summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2003-06-05 - (djm) Merge all the openbsd/fake-* into fake-rfc2553.[ch]Damien Miller
2003-06-05 - (djm) Don't use xmalloc() or pull in toplevel headers in fake-* codeDamien Miller
2003-06-05KNFDamien Miller
2003-06-05 - (djm) Implement paranoid priv dropping checks, based on:Damien Miller
"SetUID demystified" - Hao Chen, David Wagner and Drew Dean Proceedings of USENIX Security Symposium 2002
2003-06-05Put AI_NUMERICHOST back where it belongs.Darren Tucker
2003-06-05 - (djm) Support AI_NUMERICHOST in fake-getaddrinfo.c. Needed for recentDamien Miller
canohost.c changes.
2003-06-05Revert recently introduced typo: AI_NUMERICHOST -> NI_NUMERICHOSTDarren Tucker
2003-06-04 - (djm) Always use mysignal() for SIGALRMDamien Miller
2003-06-04 - djm@cvs.openbsd.org 2003/06/04 12:41:22Damien Miller
[sftp.c] kill ssh process on receipt of signal; ok markus@
2003-06-04 - djm@cvs.openbsd.org 2003/06/04 12:40:39Damien Miller
[scp.c] kill ssh process upon receipt of signal, bz #241. based on patch from esb AT hawaii.edu; ok markus@
2003-06-04 - djm@cvs.openbsd.org 2003/06/04 12:18:49Damien Miller
[scp.c] ansify; ok markus@
2003-06-04 - djm@cvs.openbsd.org 2003/06/04 12:03:59Damien Miller
[serverloop.c] remove bitrotten commet; ok markus@
2003-06-04 - (djm) Update to fix of bug #584: lock card before return.Damien Miller
From larsch@trustcenter.de
2003-06-04 - djm@cvs.openbsd.org 2003/06/04 10:23:48Damien Miller
[sshd.c] remove duplicated group-dropping code; ok markus@
2003-06-04 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2003/06/04 08:25:18 [sshconnect.c] disable challenge/response and keyboard-interactive auth methods upon hostkey mismatch. based on patch from fcusack AT fcusack.com. bz #580; ok markus@
2003-06-04 - (djm) Bug #584: scard-opensc.c doesn't work without PIN. Patch fromDamien Miller
larsch@trustcenter.de; ok markus@
2003-06-04 - (djm) Bug #577 - wrong flag in scard-opensc.c sc_private_decrypt.Damien Miller
ok markus@
2003-06-04 - (djm) Bug #573 - Remove unneeded Krb headers and compat goop. Patch fromDamien Miller
simon@sxw.org.uk (Also matches a change in OpenBSD a while ago)
2003-06-03change "No more 4-term BSD licenses in our tree" toDamien Miller
"No more 4-term BSD licenses in linked code" mdoc2man.pl is 4-term BSDL
2003-06-03a - millert@cvs.openbsd.org 2003/06/03 02:56:16Damien Miller
[scp.c] Remove the advertising clause in the UCB license which Berkeley rescinded 22 July 1999. Proofed by myself and Theo.
2003-06-03 - (dtucker) [port-aix.c bsd-cray.c] Fix uses of verify_reverse_mapping.Darren Tucker
2003-06-03trim prior to 3.6p1Damien Miller
2003-06-032-term license, matching the rest of loginrec codeDamien Miller
2003-06-03 - (djm) Sync openbsd-compat with OpenBSD CVS.Damien Miller
- No more 4-term BSD licenses in our tree
2003-06-03Removal of advertising clause in accordance with:Damien Miller
ftp://ftp.cs.berkeley.edu/pub/4bsd/README.Impt.License.Change ok theo@ and millert@
2003-06-03 - (djm) OpenBSD CVS SyncDamien Miller
- markus@cvs.openbsd.org 2003/06/02 09:17:34 [auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c] [canohost.c monitor.c servconf.c servconf.h session.c sshd_config] [sshd_config.5] deprecate VerifyReverseMapping since it's dangerous if combined with IP based access control as noted by Mike Harding; replace with a UseDNS option, UseDNS is on by default and includes the VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@ ok deraadt@, djm@ - (djm) Fix portable-specific uses of verify_reverse_mapping too
2003-06-03 - (djm) Replace setproctitle replacement with code derived fromDamien Miller
UCB sendmail
2003-06-02 - jakob@cvs.openbsd.org 2003/06/02 08:31:10Damien Miller
[ssh_config.5] VerifyHostKeyDNS is v2 only. ok markus@
2003-06-02 - deraadt@cvs.openbsd.org 2003/05/29 16:58:45Damien Miller
[sshd.c uidswap.c] seteuid and setegid; markus ok
2003-06-02 - djm@cvs.openbsd.org 2003/05/26 12:54:40Damien Miller
[sshconnect.c] fix format strings; ok markus@
2003-06-02RCS ID syncDamien Miller
2003-06-02remove a bit of diff which snuck into the copyright headerDamien Miller
2003-06-02 - (djm) Sync license on openbsd-compat/bindresvport.c with OpenBSD CVSDamien Miller
2003-06-02 - (djm) Fix use of macro before #define in cipher-aes.cDamien Miller
2003-06-02 - (djm) Remove "noip6" option from RedHat spec file. This may now beDamien Miller
set at runtime using AddressFamily option.
2003-06-01openbsd-compat/xmmap.[ch] License clarifications. Add missing CVS ID.Tim Rice
2003-06-02 - (djm) Always use saved_argv in sshd.c as compat_init_setproctitle mayDamien Miller
clobber
2003-06-02 - (djm) Fix segv from bad reordering in auth-pam.cDamien Miller
2003-06-02 - (djm) Fix segv from bad reordering in auth-pam.cDamien Miller
2003-06-02sync logintest license with that of loginrec.cDamien Miller
2003-06-01License clarifications.Ben Lindstrom
bsd-nextstep.[ch] - myself bsd-waitpid.[ch] - myself port-irix.[ch] - Denis Parker & Michael Stone (original coders when done in session.c)
2003-05-30 - (dtucker) Define SSHD_ACQUIRES_CTTY for NCR MP-RAS and Reliant Unix.Darren Tucker
I'm pretty sure these are required. I also want to add -D_XOPEN_SOURCE=1 -D_XOPEN_SOURCE_EXTENDED=1 to CPPFLAGS for MP-RAS but I haven't had confirmation that it will not break anything else.
2003-05-30 - (dtucker) Add missing semicolon in md5crypt.c, patch from openssh atDarren Tucker
roumenpetrov.info
2003-05-26 - (djm) Avoid auth2-chall.c warning when compiling withoutDamien Miller
PAM, BSD_AUTH and SKEY
2003-05-26 - djm@cvs.openbsd.org 2003/05/24 09:30:40Damien Miller
[authfile.c monitor.c sftp-common.c sshpty.c] cast some types for printing; ok markus@ (missed a hunk)
2003-05-25remove #include we don't needDamien Miller
2003-05-25 - djm@cvs.openbsd.org 2003/05/24 09:30:40Damien Miller
[authfile.c monitor.c sftp-common.c sshpty.c] cast some types for printing; ok markus@
2003-05-25- (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2003/05/24 09:02:22 [log.c] pass logged data through strnvis; ok markus
2003-05-24 - (dtucker) Correct --osfsia in INSTALL. Patch by skeleten at shillest.netDarren Tucker
2003-05-23 - djm@cvs.openbsd.org 2003/05/23 08:29:30Damien Miller
[sshconnect.c] fix leak; ok markus@