summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2000-12-2920001230Ben Lindstrom
- (bal) OpenBSD CVS Update - markus@cvs.openbsd.org 2000/12/28 18:58:30 [ssh-keygen.c] enable 'ssh-keygen -l -f ~/.ssh/{authorized_keys,known_hosts}{,2} - (bal) Resynced CVS ID with OpenBSD for channel.c and uidswap.c
2000-12-28 - (stevesk) compress.[ch] sync with openbsd; missed in prototypeKevin Steves
fix merge.
2000-12-28 - (bal) OpenBSD CVS UpdateBen Lindstrom
- markus@cvs.openbsd.org 2000/12/28 14:25:51 [auth.h auth2.c] count authentication failures only - markus@cvs.openbsd.org 2000/12/28 14:25:03 [sshconnect.c] fingerprint for MITM attacks, too. - markus@cvs.openbsd.org 2000/12/28 12:03:57 [sshd.8 sshd.c] document -D - markus@cvs.openbsd.org 2000/12/27 14:19:21 [serverloop.c] less chatty - markus@cvs.openbsd.org 2000/12/27 12:34 [auth1.c sshconnect2.c sshd.c] typo - markus@cvs.openbsd.org 2000/12/27 12:30:19 [readconf.c readconf.h ssh.1 sshconnect.c] new option: HostKeyAlias: allow the user to record the host key under a different name. This is useful for ssh tunneling over forwarded connections or if you run multiple sshd's on different ports on the same machine. - markus@cvs.openbsd.org 2000/12/27 11:51:53 [ssh.1 ssh.c] multiple -t force pty allocation, document ORIGINAL_COMMAND - markus@cvs.openbsd.org 2000/12/27 11:41:31 [sshd.8] update for ssh-2
2000-12-2820001229Ben Lindstrom
- (bal) Fixed spelling of 'authorized_keys' in ssh-copy-id.1 by Christian Kurz <shorty@debain.org> 20001228 - (bal) SCO patch to not include <sys/queue.h> since it's unrelated header. Patch by Tim Rice <tim@multitalents.net> - Updated TODO w/ known HP/UX issue - (bal) removed extra <netdb.h> noticed by Kevin Steves and removed the bad reference to 'NeXT including it else were' on the #ifdef version.
2000-12-28Update to new x11-askpass in RPM specDamien Miller
2000-12-2820001228Ben Lindstrom
- (bal) Patch to add libutil.h to loginrec.c only if the platform has libutil.h. Suggested by Pekka Savola <pekka@netcore.fi>
2000-12-27 - (djm) Remove *.Ylonen files. They are no longer in the OpenBSD tree,Damien Miller
the info in COPYING.Ylonen has been moved to the start of each SSH1-derived file and README.Ylonen is well out of date.
2000-12-27This should bring NeXTStep back into the family of supported operatingBen Lindstrom
systems. - (bal) Fixed NeXT's lack of CPPFLAGS honoring. - (bal) ssh-keyscan.c: NeXT (and older BSDs) don't support getrlimit() w/ 'RLIMIT_NOFILE'
2000-12-27 - (djm) Fix catman-do target for non-bashDamien Miller
2000-12-2720001227Ben Lindstrom
- (bal) Typo in configure.in: entut?ent should be endut?ent. Suggested by Takumi Yamane <yamtak@b-session.com> - (bal) Checks for getrlimit(), sysconf(), and setdtablesize(). Patch by Corinna Vinschen <vinschen@redhat.com>
2000-12-2220001223Ben Lindstrom
- (bal) Fixed Makefile.in to support recompile of all ssh and sshd objects if a change to config.h has occurred. Suggested by Gert Doering <gert@greenie.muc.de> - (bal) OpenBSD CVS Update: - markus@cvs.openbsd.org 2000/12/22 16:49:40 [ssh-keygen.c] fix ssh-keygen -x -t type > file; from Roumen.Petrov@skalasoft.com
2000-12-22One way to massive patch. <sigh> It compiles and works under Linux..Ben Lindstrom
And I think I have all the bits right from the OpenBSD tree. 20001222 - Updated RCSID for pty.c - (bal) OpenBSD CVS Updates: - markus@cvs.openbsd.org 2000/12/21 15:10:16 [auth-rh-rsa.c hostfile.c hostfile.h sshconnect.c] print keyfile:line for changed hostkeys, for deraadt@, ok deraadt@ - markus@cvs.openbsd.org 2000/12/20 19:26:56 [authfile.c] allow ssh -i userkey for root - markus@cvs.openbsd.org 2000/12/20 19:37:21 [authfd.c authfd.h kex.c sshconnect2.c sshd.c uidswap.c uidswap.h] fix prototypes; from stevesk@pobox.com - markus@cvs.openbsd.org 2000/12/20 19:32:08 [sshd.c] init pointer to NULL; report from Jan.Ivan@cern.ch - markus@cvs.openbsd.org 2000/12/19 23:17:54 [auth-krb4.c auth-options.c auth-options.h auth-rhosts.c auth-rsa.c auth1.c auth2-skey.c auth2.c authfd.c authfd.h authfile.c bufaux.c bufaux.h buffer.c canohost.c channels.c clientloop.c compress.c crc32.c deattack.c getput.h hmac.c hmac.h hostfile.c kex.c kex.h key.c key.h log.c login.c match.c match.h mpaux.c mpaux.h packet.c packet.h radix.c readconf.c rsa.c scp.c servconf.c servconf.h serverloop.c session.c sftp-server.c ssh-agent.c ssh-dss.c ssh-dss.h ssh-keygen.c ssh-keyscan.c ssh-rsa.c ssh-rsa.h ssh.c ssh.h uuencode.c uuencode.h sshconnect1.c sshconnect2.c sshd.c tildexpand.c] replace 'unsigned bla' with 'u_bla' everywhere. also replace 'char unsigned' with u_char.
2000-12-21 - (stevesk) OpenBSD CVS updates:Kevin Steves
- markus@cvs.openbsd.org 2000/12/19 15:43:45 [authfile.c channels.c sftp-server.c ssh-agent.c] remove() -> unlink() for consistency - markus@cvs.openbsd.org 2000/12/19 15:48:09 [ssh-keyscan.c] replace <ssl/x.h> with <openssl/x.h> - markus@cvs.openbsd.org 2000/12/17 02:33:40 [uidswap.c] typo; from wsanchez@apple.com
2000-12-20 - (djm) Workaround PAM inconsistencies between Solaris derived PAM codeDamien Miller
and Linux-PAM. Based on report and fix from Andrew Morgan <morgan@transmeta.com>
2000-12-18 - (bal) split CFLAGS into CFLAGS and CPPFLAGS in configure.in and Makefile.Ben Lindstrom
Suggested by Wilfredo Sanchez <wsanchez@apple.com>
2000-12-18 - (stevesk) rsa.c: entropy.h not needed.Kevin Steves
2000-12-16 - (stevesk) OpenBSD CVS updates:Kevin Steves
- markus@cvs.openbsd.org 2000/12/16 02:53:57 [scp.c] allow + in usernames; request from Florian.Weimer@RUS.Uni-Stuttgart.DE - markus@cvs.openbsd.org 2000/12/16 02:39:57 [scp.c] unused; from stevesk@pobox.com
2000-12-15 - (stevesk) Old OpenBSD patch wasn't completely applied:Kevin Steves
- markus@cvs.openbsd.org 2000/01/24 22:11:20 [scp.c] allow '.' in usernames; from jedgar@fxp.org
2000-12-15 - provos@cvs.openbsd.org 2000/12/15 10:30:15Kevin Steves
[kex.c kex.h sshconnect2.c sshd.c] compute diffie-hellman in parallel between server and client. okay markus@
2000-12-15type cpp commentKevin Steves
2000-12-15 - deraadt@cvs.openbsd.org 2000/12/11 10:27:33Kevin Steves
[scp.c] when copying 0-sized files, do not re-print ETA time at completion
2000-12-15update RCSIDKevin Steves
2000-12-15 - markus@cvs.openbsd.org 2000/12/12 14:45:21Kevin Steves
[sshd.c] source port < 1024 is no longer required for rhosts-rsa since it adds no additional security. - markus@cvs.openbsd.org 2000/12/12 16:11:49 [ssh.1 ssh.c] rhosts-rsa is no longer automagically disabled if ssh is not privileged. UsePrivilegedPort=no disables rhosts-rsa _only_ for old servers. these changes should not change the visible default behaviour of the ssh client.
2000-12-15 - (stevesk) OpenBSD CVS updates:Kevin Steves
- markus@cvs.openbsd.org 2000/12/13 16:26:53 [ssh-keyscan.c] fatal already adds \n; from stevesk@pobox.com - markus@cvs.openbsd.org 2000/12/13 16:25:44 [ssh-agent.c] remove redundant spaces; from stevesk@pobox.com - ho@cvs.openbsd.org 2000/12/12 15:50:21 [pty.c] When failing to set tty owner and mode on a read-only filesystem, don't abort if the tty already has correct owner and reasonably sane modes. Example; permit 'root' to login to a firewall with read-only root fs. (markus@ ok) - deraadt@cvs.openbsd.org 2000/12/13 06:36:05 [pty.c] KNF
2000-12-14s@\t\n@\nKevin Steves
2000-12-13 - (stevesk) OpenSSH CVS update:Kevin Steves
- markus@cvs.openbsd.org 2000/12/12 15:30:02 [ssh-keyscan.c ssh.c sshd.c] consistently use __progname; from stevesk@pobox.com
2000-12-13 - (djm) Make sure we reset the SIGPIPE disposition after we fork. ReportDamien Miller
from Andreas M. Kirchwitz <amk@krell.zikzak.de>
2000-12-12change my e-mail to a portable one.Kevin Steves
2000-12-10 - (bal) OpenBSD CVS updateBen Lindstrom
- markus@cvs.openbsd.org 2000/12/10 17:01:53 [sshconnect1.c] always request new challenge for skey/tis-auth, fixes interop with other implementations; report from roth@feep.net
2000-12-1020001211Ben Lindstrom
- (bal) Applied patch to include ssh-keyscan into Redhat's package, and patch to install ssh-keyscan manpage. Patch by Pekka Savola <pekka@netcore.fi>
2000-12-10Another CVS sync w/ OpenBSDBen Lindstrom
- provos@cvs.openbsd.org 2000/12/09 23:51:11 [compat.c] remove unnecessary '\n'
2000-12-1020001210Ben Lindstrom
- (bal) OpenBSD CVS updates - markus@cvs.openbsd.org 2000/12/09 13:41:51 [cipher.c cipher.h rijndael.c rijndael.h rijndael_boxes.h] undo rijndael changes - markus@cvs.openbsd.org 2000/12/09 13:48:31 [rijndael.c] fix byte order bug w/o introducing new implementation - markus@cvs.openbsd.org 2000/12/09 14:08:27 [sftp-server.c] "" -> "." for realpath; from vinschen@redhat.com - markus@cvs.openbsd.org 2000/12/09 14:06:54 [ssh-agent.c] extern int optind; from stevesk@sweden.hp.com
2000-12-0920001209Ben Lindstrom
- (bal) OpenSSH CVS updates: - djm@cvs.openbsd.org 2000/12/07 4:24:59 [ssh.1] Typo fix from Wilfredo Sanchez <wsanchez@apple.com>; ok theo
2000-12-07 - markus@cvs.openbsd.org 2000/12/06 23:10:39Ben Lindstrom
[rijndael.c] unexpand(1) - markus@cvs.openbsd.org 2000/12/06 23:05:43 [cipher.c cipher.h rijndael.c rijndael.h rijndael_boxes.h] new rijndael implementation. fixes endian bugs
2000-12-0720001207Ben Lindstrom
- (bal) OpenSSH CVS updates: - markus@cvs.openbsd.org 2000/12/06 22:58:14 [compat.c compat.h packet.c] disable debug messages for ssh.com/f-secure 2.0.1x, 2.1.0
2000-12-06 - (stevesk) OpenSSH CVS update:Kevin Steves
- markus@cvs.openbsd.org 2000/12/06 19:57:48 [ssh-keyscan.c] err(3) -> internal error(), from stevesk@sweden.hp.com
2000-12-06 - (stevesk) Import <sys/queue.h> from OpenBSD for systems that don'tKevin Steves
have it (used in ssh-keyscan).
2000-12-0620001206Ben Lindstrom
- (bal) OpenSSH CVS updates: - markus@cvs.openbsd.org 2000/12/05 20:34:09 [channels.c channels.h clientloop.c serverloop.c] async connects for -R/-L; ok deraadt@ - todd@cvs.openssh.org 2000/12/05 16:47:28 [sshd.c] tweak comment to reflect real location of pid file; ok provos@
2000-12-06 - (stevesk) fix typos in contrib/hpux/READMEKevin Steves
2000-12-0520001205Ben Lindstrom
- (bal) OpenSSH CVS updates: - markus@cvs.openbsd.org 2000/12/04 19:24:02 [ssh-keyscan.c ssh-keyscan.1] David Maziere's ssh-keyscan, ok niels@ - (bal) Updated Makefile.in to include ssh-keyscan that was just added to the recent OpenBSD source tree.
2000-12-0320001204Ben Lindstrom
- (bal) More C functions defined in NeXT that are unaccessable without defining -POSIX. - (bal) OpenBSD CVS updates: - markus@cvs.openbsd.org 2000/12/03 11:29:04 [compat.c] remove fallback to SSH_BUG_HMAC now that the drafts are updated - markus@cvs.openbsd.org 2000/12/03 11:27:55 [compat.c] correctly match "2.1.0.pl2 SSH" etc; from pekkas@netcore.fi/bugzilla.redhat - markus@cvs.openbsd.org 2000/12/03 11:15:03 [auth2.c compat.c compat.h sshconnect2.c] support f-secure/ssh.com 2.0.12; ok niels@
2000-12-03 - (djm) Added patch from Nalin Dahyabhai <nalin@redhat.com> to enableDamien Miller
PAM authentication using KbdInteractive. - (djm) Added another TODO
2000-12-0220001203Ben Lindstrom
- (bal) OpenBSD CVS updates: - markus@cvs.openbsd.org 2000/11/30 22:54:31 [channels.c] debug->warn if tried to do -R style fwd w/o client requesting this; ok neils@ - markus@cvs.openbsd.org 2000/11/29 20:39:17 [cipher.c] des_cbc_encrypt -> des_ncbc_encrypt since it already updates the IV - markus@cvs.openbsd.org 2000/11/30 18:33:05 [ssh-agent.c] agents must not dump core, ok niels@ - markus@cvs.openbsd.org 2000/11/30 07:04:02 [ssh.1] T is for both protocols - markus@cvs.openbsd.org 2000/12/01 00:00:51 [ssh.1] typo; from green@FreeBSD.org - markus@cvs.openbsd.org 2000/11/30 07:02:35 [ssh.c] check -T before isatty() - provos@cvs.openbsd.org 2000/11/29 13:51:27 [sshconnect.c] show IP address and hostname when new key is encountered. okay markus@ - markus@cvs.openbsd.org 2000/11/30 22:53:35 [sshconnect.c] disable agent/x11/port fwding if hostkey has changed; ok niels@ - marksu@cvs.openbsd.org 2000/11/29 21:11:59 [sshd.c] sshd -D, startup w/o deamon(), for monitoring scripts or inittab; from handler@sub-rosa.com and eric@urbanrange.com; ok niels@
2000-12-02Added in Linux's select issue to TODO. Which may have to do with theBen Lindstrom
shell/sshd not sending a -TERM/-HUP to the grandchildren at the right time in the exiting process.
2000-12-0120001202Ben Lindstrom
- (bal) Backed out of part of Alain St-Denis' loginrec.c patch. - (bal) Irix need some sort of mansubdir, patch by Michael Stone <mstone@cs.loyola.edu> Also removed a finished entry in TODO, and changed my address in the CREDITS file to match my new home address.
2000-11-29 - (djm) Back out all the serverloop.c hacks. sshd will now hang againDamien Miller
if there are background children with open fds.
2000-11-29 - (djm) Add Redhat RPM patch for AUTHPRIV SyslogFacilityDamien Miller
2000-11-29 - (djm) Patch from Pekka Savola <Pekka.Savola@netcore.fi> to include a fewDamien Miller
more manpage paths in fixpaths calls - (djm) Also add xauth path at Pekka's suggestion.
2000-11-29Fix Haruyama-san's email addressDamien Miller
2000-11-29 - (djm) OpenBSD CVS updates:Damien Miller
- provos@cvs.openbsd.org 2000/11/22 08:38:31 [sshd.8] talk about /etc/primes, okay markus@ - markus@cvs.openbsd.org 2000/11/23 14:03:48 [ssh.c sshconnect1.c sshconnect2.c] complain about invalid ciphers for ssh1/ssh2, fall back to reasonable defaults - markus@cvs.openbsd.org 2000/11/25 09:42:53 [sshconnect1.c] reorder check for illegal ciphers, bugreport from espie@ - markus@cvs.openbsd.org 2000/11/25 10:19:34 [ssh-keygen.c ssh.h] print keytype when generating a key. reasonable defaults for RSA1/RSA/DSA keys.