summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2004-01-27 - djm@cvs.openbsd.org 2004/01/25 03:49:09Damien Miller
[sshconnect.c] reset nonblocking flag after ConnectTimeout > 0 connect; (bugzilla #785) from jclonguet AT free.fr; ok millert@
2004-01-27 - hshoexer@cvs.openbsd.org 2004/01/23 19:26:33Damien Miller
[cipher.c] rename acss@opebsd.org to acss@openssh.org ok deraadt@
2004-01-27 - mouring@cvs.openbsd.org 2004/01/23 17:57:48Damien Miller
[sftp-int.c] Fix issue pointed out with ls not handling large directories with embeded paths correctly. OK damien@
2004-01-27 - (djm) OpenBSD CVS SyncDamien Miller
- hshoexer@cvs.openbsd.org 2004/01/23 17:06:03 [cipher.c] enable acss for ssh ok deraadt@ markus@ - (djm) [acss.c acss.h cipher-acss.c] Portable support for ACSS if libcrypto lacks it
2004-01-26[defines.h openbsd-compat/getrrsetbyname.h] Move defines for HFIXEDSZTim Rice
and T_SIG to getrrsetbyname.h
2004-01-26[configure.ac includes.h] add <sys/ptms.h> for grantpt() and friends.Tim Rice
2004-01-26[defines.h] Add defines for HFIXEDSZ and T_SIGTim Rice
2004-01-2620040126Tim Rice
[regress/test-exec.sh] RhostsAuthentication is deprecated.
2004-01-26Typo in regress/README.regressTim Rice
2004-01-24 - (djm) Typo in openbsd-compat/bsd-openpty.c; from wendyp AT cray.comDamien Miller
2004-01-23[configure.ac] Remove hard coded -L/usr/local/lib andTim Rice
-I/usr/local/include. Users can do LDFLAGS="-L/usr/local/lib" \ CPPFLAGS="-I/usr/local/include" ./configure if needed.
2004-01-23 - (dtucker) [acconfig.h configure.ac includes.h servconf.c session.c]Darren Tucker
Change AFS symbol to USE_AFS to prevent namespace collisions, do not include kafs.h unless necessary. From deengert at anl.gov. For consistency, all of the libkafs bits are now inside "#if defined(KRB5) && defined(USE_AFS)".
2004-01-23 - (dtucker) [contrib/cygwin/README] Document new ssh-host-config options.Darren Tucker
Patch from vinschen at redhat.com.
2004-01-23 - (dtucker) [configure.ac] Bug #788: Test for zlib.h presence and forDarren Tucker
zlib >= 1.1.4. Partly from jbasney at ncsa.uiuc.edu. ok djm@
2004-01-23 - (djm) Bug #776: Update contrib/redhat/openssh.spec to dynamically detectDamien Miller
Kerberos location (and thus work with Fedora Core 1); from jason AT devrandom.org
2004-01-23 - (djm) Do pam_session processing for systems with HAVE_LOGIN_CAP; fromDamien Miller
ralf.hack AT pipex.net; ok dtucker@
2004-01-22[contrib/solaris/buildpkg.sh] Allow for the possibility ofTim Rice
/usr/local being a symbolic link. Fixes problem reported by Henry Grebler.
2004-01-22 - (dtucker) [session.c] Enable AFS support in conjunction with KRB5 notDarren Tucker
just HEIMDAL. Currently this will make no difference, as only Heimdal (which defines KRB5 anyway) has libkafs, however a libkafs that works with MIT may become available. In that case it will be used too.
2004-01-22 - (dtucker) [configure.ac] Use krb5-config where available for Kerberos/Darren Tucker
GSSAPI detection, libs and includes. ok djm@
2004-01-21 - deraadt@cvs.openbsd.org 2004/01/11 21:55:06Damien Miller
[sshpty.c] for pty opening, only use the openpty() path. the other stuff only needs to be in openssh-p; markus ok - (djm) [openbsd-compat/bsd-openpty.c] Rework old sshpty.c code into an openpty() replacement
2004-01-21 - djm@cvs.openbsd.org 2004/01/21 03:07:59Damien Miller
[sftp.c] initialise infile in main, rather than statically - from portable
2004-01-21 - markus@cvs.openbsd.org 2004/01/19 21:25:15Damien Miller
[auth2-hostbased.c auth2-pubkey.c serverloop.c ssh-keysign.c sshconnect2.c] fix mem leaks; some fixes from Pete Flugstad; tested dtucker@
2004-01-21 - markus@cvs.openbsd.org 2004/01/19 09:24:21Damien Miller
[channels.c] fake consumption for half closed channels since the peer is waiting for window adjust messages; bugzilla #790 Matthew Dillon; test + ok dtucker@ reproduce with sh -c 'ulimit -f 10; ssh host -n od /bsd | cat > foo'
2004-01-21 - markus@cvs.openbsd.org 2004/01/13 19:45:15Damien Miller
[compress.c] cast for portability; millert@
2004-01-21 - markus@cvs.openbsd.org 2004/01/13 19:23:15Damien Miller
[compress.c session.c] -Wall; ok henning
2004-01-21 - jmc@cvs.openbsd.org 2004/01/13 12:17:33Damien Miller
[sftp.1] remove unnecessary Ic's; kill whitespace at EOL; ok djm@
2004-01-21 - djm@cvs.openbsd.org 2004/01/13 09:25:05Damien Miller
[sftp-int.c sftp.1 sftp.c] Tidy sftp batchmode handling, eliminate junk to stderr (bugzilla #754) and enable use of "-b -" to accept batchfile from stdin; ok markus@
2004-01-15 - (dtucker) [auth-pam.c] Add minor debugging.Darren Tucker
2004-01-14 - (dtucker) [auth-pam.c] Reset signal handler in pthread_cancel too, addDarren Tucker
test for case where cleanup has already run.
2004-01-14 - (dtucker) [auth-pam.c] Have monitor die if PAM authentication thread exitsDarren Tucker
unexpectedly. with & ok djm@
2004-01-13 - (dtucker) [auth-pam.c] Relocate struct pam_ctxt and prototypes. NoDarren Tucker
functional changes. This is in preparation for a change to catch the authentication thread exitting unexpectedly, to split functional and cosmetic changes.
2004-01-09 - (dtucker) [configure.ac] Remove extra (typo) comma.Darren Tucker
2004-01-08 - (dtucker) [auth-pam.c defines.h] Bug #783: move __unused to defines.h andDarren Tucker
only define if not already. From des at freebsd.org.
2004-01-05 - (dtucker) [acconfig.h configure.ac includes.h servconf.c session.c]Darren Tucker
Only enable KerberosGetAFSToken if Heimdal's libkafs is found. with jakob@
2004-01-05 - (dtucker) [contrib/ssh-copy-id] Bug #781: exit if ssh fails. Patch fromDarren Tucker
cjwatson at debian.org.
2004-01-02 - (djm) OSX/Darwin needs BIND_8_COMPAT to build getrrsetbyname. Report fromDamien Miller
jakob@
2004-01-02 - (djm) OSX/Darwin put the PAM headers in a different place, detect this.Damien Miller
Report from jakob@
2004-01-02 - (djm) Remove useless DNS support configure summary message. from jakob@Damien Miller
2004-01-02 - (djm) OSX/Darwin needs BIND_8_COMPAT to build getrrsetbyname. Report fromDamien Miller
jakob@
2003-12-31 - (dtucker) [configure.ac] Only test setresuid and setresgid if they exist.Darren Tucker
2003-12-31 - dtucker@cvs.openbsd.org 2003/12/31 00:24:50Darren Tucker
[auth2-passwd.c] Ignore password change request during password auth (which we currently don't support) and discard proposed new password. corrections/ok markus@
2003-12-31 - millert@cvs.openbsd.org 2003/12/29 16:39:50Darren Tucker
[sshd_config] KeepAlive has been obsoleted, use TCPKeepAlive instead; markus@ OK
2003-12-31 - jakob@cvs.openbsd.org 2003/12/23 16:12:10Darren Tucker
[servconf.c servconf.h session.c sshd_config] implement KerberosGetAFSToken server option. ok markus@, beck@
2003-12-31 - markus@cvs.openbsd.org 2003/12/22 20:29:55Darren Tucker
[cipher-3des1.c] EVP_CIPHER_CTX_cleanup() for the des contexts; pruiksma@freesurf.fr
2003-12-31 - djm@cvs.openbsd.org 2003/12/22 09:16:58Darren Tucker
[moduli.c ssh-keygen.1 ssh-keygen.c] tidy up moduli generation debugging, add -v (verbose/debug) option to ssh-keygen; ok markus@
2003-12-19 - (dtucker) [defines.h] Bug #458: Define SIZE_T_MAX as UINT_MAX if weDarren Tucker
typedef size_t ourselves.
2003-12-18Enable commented-out "if (compat20)" test. (Should not have been committed.)Darren Tucker
2003-12-18 - (dtucker) [auth-pam.c] Do PAM chauthtok during SSH2 keyboard-interactiveDarren Tucker
authentication. Partially fixes bug #423. Feedback & ok djm@ Some background on why this is the way it is: * Solaris 8's pam_chauthtok ignores the CHANGE_EXPIRED_AUTHTOK flag, so we must call do_pam_account() to figure out if the password is expired. * AIX 5.2 does not like having pam_acct_mgmt() called twice, once from the authentication thread and once from the main shell child, so we cache the result, which must be passed from the authentication thread back to the monitor.
2003-12-18 - (dtucker) [configure.ac] Don't use setre[ug]id on DG-UX, from Tom Orban.Darren Tucker
2003-12-18 - (bal) [openbsd-compat/bsd-misc.c] unset 'signal' defined if we areBen Lindstrom
using a real 'signal()' (Noticed by a NeXT Compile)