <sys/poll.h> if we don'tDarren Tucker
have <poll.h> (eq QNX). From bacon at cs nyu edu.
2007-09-21 - (djm) [atomicio.c] Fix spin avoidance for platforms that defineDamien Miller
EWOULDBLOCK; patch from ben AT psc.edu
2007-09-17 - (tim) [defines.h] Fix regression in long password support on OpenServer 6.Tim Rice
Problem report and additional testing rac AT tenzing.org.
2007-09-17 - djm@cvs.openbsd.org 2007/09/16 00:55:52Damien Miller
[sftp-client.c] use off_t instead of u_int64_t for file offsets, matching what the progressmeter code expects; bz #842
2007-09-17 - djm@cvs.openbsd.org 2007/09/13 04:39:04Damien Miller
[sftp-server.c] fix incorrect test when setting syslog facility; from Jan Pechanec
2007-09-17 - stevesk@cvs.openbsd.org 2007/09/12 19:39:19Damien Miller
[umac.c] use xmalloc() and xfree(); ok markus@ pvalchev@
2007-09-17 - stevesk@cvs.openbsd.org 2007/09/11 23:49:09Damien Miller
[sshpty.c] remove #if defined block not needed; ok markus@ dtucker@ NB. RCS ID sync only
2007-09-17 - gilles@cvs.openbsd.org 2007/09/11 15:47:17Damien Miller
[session.c ssh-keygen.c sshlogin.c] use strcspn to properly overwrite '\n' in fgets returned buffer ok pyr@, ray@, millert@, moritz@, chl@
2007-09-17 - stevesk@cvs.openbsd.org 2007/09/11 04:36:29Damien Miller
[sshpty.c] sort #include NB. RCS ID sync only
2007-09-17 - sobrado@cvs.openbsd.org 2007/09/09 11:38:01Damien Miller
[ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.c] sort synopsis and options in ssh-agent(1); usage is lowercase ok jmc@
2007-09-17 - djm@cvs.openbsd.org 2007/09/04 11:15:56Damien Miller
[ssh.c sshconnect.c sshconnect.h] make ssh(1)'s ConnectTimeout option apply to both the TCP connection and SSH banner exchange (previously it just covered the TCP connection). This allows callers of ssh(1) to better detect and deal with stuck servers that accept a TCP connection but don't progress the protocol, and also makes ConnectTimeout useful for connections via a ProxyCommand; feedback and "looks ok" markus@
2007-09-17 - djm@cvs.openbsd.org 2007/09/04 03:21:03Damien Miller
[clientloop.c monitor.c monitor_fdpass.c monitor_fdpass.h] [monitor_wrap.c ssh.c] make file descriptor passing code return an error rather than call fatal() when it encounters problems, and use this to make session multiplexing masters survive slaves failing to pass all stdio FDs; ok markus@
2007-09-17 - djm@cvs.openbsd.org 2007/08/23 03:23:26Damien Miller
[sshconnect.c] Execute ProxyCommands with $SHELL rather than /bin/sh unconditionally
2007-09-17 - djm@cvs.openbsd.org 2007/08/23 03:22:16Damien Miller
[auth2-none.c sshd_config sshd_config.5] Support "Banner=none" to disable displaying of the pre-login banner; ok dtucker@ deraadt@
2007-09-17 - djm@cvs.openbsd.org 2007/08/23 03:06:10Damien Miller
[auth.h] login_cap.h doesn't belong here NB. RCS ID sync only for portable
2007-09-17 - djm@cvs.openbsd.org 2007/08/23 02:55:51Damien Miller
[auth-passwd.c auth.c session.c] missed include bits from last commit NB. RCS ID sync only for portable
2007-09-17 - djm@cvs.openbsd.org 2007/08/23 02:49:43Damien Miller
[auth-passwd.c auth.c session.c] unifdef HAVE_LOGIN_CAP; ok deraadt@ millert@ NB. RCS ID sync only for portable
2007-09-14 - (dtucker) [openbsd-compat/bsd-asprintf.c] Plug mem leak in error path.Darren Tucker
Patch from Jan.Pechanec at sun com.
2007-09-10 - (tim) [configure.ac] Autoconf didn't define HAVE_LIBIAF because weTim Rice
did a AC_CHECK_FUNCS within the AC_CHECK_LIB test.
2007-09-10 - (dtucker) [openbsd-compat/regress/closefromtest.c] Bug #1358: AlwaysDarren Tucker
return 0 on successful test. From David.Leonard at quest com.
2007-09-04don't say it twiceDamien Miller
2007-09-04credit Jan PechanecDamien Miller
2007-09-04Mention Jan PechanecDarren Tucker
2007-08-17 - (dtucker) [INSTALL] Link to tcpwrappers.Darren Tucker
2007-08-17 - (dtucker) [INSTALL] Give PAM its own heading.Darren Tucker
2007-08-17 - (dtucker) [INSTALL] the pid file is sshd.pid not ssh.pid.Darren Tucker
2007-08-17 - (dtucker) [INSTALL] Group the parts describing random options and PAMDarren Tucker
implementations together which is hopefully more coherent.
2007-08-17typoDarren Tucker
2007-08-17 - (dtucker) [sshd.8] Many Linux variants use a single "!" to denote lockedDarren Tucker
accounts and that's what the code looks for, so make man page and code agree. Pointed out by Roumen Petrov.
2007-08-16 - (dtucker) [session.c] Call PAM cleanup functions for unauthenticatedDarren Tucker
connections too. Based on a patch from Sandro Wefel, with & ok djm@
2007-08-15 - stevesk@cvs.openbsd.org 2007/08/15 12:13:41Darren Tucker
[ssh_config.5] tun device forwarding now honours ExitOnForwardFailure; ok markus@
2007-08-15 - (dtucker) [README contrib/caldera/openssh.spec contrib/redhat/openssh.specDarren Tucker
contrib/suse/openssh.spec] Crank version.
2007-08-15 - (dtucker) [openbsd-compat/bsd-cray.c] Remove debug from signal handler.Darren Tucker
ok djm@
2007-08-15 - markus@cvs.openbsd.org 2007/08/15 08:16:49Darren Tucker
[version.h] openssh 4.7
2007-08-15 - markus@cvs.openbsd.org 2007/08/15 08:14:46Darren Tucker
[clientloop.c] do NOT fall back to the trused x11 cookie if generation of an untrusted cookie fails; from security-alert at sun.com; ok dtucker
2007-08-13 - (dtucker) [session.c] Bug #1339: ensure that pam_setcred() is alwaysDarren Tucker
called with PAM_ESTABLISH_CRED at least once, which resolves a problem with pam_dhkeys. Patch from David Leonard, ok djm@
2007-08-10 - (dtucker) [configure.ac] Bug #1343: Set DISABLE_FD_PASSING for QNX6. From.Darren Tucker
Matt Kraai, ok djm@.
2007-08-10 - (dtucker) [auth-pam.c] Use sigdie here too. ok djm@Darren Tucker
2007-08-09Credit Bernhard Simon who also reported this.Darren Tucker
2007-08-09 - (dtucker) [defines.h] Remove _PATH_{CSHELL,SHELLS} which aren'tDarren Tucker
used anywhere and are a potential source of warnings.
2007-08-09 - (dtucker) [README.platform] Document the interaction between PermitRootLoginDarren Tucker
and the AIX native login restrictions.