summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2009-11-12Use x11.pc when compiling/linking gnome-ssh-askpass2 (closes: #555951).Colin Watson
2009-10-05releasing version 1:5.1p1-8Colin Watson
2009-10-04Pass $SSHD_OPTS when checking configuration too (thanks, "sobtwmxt";Colin Watson
closes: #548662).
2009-09-30Fix grammar in if-up script (closes: #549128).Colin Watson
2009-09-17Build-depend on libselinux1-dev on sh4 too (thanks, Nobuhiro Iwamatsu;Colin Watson
closes: #547103).
2009-08-28Build with just -fPIC on mips/mipsel, not -fPIE as well (thanks, LIU Qi;Colin Watson
closes: #538313).
2009-07-31releasing version 1:5.1p1-7Colin Watson
2009-07-31Upgrade to debhelper v7.Colin Watson
2009-07-31Use 'which' rather than 'type' in maintainer scripts.Colin Watson
2009-07-31Add ${misc:Depends} to keep Lintian happy.Colin Watson
2009-07-28Set umask to 022 in the init script as well as postinsts (closes:Colin Watson
#539030).
2009-07-24Update config.guess and config.sub from autotools-dev 20090611.1Colin Watson
(closes: #538301).
2009-06-05releasing version 1:5.1p1-6Colin Watson
2009-06-05this isn't needed, already removed aboveColin Watson
2009-06-05Use invoke-rc.d in openssh-server's if-up script.Colin Watson
2009-06-05Remove /var/run/sshd from openssh-server package; it will be created atColin Watson
run-time before starting the server.
2009-06-05Build with -fPIC on mips/mipsel (thanks, Luk Claes; closes: #531942).Colin Watson
2009-05-28Check if delgroup is present in openssh-client.postrm (closes: #530501).Colin Watson
2009-04-06Add a comment above PermitRootLogin in sshd_config pointing toColin Watson
README.Debian.
2009-01-28Add ufw integration (thanks, Didier Roche; seeColin Watson
https://wiki.ubuntu.com/UbuntuFirewall#Integrating%20UFW%20with%20Packages; LP: #261884).
2009-01-14Disable OOM adjustment for vserver/OpenVZ (thanks, Karl Chen; closes:Colin Watson
#511771).
2009-01-14Open /proc/self/oom_adj with O_RDONLY or O_WRONLY as necessary, ratherColin Watson
than O_RDWR.
2009-01-14releasing version 1:5.1p1-5Colin Watson
2009-01-14While the above is a valuable sanity-check, it turns out that it doesn'tColin Watson
really fix the bug (thanks to Kevin Price for testing), so for the meantime we'll just use '/etc/init.d/ssh restart', even though it is unfortunately heavyweight.
2009-01-13fix reversed logicColin Watson
2009-01-13Check that /var/run/sshd.pid exists and that the process ID listed thereColin Watson
corresponds to sshd before running '/etc/init.d/ssh reload' from if-up script; SIGHUP is racy if called at boot before sshd has a chance to install its signal handler, but fortunately the pid file is written after that which lets us avoid the race (closes: #502444).
2009-01-13* Backport from upstream CVS (Markus Friedl):Colin Watson
- packet_disconnect() on padding error, too. Should reduce the success probability for the CPNI-957037 Plaintext Recovery Attack to 2^-18.
2008-11-23releasing version 1:5.1p1-4Colin Watson
2008-11-23Fix double-free when failing to parse a forwarding specification givenColin Watson
using ~C (closes: #505330; forwarded upstream as https://bugzilla.mindrot.org/show_bug.cgi?id=1539).
2008-11-23* Backport from upstream CVS (Markus Friedl):Colin Watson
- Only send eow and no-more-sessions requests to openssh 5 and newer; fixes interop problems with broken ssh v2 implementations (closes: #495917).
2008-10-09add upstream bug linkColin Watson
2008-10-09ssh-copy-id: Strip trailing colons from hostname (closes: #226172,Colin Watson
LP: #249706; thanks to Karl Goetz for nudging this along).
2008-09-30releasing version 1:5.1p1-3Colin Watson
2008-09-29Fix handling of zero-length server banners (thanks, Tomas Mraz; closes:Colin Watson
#497026).
2008-09-12Configure with --disable-strip; dh_strip will deal with strippingColin Watson
binaries and will honour DEB_BUILD_OPTIONS (thanks, Bernhard R. Link; closes: #498681).
2008-08-25only display "No blacklisted keys!" if there were any keys at allColin Watson
2008-08-25Remove unnecessary ssh-vulnkey output in non-verbose mode when noColin Watson
compromised or unknown keys were found (closes: #496495).
2008-07-29releasing version 1:5.1p1-2Colin Watson
2008-07-29Look for $SHELL on the path when executing ProxyCommands orColin Watson
LocalCommands (closes: #492728).
2008-07-25releasing version 1:5.1p1-1Colin Watson
2008-07-25add GSSAPIKeyExchange, GSSAPIStrictAcceptorCheck, and PermitBlacklistedKeys ↵Colin Watson
to sshd -T configuration dump
2008-07-25this doesn't seem to work yet; remove changelog entry claiming it does at ↵Colin Watson
least until I figure it out
2008-07-24revert accidental commitColin Watson
2008-07-24typoColin Watson
2008-07-23* Merge from Ubuntu:Colin Watson
- Add 'status' action to openssh-server init script, requiring lsb-base (>= 3.2-13) (thanks, Dustin Kirkland).
2008-07-23note SELinux status caching (LP: #237557) and ssh-keyscan rsa default (LP: ↵Colin Watson
#129794)
2008-07-23* debconf template translations:Colin Watson
- Update Korean (thanks, Sunjae Park; closes: #484821).
2008-07-23Add lintian overrides for empty /usr/share/doc/openssh-clientColin Watson
directories in openssh-server and ssh (necessary due to being symlink targets).
2008-07-22Say "GTK+" rather than "GTK" in ssh-askpass-gnome's description.Colin Watson
2008-07-22Remove our local version of moduli(5) now that there's one upstream.Colin Watson