openssh.git -

Age	Commit message (Collapse)	Author
2007-09-17	- djm@cvs.openbsd.org 2007/08/23 03:22:16	Damien Miller
	[auth2-none.c sshd_config sshd_config.5] Support "Banner=none" to disable displaying of the pre-login banner; ok dtucker@ deraadt@
2007-09-17	- djm@cvs.openbsd.org 2007/08/23 03:06:10	Damien Miller
	[auth.h] login_cap.h doesn't belong here NB. RCS ID sync only for portable
2007-09-17	- djm@cvs.openbsd.org 2007/08/23 02:55:51	Damien Miller
	[auth-passwd.c auth.c session.c] missed include bits from last commit NB. RCS ID sync only for portable
2007-09-17	- djm@cvs.openbsd.org 2007/08/23 02:49:43	Damien Miller
	[auth-passwd.c auth.c session.c] unifdef HAVE_LOGIN_CAP; ok deraadt@ millert@ NB. RCS ID sync only for portable
2007-09-14	- (dtucker) [openbsd-compat/bsd-asprintf.c] Plug mem leak in error path.	Darren Tucker
	Patch from Jan.Pechanec at sun com.
2007-09-10	- (tim) [configure.ac] Autoconf didn't define HAVE_LIBIAF because we	Tim Rice
	did a AC_CHECK_FUNCS within the AC_CHECK_LIB test.
2007-09-10	- (dtucker) [openbsd-compat/regress/closefromtest.c] Bug #1358: Always	Darren Tucker
	return 0 on successful test. From David.Leonard at quest com.
2007-09-04	don't say it twice	Damien Miller

2007-09-04	credit Jan Pechanec	Damien Miller

2007-09-04	Mention Jan Pechanec	Darren Tucker

2007-08-17	- (dtucker) [INSTALL] Link to tcpwrappers.	Darren Tucker

2007-08-17	- (dtucker) [INSTALL] Give PAM its own heading.	Darren Tucker

2007-08-17	- (dtucker) [INSTALL] the pid file is sshd.pid not ssh.pid.	Darren Tucker

2007-08-17	- (dtucker) [INSTALL] Group the parts describing random options and PAM	Darren Tucker
	implementations together which is hopefully more coherent.
2007-08-17	typo	Darren Tucker

2007-08-17	- (dtucker) [sshd.8] Many Linux variants use a single "!" to denote locked	Darren Tucker
	accounts and that's what the code looks for, so make man page and code agree. Pointed out by Roumen Petrov.
2007-08-16	- (dtucker) [session.c] Call PAM cleanup functions for unauthenticated	Darren Tucker
	connections too. Based on a patch from Sandro Wefel, with & ok djm@
2007-08-15	- stevesk@cvs.openbsd.org 2007/08/15 12:13:41	Darren Tucker
	[ssh_config.5] tun device forwarding now honours ExitOnForwardFailure; ok markus@
2007-08-15	- (dtucker) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec	Darren Tucker
	contrib/suse/openssh.spec] Crank version.
2007-08-15	- (dtucker) [openbsd-compat/bsd-cray.c] Remove debug from signal handler.	Darren Tucker
	ok djm@
2007-08-15	- markus@cvs.openbsd.org 2007/08/15 08:16:49	Darren Tucker
	[version.h] openssh 4.7
2007-08-15	- markus@cvs.openbsd.org 2007/08/15 08:14:46	Darren Tucker
	[clientloop.c] do NOT fall back to the trused x11 cookie if generation of an untrusted cookie fails; from security-alert at sun.com; ok dtucker
2007-08-13	- (dtucker) [session.c] Bug #1339: ensure that pam_setcred() is always	Darren Tucker
	called with PAM_ESTABLISH_CRED at least once, which resolves a problem with pam_dhkeys. Patch from David Leonard, ok djm@
2007-08-10	- (dtucker) [configure.ac] Bug #1343: Set DISABLE_FD_PASSING for QNX6. From.	Darren Tucker
	Matt Kraai, ok djm@.
2007-08-10	- (dtucker) [auth-pam.c] Use sigdie here too. ok djm@	Darren Tucker

2007-08-09	Credit Bernhard Simon who also reported this.	Darren Tucker

2007-08-09	- (dtucker) [defines.h] Remove _PATH_{CSHELL,SHELLS} which aren't	Darren Tucker
	used anywhere and are a potential source of warnings.
2007-08-09	- (dtucker) [README.platform] Document the interaction between PermitRootLogin	Darren Tucker
	and the AIX native login restrictions.
2007-08-09	- (dtucker) [openbsd-compat/port-aix.c] Comment typo.	Darren Tucker

2007-08-08	- djm@cvs.openbsd.org 2007/08/07 07:32:53	Damien Miller
	[clientloop.c clientloop.h ssh.c] bz#1232: ensure that any specified LocalCommand is executed after the tunnel device is opened. Also, make failures to open a tunnel device fatal when ExitOnForwardFailure is active. Reported by h.goebel AT goebel-consult.de; ok dtucker markus reyk deraadt
2007-08-08	- sobrado@cvs.openbsd.org 2007/08/06 19:16:06	Damien Miller
	[scp.1 scp.c] the ellipsis is not an optional argument; while here, sync the usage and synopsis of commands lots of good ideas by jmc@ ok jmc@
2007-08-08	- ray@cvs.openbsd.org 2007/07/12 05:48:05	Damien Miller
	[key.c] Delint: remove some unreachable statements, from Bret Lambert. OK markus@ and dtucker@.
2007-07-24	- (tim) [buildpkg.sh.in] s\|$FAKE_ROOT/${sysconfdir}\|$FAKE_ROOT${sysconfdir}\|	Tim Rice

2007-07-24	- (tim) [buildpkg.sh.in openssh.xml.in] Allow more flexibility where smf(5)	Tim Rice
	files are installed.
2007-07-24	- (tim) [openbsd-compat/regress/closefromtest.c] Bug 1345: fix open() call.	Tim Rice
	Report/patch by David.Leonard AT quest.com
2007-07-24	- (tim) [openssh.xml.in] make FMRI match what package scripts use.	Tim Rice

2007-06-28	- (djm) bz#1325: Fix SELinux in permissive mode where it would	Damien Miller
	incorrectly fatal() on errors. patch from cjwatson AT debian.org; ok dtucker
2007-06-25	- (dtucker) [atomicio.c configure.ac openbsd-compat/Makefile.in	Darren Tucker
	openbsd-compat/bsd-poll.{c,h} openbsd-compat/openbsd-compat.h] Add an implementation of poll() built on top of select(2). Code from OpenNTPD with changes suggested by djm. ok djm@
2007-06-25	- dtucker@cvs.openbsd.org 2007/06/25 12:02:27	Darren Tucker
	[atomicio.c] Include <poll.h> like the man page says rather than <sys/poll.h>. ok djm@
2007-06-25	- (dtucker) [atomicio.c] Test for EWOULDBLOCK in atomiciov to match	Darren Tucker
	atomicio.
2007-06-25	- dtucker@cvs.openbsd.org 2007/06/25 08:20:03	Darren Tucker
	[channels.c] Correct test for window updates every three packets; prevents sending window updates for every single packet. ok markus@
2007-06-25	- djm@cvs.openbsd.org 2007/06/19 02:04:43	Darren Tucker
	[atomicio.c] if the fd passed to atomicio/atomiciov() is non blocking, then poll() to avoid a spin if it is not yet ready for reading/writing; ok dtucker@
2007-06-25	- djm@cvs.openbsd.org 2007/06/14 22:48:05	Darren Tucker
	[ssh.c] when waiting for the multiplex exit status, read until the master end writes an entire int of data and closes the client_fd; fixes mux regression spotted by dtucker, ok dtucker@
2007-06-25	- djm@cvs.openbsd.org 2007/06/14 21:43:25	Darren Tucker
	[ssh.c] handle EINTR when waiting for mux exit status properly
2007-06-25	- djm@cvs.openbsd.org 2007/06/13 00:21:27	Darren Tucker
	[scp.c] don't ftruncate() non-regular files; bz#1236 reported by wood AT xmission.com; ok dtucker@
2007-06-14	- (dtucker) [openbsd-compat/openssl-compat.h] Remove redundant definition	Darren Tucker
	of USE_BUILTIN_RIJNDAEL since the <0.9.6 test is covered by the subsequent <0.9.7 test.
2007-06-14	- (dtucker) [openbsd-compat/openssl-compat.h] Merge USE_BUILTIN_RIJNDAEL	Darren Tucker
	sections. Fixes builds with early OpenSSL 0.9.6 versions.
2007-06-14	- (dtucker) [cipher-ctr.c umac.c openbsd-compat/openssl-compat.h] Move the	Darren Tucker
	USE_BUILTIN_RIJNDAEL compat goop to openssl-compat.h so it can be shared with umac.c. Allows building with OpenSSL 0.9.5 again including umac support. With tim@ djm@, ok djm.
2007-06-13	- dtucker@cvs.openbsd.org 2007/06/12 13:54:28	Darren Tucker
	[scp.c] Encode filename with strnvis if the name contains a newline (which can't be represented in the scp protocol), from bz #891. ok markus@
2007-06-13	- jmc@cvs.openbsd.org 2007/06/12 13:43:55	Darren Tucker
	[ssh.1] add -K to SYNOPSIS;