summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2005-10-03 - (dtucker) [regress/README.regress] Bug #989: Document limitation that scpDarren Tucker
is required in the system path for the multiplex test to work.
2005-10-03 - dtucker@cvs.openbsd.org 2005/10/03 07:44:42Darren Tucker
[canohost.c] Relocate check_ip_options call to prevent logging of garbage for connections with IP options set. bz#1092 from David Leonard, "looks good" deraadt@
2005-10-03 - jaredy@cvs.openbsd.org 2005/09/30 20:34:26Darren Tucker
[ssh-keyscan.1] deploy .An -nosplit; ok jmc
2005-10-03 - djm@cvs.openbsd.org 2005/09/21 23:37:11Darren Tucker
[sshd.c] change label at markus@'s request
2005-10-03 - djm@cvs.openbsd.org 2005/09/21 23:36:54Darren Tucker
[sshd_config.5] aquire -> acquire, from stevesk@
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 23:31:31Darren Tucker
[ssh.1] spelling nit from stevesk@
2005-10-03 - jmc@cvs.openbsd.org 2005/09/19 15:42:44Darren Tucker
[ssh.c] update -D usage here too;
2005-10-03 - jmc@cvs.openbsd.org 2005/09/19 15:38:27Darren Tucker
[ssh.1] some more .Bk/.Ek to avoid ugly line split;
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 11:48:10Darren Tucker
[gss-serv.c] typo
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 11:47:09Darren Tucker
[sshd.c] stop connection abort on rekey with delayed compression enabled when post-auth privsep is disabled (e.g. when root is logged in); ok dtucker@
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 11:37:34Darren Tucker
[ssh_config.5 ssh.1] mention ability to specify bind_address for DynamicForward and -D options; bz#1077 spotted by Haruyama Seigo
2005-10-03 - djm@cvs.openbsd.org 2005/09/13 23:40:07Darren Tucker
[sshd.c ssh.c misc.h sftp.c ssh-keygen.c ssh-keysign.c sftp-server.c scp.c misc.c ssh-keyscan.c ssh-add.c ssh-agent.c] ensure that stdio fds are attached; ok deraadt@
2005-10-03 - markus@cvs.openbsd.org 2005/09/09 19:18:05Darren Tucker
[clientloop.c] typo; from mark at mcs.vuw.ac.nz, bug #1082
2005-10-03 - markus@cvs.openbsd.org 2005/09/07 08:53:53Darren Tucker
[channels.c] enforce chanid != NULL; ok djm
2005-09-30 - (dtucker) [monitor.c] Bug #1087: Send loginmsg to preauth privsepDarren Tucker
child during PAM account check without clearing it. This restores the post-login warnings such as LDAP password expiry. Patch from Tomas Mraz with help from several others.
2005-09-30 - (dtucker) [openbsd-compat/openbsd-compat.h] Bug #1096: Add prototypeDarren Tucker
for strtoll. Patch from o.flebbe at science-computing.de.
2005-09-29 - (dtucker) [monitor_wrap.c] Remove duplicate definition of loginmsgDarren Tucker
introduced during sync.
2005-09-28 - (dtucker) [auth-pam.c] Bug #1028: send final non-query messages fromDarren Tucker
PAM via keyboard-interactive. Patch tested by the folks at Vintela.
2005-09-28 - (dtucker) [entropy.c] Use u_char for receiving RNG seed for consistencyDarren Tucker
2005-09-27 - (dtucker) [entropy.c entropy.h sshd.c] Pass RNG seed to the reexec'edDarren Tucker
process when sshd relies on ssh-random-helper. Should result in faster logins on systems without a real random device or prngd. ok djm@
2005-09-27 - (dtucker) [entropy.c] Remove unnecessary tests for getuid and geteuidDarren Tucker
calls, since they can't possibly fail. ok djm@
2005-09-24 - (dtucker) [auth2.c] Move start_pam() calls out of if-else block to removeDarren Tucker
duplicate call. ok djm@
2005-09-22 - (dtucker) [configure.ac] Fix help for --with-opensc; patch from skeleten atDarren Tucker
shillest.net.
2005-09-22 - (dtucker) [configure.ac] Use -R linker flag for libedit too; patch fromDarren Tucker
skeleten at shillest.net.
2005-09-19remove acconfig.hTim Rice
2005-09-19 - (tim) [aclocal.m4 configure.ac] Delete acconfig.h and add templates toTim Rice
AC_DEFINE and AC_DEFINE_UNQUOTED to quiet autoconf 2.59 warning messages.
2005-09-12 - (tim) [configure.ac] Bug 1078. Fix --without-kerberos5. Reported byTim Rice
Mike Frysinger.
2005-09-08Last commit skipped defines.hTim Rice
- (tim) [defines.h openbsd-compat/port-uw.c] Add long password support to OpenServer 6 and add osr5bigcrypt support so when someone migrates passwords between UnixWare and OpenServer they will still work. OK dtucker@
2005-09-08 - (tim) [defines.h openbsd-compat/port-uw.c] Add long password support toTim Rice
OpenServer 6 and add osr5bigcrypt support so when someone migrates passwords between UnixWare and OpenServer they will still work. OK dtucker@
2005-09-01 - (djm) Update RPM spec file versionsDamien Miller
2005-08-31 - (tim) [configure.ac auth.c defines.h session.c openbsd-compat/port-uw.cTim Rice
openbsd-compat/port-uw.h openbsd-compat/xcrypt.c] libiaf cleanup. Disable libiaf bits for OpenServer6. Free memory allocated by ia_get_logpwd(). Feedback and OK dtucker@
2005-09-01 - (dtucker) [README] Update release note URL to 4.2Darren Tucker
2005-08-31 - markus@cvs.openbsd.org 2005/08/31 09:28:42Damien Miller
[version.h] 4.2
2005-08-31 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2005/08/30 22:08:05 [gss-serv.c sshconnect2.c] destroy credentials if krb5_kuserok() call fails. Stops credentials being delegated to users who are not authorised for GSSAPIAuthentication when GSSAPIDeletegateCredentials=yes and another authentication mechanism succeeds; bz#1073 reported by paul.moore AT centrify.com, fix by simon AT sxw.org.uk, tested todd@ biorn@ jakob@; ok deraadt@
2005-08-31correct bug numberDamien Miller
2005-08-30 - (tim) [configure.ac] Back out last change. It needs to be done differently.Tim Rice
2005-08-29 - (tim) [configure.ac] ia_openinfo() seems broken on OSR6. Limit UW longTim Rice
password support to 7.x for now.
2005-08-26 - (tim) [CREDITS LICENCE auth.c configure.ac defines.h includes.h session.cTim Rice
openbsd-compat/Makefile.in openbsd-compat/openbsd-compat.h openbsd-compat/xcrypt.c] New files [openssh/openbsd-compat/port-uw.c openssh/openbsd-compat/port-uw.h] Support long passwords (> 8-char) on UnixWare 7 from Dhiraj Gulati and Ahsan Rashid. Cleanup and testing by tim@. Feedback and OK dtucker@
2005-08-23 - (tim) [defines.h] PATH_MAX bits for OpenServer OK dtucker@Tim Rice
2005-08-23 - (tim) [configure.ac ] Not all gcc's support -Wsign-compareTim Rice
2005-08-23 - (dtucker) [regress/test-exec.sh] Do not prepend an extra "/" to a fully-Darren Tucker
qualified sshd pathname since some systems (eg Cygwin) may consider "/foo" and "//foo" to be different. Spotted by vinschen at redhat.com.
2005-08-23 - (dtucker) [configure.ac defines.h includes.h sftp.c] Add support forDarren Tucker
LynxOS, patch from Olli Savia (ops at iki.fi). ok djm@
2005-08-16 - (djm) [ttymodes.c] bugzilla #1054: Fix encoding of _POSIX_VDISABLE,Damien Miller
from Jacob Nevins; ok dtucker@
2005-08-15 - (tim) [configure.ac] corrections to libedit tests. Report and patchesTim Rice
by skeleten AT shillest.net
2005-08-15 - (tim) wrap el_end() in #ifdef USE_LIBEDITTim Rice
2005-08-12 - jaredy@cvs.openbsd.org 2005/08/08 13:22:48Damien Miller
[sftp.c] sftp prompt enhancements: - in non-interactive mode, do not print an empty prompt at the end before finishing - print newline after EOF in editline mode - call el_end() in editline mode ok dtucker djm
2005-08-12oops, that last commit was:Damien Miller
Report from Janusz Mucka; ok djm@
2005-08-12 - dtucker@cvs.openbsd.org 2005/08/06 10:03:12Damien Miller
[servconf.c] Unbreak sshd ListenAddress for bare IPv6 addresses.
2005-08-12 - djm@cvs.openbsd.org 2005/07/30 02:03:47Damien Miller
[readconf.c] listen_hosts initialisation here too; spotted greg AT y2005.nest.cx
2005-08-12 - djm@cvs.openbsd.org 2005/07/30 01:26:16Damien Miller
[ssh.c] fix -D listen_host initialisation, so it picks up gateway_ports setting correctly
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-05 15:27:48 +0000