| Age | Commit message (Collapse) | Author |
|---|
|
- markus@cvs.openbsd.org 2004/11/25 22:22:14
[sftp-client.c sftp.c]
leak; from mpech
|
|
|
|
subsequently denied by the PAM auth stack, send the PAM message to the
user via packet_disconnect (Protocol 1) or userauth_banner (Protocol 2).
ok djm@
|
|
[ssh.c]
usage():
- add -O
- sync -S w/ manpage
- remove -h
|
|
- jmc@cvs.openbsd.org 2004/11/07 17:42:36
[ssh.1]
options sort, and whitespace;
|
|
|
|
|
|
Make sure that there's a delay in PAM keyboard-interactive authentication
when PermitRootLogin is not set to yes and the correct root password is
entered (closes: #248747).
|
|
Fix timing information leak allowing discovery of invalid usernames in PAM
keyboard-interactive authentication (backported from a patch by Darren
Tucker; closes: #281595).
|
|
|
|
|
|
when PermitRootLogin is not set to yes and the correct root password is
entered (closes: #248747).
|
|
keyboard-interactive authentication (backported from a patch by Darren
Tucker; closes: #281595).
|
|
|
|
|
|
Correct README.Debian's ForwardX11Trusted description (closes: #280190).
|
|
Enable threading for PAM, on Sam Hartman's advice (closes: #278394).
|
|
|
|
|
|
option and supporting makefile bits and documentation.
|
|
[clientloop.c clientloop.h ssh.1 ssh.c]
add basic control of a running multiplex master connection; including the
ability to check its status and request it to exit; ok markus@
|
|
[sftp.c]
command editing and history support via libedit; ok markus@
thanks to hshoexer@ and many testers on tech@ too
|
|
[key.c]
use new buffer API to avoid fatal errors on corrupt keys in authorized_keys
files; ok markus@
|
|
[bufaux.c bufaux.h buffer.c buffer.h]
introduce a new buffer API that returns an error rather than fatal()ing
when presented with bad data; ok markus@
|
|
[clientloop.c misc.h readpass.c ssh-agent.c]
factor out common permission-asking code to separate function; ok markus@
|
|
[channels.c channels.h clientloop.c]
fix some window size change bugs for multiplexed connections: windows sizes
were not being updated if they had changed after ~^Z suspends and SIGWINCH
was not being processed unless the first connection had requested a tty;
ok markus
|
|
[packet.c ssh1.h]
disconnect for invalid (out of range) message types.
|
|
[ssh-agent.c]
don't unlink agent socket when bind() fails, spotted by rich AT
rich-paul.net, ok markus@
|
|
[scp.1 sftp.1 ssh.1 ssh_config.5]
document KbdInteractiveDevices; ok markus@
|
|
[sshd.c]
these printf args are no longer double; ok deraadt@ markus@
|
|
[ssh.c]
correctly honour -n in multiplex client mode; spotted by sturm@ ok markus@
|
|
[scp.c]
scratch that do { } while (0) wrapper in this case
|
|
[sshd.c]
use less doubles in daemons; markus@ ok
|
|
[sshd_config.5]
mention PrintLastLog only prints last login time for interactive
sessions, like PrintMotd mentions.
From Michael Knudsen, with wording changed slightly to match the
PrintMotd description.
ok djm
|
|
[ssh.c]
/* fallthrough */ is something a programmer understands. But
/* FALLTHROUGH */ is also understood by lint, so that is better.
|
|
[clientloop.c ssh.c]
cleanup multiplex control socket on SIGHUP too, spotted by sturm@
ok markus@ deraadt@
|
|
[ssh-add.1 ssh.1]
.Xsession -> .xsession;
originally from a pr from f at obiit dot org, but missed by myself;
ok markus@ matthieu@
|
|
[LICENCE]
s/keygen/keyscan/
|
|
10.x by testing for conflicts in shadow.h and undef'ing _INCLUDE__STDC__
only if a conflict is detected.
|
|
|
|
#278715).
|
|
#278715).
|
|
* Preserve /etc/ssh/sshd_config ownership/permissions (closes: #276754).
* Shorten the version string from the form "OpenSSH_3.8.1p1 Debian
1:3.8.1p1-8.sarge.1" to "OpenSSH_3.8.1p1 Debian-8.sarge.1", as some SSH
implementations apparently have problems with the long version string.
This is of course a bug in those implementations, but since the extent
of the problem is unknown it's best to play safe (closes: #275731).
* debconf template translations:
- Add Finnish (thanks, Matti Pöllä; closes: #265339).
- Update Danish (thanks, Morten Brix Pedersen; closes: #275895).
- Update French (thanks, Denis Barbier; closes: #276703).
- Update Japanese (thanks, Kenshi Muto; closes: #277438).
|
|
|
|
|
|
|
|
1:3.8.1p1-8.sarge.1" to "OpenSSH_3.8.1p1 Debian-8.sarge.1", as some SSH
implementations apparently have problems with the long version string. This
is of course a bug in those implementations, but since the extent of the
problem is unknown it's best to play safe (closes: #275731).
|
|
#277438).
|
|
#276703).
|
|
closes: #275895).
|
