summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2007-09-12* debconf template translations:Colin Watson
- Add Slovak (thanks, Ivan Masár; closes: #441690).
2007-09-12* Remove blank line between head comment and first template inColin Watson
debian/openssh-server.templates.master; apparently it confuses some versions of debconf.
2007-07-30releasing version 1:4.6p1-5Colin Watson
2007-07-30* openssh-client Suggests: keychain.Colin Watson
2007-07-28* Build-depend on libselinux1-dev on lpia.Colin Watson
2007-07-17* ssh-copy-id defaults to ~/.ssh/id_rsa.pub rather thanColin Watson
~/.ssh/identity.pub, in line with ssh-keygen (thanks, Greg Norris; closes: #234627).
2007-07-17clarifyColin Watson
2007-07-17* ssh-copy-id no longer prints the output of expr (thanks, PeterColin Watson
Eisentraut; closes: #291534).
2007-07-17* ssh-copy-id checks the exit status of ssh-add -L (thanks, Adeodato Simó;Colin Watson
closes: #221675).
2007-07-07* Identify ssh as a metapackage rather than a transitional package. It'sColin Watson
still useful as a quick way to install both the client and the server.
2007-07-06* debconf template translations:Colin Watson
- Update Catalan (thanks, Jordà Polo; closes: #431970).
2007-07-05releasing version 1:4.6p1-4Colin Watson
2007-07-05* Don't build PIE executables on hppa, as they crash.Colin Watson
2007-06-29releasing version 1:4.6p1-3Colin Watson
2007-06-29fix syntaxColin Watson
2007-06-29* Document that HashKnownHosts may break tab-completion (closes: #430154).Colin Watson
2007-06-27* Fix broken switch fallthrough when SELinux is running in permissive modeColin Watson
(closes: #430838).
2007-06-26* Only build PIE executables on Linux and NetBSD (closes: #430455).Colin Watson
2007-06-20releasing version 1:4.6p1-2Colin Watson
2007-06-19 - Move C/R -> kbdint special case to after the defaults have beenColin Watson
loaded, which makes ChallengeResponse default to yes again. This was broken by the Match changes and not fixed properly subsequently (closes: #428968).
2007-06-18* Backport from upstream:Colin Watson
- Silence spurious error messages from hang-on-exit fix (http://bugzilla.mindrot.org/show_bug.cgi?id=1306, closes: #429531).
2007-06-13don't worry about reload failures in if-up scriptColin Watson
2007-06-13* Add /etc/network/if-up.d/openssh-server to restart sshd when newColin Watson
interfaces appear (LP: #103436).
2007-06-13* Add try-restart action to init script.Colin Watson
2007-06-13* Document the SILENT loglevel in sftp-server(8), ssh_config(5), andColin Watson
sshd_config(5).
2007-06-13* Suppress "Connection to <host> closed" and "Connection to master closed"Colin Watson
messages at loglevel SILENT (thanks, Jaap Eldering; closes: #409788). * Suppress "Pseudo-terminal will not be allocated because stdin is not a terminal" message at loglevels QUIET and SILENT (closes: #366814).
2007-06-13* Clarify that 'ssh -q -q' still prints errors caused by bad argumentsColin Watson
(i.e. before the logging system is initialised).
2007-06-13* Fix ordering of SYSLOG_LEVEL_QUIET and SYSLOG_LEVEL_FATAL.Colin Watson
2007-06-12releasing version 1:4.6p1-1Colin Watson
2007-06-12stop link for rc1; fix function callColin Watson
2007-06-12* Use ${binary:Version} rather than ${Source-Version} in openssh-server ->Colin Watson
openssh-client dependency.
2007-06-12add Short-DescriptionColin Watson
2007-06-12credit Ubuntu where appropriateColin Watson
2007-06-12* If building on Ubuntu, add /sbin, /usr/sbin, and /usr/local/sbin to theColin Watson
default path.
2007-06-12* Build position-independent executables (only for debs, not for udebs) toColin Watson
take advantage of address space layout randomisation.
2007-06-12* Belatedly build-depend on zlib1g-dev (>= 1:1.2.3-1) (closes: #333447).Colin Watson
2007-06-12--with-ssl-engine also closes: #408027Colin Watson
2007-06-12* Emit a slightly more informative message from the init script ifColin Watson
/dev/null has somehow become not a character device (closes: #369964).
2007-06-12* Move init script start links to S16, and remove stop links altogetherColin Watson
(closes: #122188).
2007-06-12* Use LSB functions in init scripts, and add an LSB-style header (thanks,Colin Watson
Christian Perrier; closes: #389038).
2007-06-12fix some missing #includes etc.Colin Watson
2007-06-12* Build the .deb --with-ssl-engine (LP: #119295).Colin Watson
2007-06-12* New upstream release (closes: #395507, #397961, #420035). ImportantColin Watson
changes not previously backported to 4.3p2: - 4.4/4.4p1 (http://www.openssh.org/txt/release-4.4): + On portable OpenSSH, fix a GSSAPI authentication abort that could be used to determine the validity of usernames on some platforms. + Implemented conditional configuration in sshd_config(5) using the "Match" directive. This allows some configuration options to be selectively overridden if specific criteria (based on user, group, hostname and/or address) are met. So far a useful subset of post-authentication options are supported and more are expected to be added in future releases. + Add support for Diffie-Hellman group exchange key agreement with a final hash of SHA256. + Added a "ForceCommand" directive to sshd_config(5). Similar to the command="..." option accepted in ~/.ssh/authorized_keys, this forces the execution of the specified command regardless of what the user requested. This is very useful in conjunction with the new "Match" option. + Add a "PermitOpen" directive to sshd_config(5). This mirrors the permitopen="..." authorized_keys option, allowing fine-grained control over the port-forwardings that a user is allowed to establish. + Add optional logging of transactions to sftp-server(8). + ssh(1) will now record port numbers for hosts stored in ~/.ssh/known_hosts when a non-standard port has been requested (closes: #50612). + Add an "ExitOnForwardFailure" option to cause ssh(1) to exit (with a non-zero exit code) when requested port forwardings could not be established. + Extend sshd_config(5) "SubSystem" declarations to allow the specification of command-line arguments. + Replacement of all integer overflow susceptible invocations of malloc(3) and realloc(3) with overflow-checking equivalents. + Many manpage fixes and improvements. + Add optional support for OpenSSL hardware accelerators (engines), enabled using the --with-ssl-engine configure option. + Tokens in configuration files may be double-quoted in order to contain spaces (closes: #319639). + Move a debug() call out of a SIGCHLD handler, fixing a hang when the session exits very quickly (closes: #307890). + Fix some incorrect buffer allocation calculations (closes: #410599). + ssh-add doesn't ask for a passphrase if key file permissions are too liberal (closes: #103677). + Likewise, ssh doesn't ask either (closes: #99675). - 4.6/4.6p1 (http://www.openssh.org/txt/release-4.6): + sshd now allows the enabling and disabling of authentication methods on a per user, group, host and network basis via the Match directive in sshd_config. + Fixed an inconsistent check for a terminal when displaying scp progress meter (closes: #257524). + Fix "hang on exit" when background processes are running at the time of exit on a ttyful/login session (closes: #88337). * Update to current GSSAPI patch from http://www.sxw.org.uk/computing/patches/openssh-4.6p1-gsskex-20070312.patch; install ChangeLog.gssapi.
2007-06-12Import OpenSSH 4.6p1.Colin Watson
2007-06-10releasing version 1:4.3p2-11Colin Watson
2007-06-10msgcatColin Watson
2007-06-10 - Update Vietnamese (thanks, Clytie Siddall; closes: #426991).Colin Watson
2007-06-10 - Add Korean (thanks, Sunjae Park; closes: #424008).Colin Watson
2007-06-09* Use 'start-stop-daemon --oknodo' so that openssh-server's init scriptColin Watson
exits successfully if sshd is already running (closes: #426858).
2007-06-09msgcat againColin Watson