| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2012-04-01 | Use dpkg-buildflags, including for hardening support; drop use of | Colin Watson | |
| hardening-includes. | |||
| 2012-03-19 | releasing version 1:5.9p1-4 | Colin Watson | |
| 2012-03-19 | Disable OpenSSL version check again, as its SONAME is sufficient | Colin Watson | |
| nowadays (closes: #664383). | |||
| 2012-02-24 | releasing version 1:5.9p1-3 | Colin Watson | |
| 2012-02-24 | Move ssh-krb5 to Section: oldlibs. | Colin Watson | |
| 2012-02-24 | slight simplification | Colin Watson | |
| 2012-02-24 | Ignore errors writing to console in init script (closes: #546743). | Colin Watson | |
| 2012-02-14 | * debconf template translations: | Colin Watson | |
| - Update Polish (thanks, Michał Kułach; closes: #659829). | |||
| 2011-11-09 | releasing version 1:5.9p1-2 | Colin Watson | |
| 2011-11-09 | Mark openssh-client and openssh-server as Multi-Arch: foreign. | Colin Watson | |
| 2011-09-08 | releasing version 1:5.9p1-1 | Colin Watson | |
| 2011-09-07 | Update OpenSSH FAQ to revision 1.112. | Colin Watson | |
| 2011-09-07 | merge respun 5.9p1 | Colin Watson | |
| 2011-09-07 | merge 5.9p1 (respun) | Colin Watson | |
| 2011-09-07 | Import 5.9p1 tarball (respun) | Colin Watson | |
| 2011-09-07 | - (djm) Respin OpenSSH-5.9p1 release | Damien Miller | |
| 2011-09-07 | - (djm) [README version.h] Correct version | Damien Miller | |
| 2011-09-06 | * New upstream release (http://www.openssh.org/txt/release-5.9). | Colin Watson | |
| - Introduce sandboxing of the pre-auth privsep child using an optional sshd_config(5) "UsePrivilegeSeparation=sandbox" mode that enables mandatory restrictions on the syscalls the privsep child can perform. - Add new SHA256-based HMAC transport integrity modes from http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt. - The pre-authentication sshd(8) privilege separation slave process now logs via a socket shared with the master process, avoiding the need to maintain /dev/log inside the chroot (closes: #75043, #429243, #599240). - ssh(1) now warns when a server refuses X11 forwarding (closes: #504757). - sshd_config(5)'s AuthorizedKeysFile now accepts multiple paths, separated by whitespace (closes: #76312). The authorized_keys2 fallback is deprecated but documented (closes: #560156). - ssh(1) and sshd(8): set IPv6 traffic class from IPQoS, as well as IPv4 ToS/DSCP (closes: #498297). - ssh-add(1) now accepts keys piped from standard input. E.g. "ssh-add - < /path/to/key" (closes: #229124). - Clean up lost-passphrase text in ssh-keygen(1) (closes: #444691). - Say "required" rather than "recommended" in unprotected-private-key warning (LP: #663455). | |||
| 2011-09-06 | autoreconf | Colin Watson | |
| 2011-09-06 | merge 5.9p1 | Colin Watson | |
| 2011-09-06 | actually, let's upstream-tag the revision with a tarball parent instead | Colin Watson | |
| 2011-09-06 | keep bzr-builddeb happier | Colin Watson | |
| 2011-09-06 | Import 5.9p1 tarball | Colin Watson | |
| 2011-09-05 | bzr get -> bzr branch | Colin Watson | |
| 2011-09-05 | - (djm) Release OpenSSH-5.9 | Damien Miller | |
| 2011-09-05 | - (djm) [README contrib/caldera/openssh.spec contrib/redhat/openssh.spec] | Damien Miller | |
| [contrib/suse/openssh.spec] Update version numbers. | |||
| 2011-09-04 | - (dtucker) [ssh-keygen.c ssh-pkcs11.c] Bug #1929: add null implementations | Darren Tucker | |
| ofsh-pkcs11.cpkcs_init and pkcs_terminate for building without dlopen support. | |||
| 2011-09-04 | - (djm) [regress/connect-privsep.sh regress/test-exec.sh] demote fatal | Damien Miller | |
| regress errors for the sandbox to warnings. ok tim dtucker | |||
| 2011-08-29 | - (djm) [openbsd-compat/port-linux.c] Suppress logging when attempting | Damien Miller | |
| to switch SELinux context away from unconfined_t, based on patch from Jan Chadima; bz#1919 ok dtucker@ | |||
| 2011-08-28 | - (dtucker) [auth-skey.c] Add log.h to fix build --with-skey. | Darren Tucker | |
| 2011-08-17 | - (tim) [configure.ac] Typo in error message spotted by Andy Tsouladze | Tim Rice | |
| 2011-08-17 | - (djm) [regress/cipher-speed.sh regress/try-ciphers.sh] disable HMAC-SHA2 | Damien Miller | |
| MAC tests for platforms that hack EVP_SHA2 support | |||
| 2011-08-17 | - djm@cvs.openbsd.org 2011/08/02 01:23:41 | Damien Miller | |
| [regress/cipher-speed.sh regress/try-ciphers.sh] add SHA256/SHA512 based HMAC modes | |||
| 2011-08-17 | - markus@cvs.openbsd.org 2011/06/30 22:44:43 | Damien Miller | |
| [connect-privsep.sh] test with sandbox enabled; ok djm@ | |||
| 2011-08-17 | - dtucker@cvs.openbsd.org 2011/06/03 05:35:10 | Damien Miller | |
| [regress/cfgmatch.sh] use OBJ to find test configs, patch from Tim Rice | |||
| 2011-08-17 | - (djm) [contrib/ssh-copy-id] Missing backlslash; spotted by | Damien Miller | |
| bisson AT archlinux.org | |||
| 2011-08-17 | - (djm) [configure.ac] error out if the host lacks the necessary bits for | Damien Miller | |
| an explicitly requested sandbox type | |||
| 2011-08-17 | - (djm) [ openbsd-compat/bsd-cygwin_util.c openbsd-compat/bsd-cygwin_util.h] | Damien Miller | |
| binary_pipe is no longer required on Cygwin; patch from Corinna Vinschen | |||
| 2011-08-16 | - (tim) [mac.c myproposal.h] Wrap SHA256 and SHA512 in ifdefs for | Tim Rice | |
| OpenSSL 0.9.7. ok djm | |||
| 2011-08-12 | - (djm) [contrib/ssh-copy-id] Fix failure for cases where the path to the | Damien Miller | |
| identify file contained whitespace. bz#1828 patch from gwenael.lambrouin AT gmail.com; ok dtucker@ | |||
| 2011-08-12 | - (djm) [contrib/redhat/openssh.spec contrib/redhat/sshd.init] | Damien Miller | |
| [contrib/suse/openssh.spec contrib/suse/rc.sshd] Updated RHEL and SLES init scrips from imorgan AT nas.nasa.gov | |||
| 2011-08-12 | - (dtucker) [openbsd-compat/port-linux.c] Bug 1924: Improve selinux context | Darren Tucker | |
| change error by reporting old and new context names Patch from jchadima at redhat. | |||
| 2011-08-07 | - dtucker@cvs.openbsd.org 2011/08/07 12:55:30 | Darren Tucker | |
| [sftp.1] typo, fix from Laurent Gautrot | |||
| 2011-08-07 | - jmc@cvs.openbsd.org 2010/10/14 20:41:28 | Darren Tucker | |
| [moduli.5] probabalistic -> probabilistic; from naddy | |||
| 2011-08-07 | - sobrado@cvs.openbsd.org 2009/10/28 08:56:54 | Darren Tucker | |
| [moduli.5] "Diffie-Hellman" is the usual spelling for the cryptographic protocol first published by Whitfield Diffie and Martin Hellman in 1976. ok jmc@ | |||
| 2011-08-07 | - (dtucker) OpenBSD CVS Sync | Darren Tucker | |
| - jmc@cvs.openbsd.org 2008/06/26 06:59:39 [moduli.5] tweak previous; | |||
| 2011-08-06 | - djm@cvs.openbsd.org 2011/08/02 23:15:03 | Damien Miller | |
| [ssh.c] typo in comment | |||
| 2011-08-06 | - djm@cvs.openbsd.org 2011/08/02 23:13:01 | Damien Miller | |
| [version.h] crank now, release later | |||
| 2011-08-06 | - djm@cvs.openbsd.org 2011/08/02 01:22:11 | Damien Miller | |
| [mac.c myproposal.h ssh.1 ssh_config.5 sshd.8 sshd_config.5] Add new SHA256 and SHA512 based HMAC modes from http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt Patch from mdb AT juniper.net; feedback and ok markus@ | |||
| 2011-08-06 | - markus@cvs.openbsd.org 2011/08/01 19:18:15 | Damien Miller | |
| [gss-serv.c] prevent post-auth resource exhaustion (int overflow leading to 4GB malloc); report Adam Zabrock; ok djm@, deraadt@ | |||
 |
index : openssh.git | |
| summaryrefslogtreecommitdiff |