summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2003-05-15 - jakob@cvs.openbsd.org 2003/05/14 18:16:20Damien Miller
[key.c key.h readconf.c readconf.h ssh_config.5 sshconnect.c] [dns.c dns.h README.dns ssh-keygen.1 ssh-keygen.c] add experimental support for verifying hos keys using DNS as described in draft-ietf-secsh-dns-xx.txt. more information in README.dns. ok markus@ and henning@
2003-05-15 - (djm) OpenBSD CVS SyncDamien Miller
- jmc@cvs.openbsd.org 2003/05/14 13:11:56 [ssh-agent.1] setup -> set up; from wiz@netbsd
2003-05-14 - (djm) Bug #258: sscanf("[0-9]") -> sscanf("[0123456789]") for portabilityDamien Miller
2003-05-14 - (dtucker) Set ai_socktype and ai_protocol in fake-getaddrinfo.c. ok djm@Darren Tucker
2003-05-14 - markus@cvs.openbsd.org 2003/05/14 08:57:49Damien Miller
[monitor.c] http://bugzilla.mindrot.org/show_bug.cgi?id=560 Privsep child continues to run after monitor killed. Pass monitor signals through to child; Darren Tucker
2003-05-14 - jmc@cvs.openbsd.org 2003/05/14 08:25:39Damien Miller
[sftp.1] - better formatting in SYNOPSIS - whitespace at EOL ok djm@
2003-05-14 - (djm) Avoid KrbV leak for MIT KerberosDamien Miller
2003-05-14 - (djm) Die screaming if start_pam() is called when UsePAM=noDamien Miller
2003-05-14Put in alphabetical orderDamien Miller
2003-05-14 - (djm) Add new UsePAM configuration directive to allow runtime controlDamien Miller
over usage of PAM. This allows non-root use of sshd when built with --with-pam
2003-05-14 - (djm) Make portable build with MIT krb5 (some issues remain)Damien Miller
2003-05-14 - markus@cvs.openbsd.org 2003/05/14 02:15:47Damien Miller
[auth2.c monitor.c sshconnect2.c auth2-krb5.c] implement kerberos over ssh2 ("kerberos-2@ssh.com"); tested with jakob@ server interops with commercial client; ok jakob@ djm@
2003-05-14 - djm@cvs.openbsd.org 2003/05/14 01:00:44Damien Miller
[sftp.1] emphasise the batchmode functionality and make reference to pubkey auth, both of which are FAQs; ok markus@
2003-05-14 - markus@cvs.openbsd.org 2003/05/14 00:52:59Damien Miller
[ssh2.h] ranges for per auth method messages
2003-05-14 - markus@cvs.openbsd.org 2003/05/12 18:35:18Damien Miller
[ssh-keyscan.1] typo: DSA keys are of type ssh-dss; Brian Poole
2003-05-14 - markus@cvs.openbsd.org 2003/05/12 16:55:37Damien Miller
[sshconnect2.c] for pubkey authentication try the user keys in the following order: 1. agent keys that are found in the config file 2. other agent keys 3. keys that are only listed in the config file this helps when an agent has many keys, where the server might close the connection before the correct key is used. report & ok pb@
2003-05-14 - markus@cvs.openbsd.org 2003/05/11 20:30:25Damien Miller
[channels.c clientloop.c serverloop.c session.c ssh.c] make channel_new() strdup the 'remote_name' (not the caller); ok theo
2003-05-14 - markus@cvs.openbsd.org 2003/05/11 16:56:48Damien Miller
[authfile.c ssh-keygen.c] change key_load_public to try to read a public from: rsa1 private or rsa1 public and ssh2 keys. this makes ssh-keygen -e fail for ssh1 keys more gracefully for example; report from itojun (netbsd pr 20550).
2003-05-14 - david@cvs.openbsd.org 2003/04/30 20:41:07Damien Miller
[sshd.8] fix invalid .Pf macro usage introduced in previous commit ok jmc@ mouring@
2003-05-14 - mouring@cvs.openbsd.org 2003/04/30 01:16:20Damien Miller
[sshd.8 sshd_config.5] Escape ?, * and ! in .Ql for nroff compatibility. OpenSSH Portable Bug #550 and * escaping suggested by jmc@.
2003-05-14 - deraadt@cvs.openbsd.org 2003/04/26 04:29:49Damien Miller
[ssh-keyscan.c] -t in usage(); rogier@quaak.org
2003-05-14 - markus@cvs.openbsd.org 2003/04/16 14:35:27Damien Miller
[auth.h] document struct Authctxt; with solar
2003-05-14 - mouring@cvs.openbsd.org 2003/04/14 21:31:27Damien Miller
[sftp-int.c] Missing globfree(&g) in process_put() spotted by Vince Brimhall <VBrimhall@novell.com>. ok@ Theo
2003-05-14 - markus@cvs.openbsd.org 2003/04/14 14:17:50Damien Miller
[channels.c sshconnect.c sshd.c ssh-keyscan.c] avoid hardcoded SOCK_xx; with itojun@; should allow ssh over SCTP
2003-05-14 - naddy@cvs.openbsd.org 2003/04/12 11:40:15Damien Miller
[ssh.1] document -V switch, fix wording; ok markus@
2003-05-14 - markus@cvs.openbsd.org 2003/04/12 10:15:36Damien Miller
[misc.c] debug->debug2
2003-05-14 - markus@cvs.openbsd.org 2003/04/12 10:13:57Damien Miller
[cipher.c] hide cipher details; ok djm@
2003-05-14 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2003/04/09 12:00:37 [readconf.c] strip trailing whitespace from config lines before parsing. Fixes bz 528; ok markus@
2003-05-14 - (djm) RCSID sync w/ OpenBSDDamien Miller
2003-05-14 - (djm) Bug #117: Don't lie to PAM about usernameDamien Miller
2003-05-12 - (djm) Redhat spec: Don't install profile.d scripts when notDamien Miller
building with GNOME/GTK askpass (patch from bet@rahul.net)
2003-05-10 - (djm) 2-clause license on loginrec.c, with permission fromDamien Miller
andre@ae-35.com
2003-05-10 - (djm) Merge FreeBSD PAM code: replaces PAM password auth kludge withDamien Miller
proper challenge-response module
2003-05-10 - (dtucker) Bug #536: Test for and work around openpty/controlling ttyDarren Tucker
problem on Linux (fixes "could not set controlling tty" errors). Also renames STREAMS_PUSH_ACQUIRES_CTTY to the more generic SSHD_ACQUIRES_CTTY and moves the Solaris-specific comments to configure.ac.
2003-05-10 - (dtucker) Bug #318: Create ssh_prng_cmds.out during "make" rather thanDarren Tucker
"make install". Patch by roth@feep.net.
2003-05-04Add bug# to ChangeLog.Darren Tucker
2003-05-04 - (dtucker) Move #include of bsd-cygwin_util.h to openbsd-compat.h. Patch fromDarren Tucker
vinschen@redhat.com.
2003-05-03 - (dtucker) Add missing "void" to record_failed_login in bsd-cray.c. NotedDarren Tucker
by wendyp@cray.com.
2003-05-02Added ok for record_failed_login() changeDarren Tucker
2003-05-02 - (dtucker) Move handling of bad password authentications into a platformDarren Tucker
specific record_failed_login() function (affects AIX & Unicos).
2003-05-02 - (dtucker) Bug #544: ignore invalid cmsg_type on Linux 2.0 kernels,Darren Tucker
privsep should now work.
2003-04-29 - (djm) Add back radix.o (used by AFS support), after it went missing fromDamien Miller
Makefile many moons ago - (djm) Apply "owl-always-auth" patch from Openwall/Solar Designer - (djm) Fix blibpath specification for AIX/gcc - (djm) Some systems have basename in -lgen. Fix from ayamura@ayamura.org
2003-04-28 - (bal) [defines.h progressmeter.c scp.c] Some more culling of non 64bitBen Lindstrom
hacked code.
2003-04-27 - (bal) auth2.c same changed as above.Ben Lindstrom
2003-04-27 - (bal) auth1.c minor resync while looking at the code.Ben Lindstrom
2003-04-27 - (bal) Since we don't support platforms lacking u_int_64. We mayBen Lindstrom
as well clean out some of those evil #ifdefs
2003-04-27 - (bal) Bug #541: return; was dropped by mistake. Reported byBen Lindstrom
furrier@iglou.com
2003-04-09 - (djm) Bug #539: Specify creation mode with O_CREAT for lastlog. ReportDamien Miller
from matth@eecs.berkeley.edu
2003-04-09 - (djm) Fix missed log => logit occurance (reference by function pointer)Damien Miller
2003-04-09 - hin@cvs.openbsd.org 2003/04/09 08:23:52Damien Miller
[servconf.c] Don't include <krb.h> when compiling with Kerberos 5 support