| Age | Commit message (Collapse) | Author |
|---|
|
[ssh.c]
add -Q to usage; reminded by jmc@
|
|
[authfile.c cipher.c cipher.h kex.c kex.h kexecdh.c kexecdhc.c kexecdhs.c]
[key.c key.h mac.c mac.h packet.c ssh.1 ssh.c]
add the ability to query supported ciphers, MACs, key type and KEX
algorithms to ssh. Includes some refactoring of KEX and key type handling
to be table-driven; ok markus@
|
|
[session.c]
reintroduce 1.262 without the connection-killing bug:
fatal() when ChrootDirectory specified by running without root privileges;
ok markus@
|
|
[ssh-keygen.c]
fix some memory leaks; bz#2088 ok dtucker@
|
|
[sshd_config.5]
document the requirment that the AuthorizedKeysCommand be owned by root;
ok dtucker@ markus@
|
|
[sftp.c]
make "sftp -q" do what it says on the sticker: hush everything but errors;
|
|
[session.c]
revert rev 1.262; it fails because uid is already set here. ok djm@
|
|
[packet.c]
quiet disconnect notifications on the server from error() back to logit()
if it is a normal client closure; bz#2057 ok+feedback dtucker@
|
|
[sshd.8]
clarify -e text. suggested by & ok jmc@
|
|
[log.c log.h ssh.1 ssh.c sshd.8 sshd.c]
Add -E option to ssh and sshd to append debugging logs to a specified file
instead of stderr or syslog. ok markus@, man page help jmc@
|
|
[channels.c sshd.c]
handle ECONNABORTED for accept(); ok deraadt some time ago...
|
|
[mux.c]
cleanup mux-created channels that are in SSH_CHANNEL_OPENING state too
(in addition to ones already in OPEN); bz#2079, ok dtucker@
|
|
[pathnames.h]
use the existing _PATH_SSH_USER_RC define to construct the other
pathnames; bz#2077, ok dtucker@ (no binary change)
|
|
[auth2-gss.c krl.c sshconnect2.c]
hush some {unused, printf type} warnings
|
|
[ssh.c]
allow "ssh -f none ..." ok markus@
|
|
[auth.h auth2-chall.c auth2.c monitor.c sshd_config.5]
add submethod support to AuthenticationMethods; ok and freedback djm@
|
|
[auth2-pubkey.c monitor.c]
reconstruct the original username that was sent by the client, which may
have included a style (e.g. "root:skey") when checking public key
signatures. Fixes public key and hostbased auth when the client specified
a style; ok markus@
|
|
[readconf.c]
g/c unused variable (-Wunused)
|
|
[session.c]
fatal() when ChrootDirectory specified by running without root privileges;
ok markus@
|
|
- markus@cvs.openbsd.org 2013/03/05 20:16:09
[sshconnect2.c]
reset pubkey order on partial success; ok djm@
|
|
platforms, such as Android, that lack struct passwd.pw_gecos. Report
and initial patch from Nathan Osman bz#2086; feedback tim@ ok dtucker@
|
|
unused argument warnings (in particular, -fno-builtin-memset) from clang.
|
|
to GPL3. ok dtucker@
|
|
[ssh.c]
Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlier
version)
|
|
[ssh.c]
Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlier
version)
|
|
[sshconnect.c]
support ProxyCommand=- (stdin/out already point to the proxy); ok djm@
|
|
[sshconnect.c]
support ProxyCommand=- (stdin/out already point to the proxy); ok djm@
|
|
[ssh.c readconf.c readconf.h]
Don't complain if IdentityFiles specified in system-wide configs are
missing. ok djm, deraadt
|
|
[ssh.c readconf.c readconf.h]
Don't complain if IdentityFiles specified in system-wide configs are
missing. ok djm, deraadt
|
|
[krl.c]
Remove bogus include. ok djm
(id sync only)
|
|
[krl.c]
Remove bogus include. ok djm
(id sync only)
|
|
[readconf.c ssh.c readconf.h sshconnect2.c]
Keep track of which IndentityFile options were manually supplied and which
were default options, and don't warn if the latter are missing.
ok markus@
|
|
[readconf.c ssh.c readconf.h sshconnect2.c]
Keep track of which IndentityFile options were manually supplied and which
were default options, and don't warn if the latter are missing.
ok markus@
|
|
to avoid conflicting definitions of __int64, adding the required bits.
Patch from Corinna Vinschen.
(pulled from HEAD but kept the ChangeLog date as it was)
|
|
to avoid conflicting definitions of __int64, adding the required bits.
Patch from Corinna Vinschen.
|
|
|
|
defining it again. Prevents warnings if someone, eg, sets it in CFLAGS.
|
|
|
|
|
|
Hands' greatly revised version.
|
|
[openbsd-compat/vis.h] FreeBSD's strnvis isn't compatible with OpenBSD's
so mark it as broken. Patch from des AT des.no
|
|
of the bits the configure test looks for.
|
|
occur after UID switch; patch from John Marshall via des AT des.no;
ok dtucker@
|
|
Add a usleep replacement for platforms that lack it; ok dtucker
|
|
is unable to successfully compile them. Based on patch from des AT
des.no
|
|
in addition to root as an owner of system directories on AIX and HP-UX.
ok djm@
|
|
Improve portability of cipher-speed test, based mostly on a patch from
Iain Morgan.
|
|
chance to complete on broken systems; ok dtucker@
|
|
ago.
|
|
|
