Age | Commit message (Collapse) | Author |
|
|
|
|
|
|
|
accept them to the server by default in new installs, although not on
upgrade (closes: #264024).
|
|
|
|
|
|
|
|
cvs up -jV_3_8_1_P1-8 -jbranch-V_3_8_1_P1-4-client-server-split
branch-V_3_8_1_P1-4-client-server-split is now closed. For further
development for sarge (Debian version 3.8.1p1-8.sarge.4, CVS tag
V_3_8_1_P1-8_sarge_4), use branch-V_3_8_1_P1-8_sarge_4-sarge.
|
|
on some wacky platforms (eg old AIXes), dd will refuse to create an output
file if it doesn't exist.
|
|
from prngd is enabled at compile time but fails at run time, eg because
prngd is not running. Note that if you have prngd running when OpenSSH is
built, OpenSSL will consider itself internally seeded and rand-helper won't
be built at all unless explicitly enabled via --with-rand-helper. ok djm@
|
|
amarendra.godbole at ge com.
|
|
[auth-rsa.c auth2-pubkey.c authfile.c misc.c misc.h]
Fix debug call in error path of authorized_keys processing and fix related
warnings; ok djm@
|
|
[sftp.c]
- fix globbed ls for paths the same lenght as the globbed path when
we have a unique matching.
- fix globbed ls in case of a directory when we have a unique matching.
- as a side effect, if the path does not exist error (used to silently
ignore).
- don't do extra do_lstat() if we only have one matching file.
djm@ ok
|
|
- markus@cvs.openbsd.org 2004/12/06 16:00:43
[bufaux.c]
use 0x00 not \0 since buf[] is a bignum
|
|
case statement. Suggested and OK by dtucker@
|
|
|
|
[test-exec.sh]
Check if TEST_SSH_SSHD is a full path to sshd before searching; ok markus@
|
|
[test-exec.sh]
Remove obsolete RhostsAuthentication from test config; ok markus@
|
|
[multiplex.sh]
regression tests for new multiplex commands
|
|
[Makefile added brokenkeys.sh]
regression test for handling of corrupt keys in authorized_keys file
|
|
[reexec.sh]
shrink and tidy; ok dtucker@
|
|
[Makefile]
add a missing CLEANFILES used in the re-exec test
|
|
[scp.sh]
Regress test for bz #863 (scp double-error), requires $SUDO. ok markus@
|
|
[reexec.sh]
don't change the name of the copied sshd for the reexec fallback test,
makes life simpler for portable
|
|
|
|
[auth-rsa.c auth2-pubkey.c authfile.c misc.c misc.h ssh.h sshd.8]
Discard over-length authorized_keys entries rather than complaining when
they don't decode. bz #884, with & ok djm@
|
|
[sftp.1]
- explain that patterns can be used as arguments in get/put/ls/etc
commands (prodded by Michael Knudsen)
- describe ls flags as a list
- other minor improvements
ok jmc, djm
|
|
[sftp-client.h sftp.c]
Some small fixes from moritz@jodeit.org. ok deraadt@
|
|
[sftp.1]
missing full stop;
|
|
- markus@cvs.openbsd.org 2004/11/25 22:22:14
[sftp-client.c sftp.c]
leak; from mpech
|
|
|
|
subsequently denied by the PAM auth stack, send the PAM message to the
user via packet_disconnect (Protocol 1) or userauth_banner (Protocol 2).
ok djm@
|
|
[ssh.c]
usage():
- add -O
- sync -S w/ manpage
- remove -h
|
|
- jmc@cvs.openbsd.org 2004/11/07 17:42:36
[ssh.1]
options sort, and whitespace;
|
|
|
|
|
|
Make sure that there's a delay in PAM keyboard-interactive authentication
when PermitRootLogin is not set to yes and the correct root password is
entered (closes: #248747).
|
|
Fix timing information leak allowing discovery of invalid usernames in PAM
keyboard-interactive authentication (backported from a patch by Darren
Tucker; closes: #281595).
|
|
|
|
|
|
when PermitRootLogin is not set to yes and the correct root password is
entered (closes: #248747).
|
|
keyboard-interactive authentication (backported from a patch by Darren
Tucker; closes: #281595).
|
|
|
|
|
|
Correct README.Debian's ForwardX11Trusted description (closes: #280190).
|
|
Enable threading for PAM, on Sam Hartman's advice (closes: #278394).
|
|
|
|
|
|
option and supporting makefile bits and documentation.
|
|
[clientloop.c clientloop.h ssh.1 ssh.c]
add basic control of a running multiplex master connection; including the
ability to check its status and request it to exit; ok markus@
|