Age | Commit message (Collapse) | Author |
|
|
|
to silence compiler warning, from vinschen at redhat.com.
|
|
-> NEED_SETPGRP), reported by Berhard Simon. ok tim@
|
|
post auth privsep disabled due to bug 1086 changes. Analysis and patch
by vinschen at redhat.com. OK tim@, dtucker@.
|
|
netinet/in_systm.h. OK dtucker@.
|
|
kraai at ftbfs.org.
|
|
for Solaris. OK dtucker@.
|
|
AC_CHECK_HEADERS test. Without it, if AC_CHECK_HEADERS is first run
by a platform specific check, builtin standard includes tests will be
skipped on the other platforms.
Analysis and suggestion by vinschen at redhat.com, patch by dtucker@.
OK tim@, djm@.
|
|
works with picky compilers. Patch from alex.kiernan at thus.net.
|
|
|
|
[version.h]
openssh 4.3
|
|
[contrib/suse/openssh.spec] Update versions ahead of release
|
|
[sshd.8]
small tweak;
|
|
- jmc@cvs.openbsd.org 2006/02/01 09:06:50
[sshd.8]
- merge sections on protocols 1 and 2 into a single section
- remove configuration file section
ok markus
|
|
determine the user's login name - needed for regress tests on Solaris
10 and OpenSolaris
|
|
[scp.c]
"scp a b c" shouldn't clobber "c" when it is not a directory, report and
fix from biorn@; ok markus@
|
|
[scp.sh]
regress test for "scp a b c" where "c" is not a directory
|
|
[scp.sh]
regression test for CVE-2006-0225 written by dtucker@
|
|
[scp.sh]
regress test for local to local scp copies; ok dtucker@
|
|
[regress/scp-ssh-wrapper.sh]
Fix assumption about how many args scp will pass; ok djm@
NB. ID sync only, we already had this
|
|
[regress/agent-getpeereid.sh]
all other scripts in this dir use $SUDO, not 'sudo', so pull this even
ok markus@
|
|
[regress/scp.sh]
allow SUDO=sudo; from Alexander Bluhm
|
|
[regress/try-ciphers.sh]
oops, new arcfour modes here too
|
|
[regress/test-exec.sh]
force addressfamily=inet for tests, unbreaking dynamic-forward regress for
recently committed nc SOCKS5 changes
|
|
- dtucker@cvs.openbsd.org 2005/03/10 10:20:39
[regress/forwarding.sh]
Regress test for ClearAllForwardings (bz #994); ok markus@
|
|
[regress/multiplex.sh]
Don't call cleanup in multiplex as test-exec will cleanup anyway
found by tim@, ok djm@
NB. ID sync only, we already had this
|
|
[misc.c misc.h scp.c sftp.c]
fix local arbitrary command execution vulnerability on local/local and
remote/remote copies (CVE-2006-0225, bz #1094), patch by
t8m AT centrum.cz, polished by dtucker@ and myself; ok markus@
|
|
[ssh.1]
remove an incorrect sentence;
reported by roumen petrov;
ok djm markus
|
|
[channels.c]
mark channel as write failed or dead instead of read failed on error
of the channel output filter.
ok markus@
|
|
[ssh.1]
add a section on verifying host keys in dns;
written with a lot of help from jakob;
feedback dtucker/markus;
ok markus
|
|
[sshd.8]
move subsections to full sections;
|
|
[sshd.8]
move the options description up the page, and a few additional tweaks
whilst in here;
ok markus
|
|
[ssh_config.5]
- word change, agreed w/ markus
- consistency fixes
|
|
opensshd.init script interpretter if /sbin/sh does not exist. ok tim@
|
|
[scp.1 ssh.1 ssh_config.5 sftp.1]
Document RekeyLimit. Based on patch from jan.iven at cern.ch from mindrot
#1056 with feedback from jmc, djm and markus; ok jmc@ djm@
|
|
[ssh.1]
add a section on ssh-based vpn, based on reyk's README.tun;
|
|
[ssh.1]
correction from deraadt
|
|
[ssh.1]
back out a sentence - AUTHENTICATION already documents this;
|
|
[ssh_config.5]
refer to TCP forwarding, rather than TCP/IP forwarding;
|
|
[sshd.8]
refer to TCP forwarding, rather than TCP/IP forwarding;
|
|
[ssh.1]
refer to `TCP' rather than `TCP/IP' in the context of connection
forwarding;
ok markus
|
|
[ssh.1]
split sections on tcp and x11 forwarding into two sections.
add an example in the tcp section, based on sth i wrote for ssh faq;
help + ok: djm markus dtucker
|
|
[ssh.1]
final round of whacking FILES for duplicate info, and some consistency
fixes;
ok djm
|
|
- jmc@cvs.openbsd.org 2006/01/06 13:27:32
[ssh.1]
weed out some duplicate info in the known_hosts FILES entries;
ok djm
|
|
tcpip service so it's always started after IP is up. Patch from
vinschen at redhat.com.
|
|
[misc.c]
check that stdio file descriptors are actually closed before clobbering
them in sanitise_stdfd(). problems occurred when a lower numbered fd was
closed, but higher ones weren't. spotted by, and patch tested by
Frédéric Olivié
|
|
[ssh.1]
-.Xr gzip 1 ,
|
|
[ssh.1]
+.Xr ssh-keyscan 1 ,
|
|
[ssh.1]
remove .Xr's to rsh(1) and telnet(1): they are hardly needed;
|
|
[ssh.1]
chop out some duplication in the .{r,s}hosts/{h,sh}osts.equiv FILES
entries;
ok markus
|