summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2003-11-03 - markus@cvs.openbsd.org 2003/10/28 09:08:06Darren Tucker
[misc.c] error->debug for getsockopt+TCP_NODELAY; several requests
2003-11-03 - avsm@cvs.openbsd.org 2003/10/26 16:57:43Darren Tucker
[sshconnect2.c] rename 'supported' static var in userauth_gssapi() to 'gss_supported' to avoid shadowing the global version. markus@ ok
2003-11-03 - markus@cvs.openbsd.org 2003/10/21 09:50:06Darren Tucker
[auth2-gss.c] make sure the doid is larger than 2
2003-11-03 - markus@cvs.openbsd.org 2003/10/15 09:48:45Darren Tucker
[monitor_wrap.c] check pmonitor != NULL
2003-11-03 - (dtucker) [contrib/cygwin/ssh-host-config] Ensure entries in /etc/servicesDarren Tucker
are created correctly with CRLF line terminations. Patch from vinschen at redhat.com.
2003-10-21Remove OBJ, shouldn't be thereDarren Tucker
2003-10-21 - (dtucker) [regress/agent-ptrace.sh] Skip agent-test unless SUDO is set,Darren Tucker
make agent setgid during test.
2003-10-21 - (dtucker) [INSTALL] Some system crypt() functions support MD5 passwordsDarren Tucker
directly. Noted by Darren.Moffat at sun.com.
2003-10-17 - (dtucker) [INSTALL] Note that --with-md5 is now required on platforms withDarren Tucker
MD5 passwords even if PAM support is enabled. From steev at detritus.net.
2003-10-15[regress/banner.sh] portability fix.Tim Rice
2003-10-15 - (dtucker) [auth.c] Check for disabled password expiry on HP-UX Trusted Mode.Darren Tucker
2003-10-15Fix comments to reflect recent change.Darren Tucker
2003-10-15 - (dtucker) [acconfig.h configure.ac dns.c openbsd-compat/getrrsetbyname.cDarren Tucker
openbsd-compat/getrrsetbyname.h] DNS fingerprint support is now always compiled in but disabled in config.
2003-10-15 - markus@cvs.openbsd.org 2003/10/14 19:54:39Darren Tucker
[session.c ssh-agent.c] 10X for mkdtemp; djm@
2003-10-15 - jakob@cvs.openbsd.org 2003/10/14 19:43:23Darren Tucker
[README.dns] update Resynced with OpenBSD too: DNSFP support is now always compiled in so the configure support (and documentation thereof) can go away.
2003-10-15 - jakob@cvs.openbsd.org 2003/10/14 19:42:10Darren Tucker
[dns.c dns.h readconf.c ssh-keygen.c sshconnect.c] include SSHFP lookup code (not enabled by default). ok markus@
2003-10-15 - markus@cvs.openbsd.org 2003/10/13 08:22:25Darren Tucker
[scp.1 sftp.1] don't refer to options related to forwarding; ok jmc@
2003-10-15 - jmc@cvs.openbsd.org 2003/10/12 13:12:13Darren Tucker
[ssh_config.5] note that EnableSSHKeySign should be in the non-hostspecific section; remove unnecessary .Pp; ok markus@
2003-10-15 - markus@cvs.openbsd.org 2003/10/11 11:36:23Darren Tucker
[monitor_wrap.c] return NULL for missing banner; ok djm@
2003-10-15 - markus@cvs.openbsd.org 2003/10/11 08:26:43Darren Tucker
[sshconnect2.c] search keys in reverse order; fixes #684
2003-10-15 - markus@cvs.openbsd.org 2003/10/11 08:24:08Darren Tucker
[readconf.c readconf.h ssh.1 ssh.c ssh_config.5] remote x11 clients are now untrusted by default, uses xauth(8) to generate untrusted cookies; ForwardX11Trusted=yes restores old behaviour. ok deraadt; feedback and ok djm/fries
2003-10-15 - markus@cvs.openbsd.org 2003/10/08 15:21:24Darren Tucker
[readconf.c ssh_config.5] default GSS API to no in client, too; ok jakob, deraadt@
2003-10-15 - jmc@cvs.openbsd.org 2003/10/08 08:27:36Darren Tucker
[scp.1 scp.c sftp-server.8 sftp.1 sftp.c ssh.1 sshd.8] scp and sftp: add options list and sort options. options list requested by deraadt@ sshd: use same format as ssh ssh: remove wrong option from list sftp-server: Subsystem is documented in ssh_config(5), not sshd(8) ok deraadt@ markus@
2003-10-09Add FALLTHROUGH commentDarren Tucker
2003-10-09 - (dtucker) [sshd_config.5] UsePAM defaults to "no". ok djm@Darren Tucker
2003-10-08 - djm@cvs.openbsd.org 2003/10/07 07:04:52Darren Tucker
[regress/sftp-cmds.sh] more sftp quoting regress tests; ok markus
2003-10-08 - dtucker@cvs.openbsd.org 2003/10/07 01:52:13Darren Tucker
[regress/Makefile regress/banner.sh] Test SSH2 banner. ok markus@
2003-10-08 - deraadt@cvs.openbsd.org 2003/10/07 21:58:28Darren Tucker
[sshconnect2.c] set ptr to NULL after free
2003-10-08 - djm@cvs.openbsd.org 2003/10/07 07:04:16Darren Tucker
[sftp-int.c] sftp quoting fix from admorten AT umich.edu; ok markus@
2003-10-08 - dtucker@cvs.openbsd.org 2003/10/07 01:47:27Darren Tucker
[sshconnect2.c] Don't use logit for banner, since it truncates to MSGBUFSIZ; bz #668 & #707. ok markus@
2003-10-07 - (dtucker) [configure.ac] Bug #710: Check for dlsym() in libdl onDarren Tucker
Reliant Unix. Based on patch from Robert.Dahlem at siemens.com.
2003-10-07 - (dtucker) [configure.ac] Bug #715: Set BROKEN_SETREUID and BROKEN_SETREGIDDarren Tucker
on Reliant Unix. Patch from Robert.Dahlem at siemens.com.
2003-10-07 - (dtucker) [configure.ac openbsd-compat/Makefile.in openbsd-compat/strtoul.c]Darren Tucker
Bug #670: add strtoul() to openbsd-compat for platforms lacking it. ok djm@
2003-10-07 - (dtucker) [contrib/redhat/openssh.spec] Bug #714: Now that UsePAM is aDarren Tucker
run-time switch, always build --with-md5-passwords.
2003-10-07So people know who to blame...Darren Tucker
2003-10-07 - (dtucker) [auth-pam.c auth-pam.h session.c] Make PAM use the new staticDarren Tucker
cleanup functions. With & ok djm@
2003-10-07 - (djm) Delete autom4te.cache after autoreconfDamien Miller
2003-10-03[contrib/caldera/openssh.spec] Remove obsolete --with-ipv4-default option.Tim Rice
2003-10-03 - markus@cvs.openbsd.org 2003/10/02 08:26:53Darren Tucker
[ssh-gss.h] missing $OpenBSD:; dtucker
2003-10-03 - markus@cvs.openbsd.org 2003/10/02 10:41:59Darren Tucker
[sshd.c] print openssl version, too, several requests; ok henning/djm.
2003-10-02 - (dtucker) [session.c] Fix bus errors on some 64-bit Solaris configurations.Darren Tucker
Based on patches by Matthias Koeppe and Thomas Baden. ok djm@
2003-10-02 - (dtucker) [ssh-gss.h] Prototype change missed in sync.Darren Tucker
2003-10-02 - (dtucker) [configure.ac] Don't set DISABLE_SHADOW when configuringDarren Tucker
--with-pam. ok djm@
2003-10-02 - markus@cvs.openbsd.org 2003/09/29 20:19:57Darren Tucker
[servconf.c sshd_config] GSSAPICleanupCreds -> GSSAPICleanupCredentials
2003-10-02 - jmc@cvs.openbsd.org 2003/09/29 11:40:51Darren Tucker
[ssh.1] - add list of options to -o and .Xr ssh_config(5) - some other cleanup requested by deraadt@; ok deraadt@ markus@
2003-10-02 - markus@cvs.openbsd.org 2003/09/26 08:19:29Darren Tucker
[sshd.c] no need to set the listen sockets to non-block; ok deraadt@
2003-10-02 - markus@cvs.openbsd.org 2003/09/23 20:41:11Darren Tucker
[channels.c channels.h clientloop.c] move client only agent code to clientloop.c
2003-10-02 - markus@cvs.openbsd.org 2003/09/23 20:18:52Darren Tucker
[progressmeter.c] don't print trailing \0; bug #709; Robert.Dahlem@siemens.com ok millert/deraadt@
2003-10-02 - markus@cvs.openbsd.org 2003/09/23 20:17:11Darren Tucker
[Makefile.in auth1.c auth2.c auth.c auth.h auth-krb5.c canohost.c cleanup.c clientloop.c fatal.c gss-serv.c log.c log.h monitor.c monitor.h monitor_wrap.c monitor_wrap.h packet.c serverloop.c session.c session.h ssh-agent.c sshd.c] replace fatal_cleanup() and linked list of fatal callbacks with static cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@
2003-09-30 - (bal) Fix issues in openbsd-compat/realpath.cBen Lindstrom