summaryrefslogtreecommitdiff
path: root/ChangeLog
AgeCommit message (Collapse)Author
2006-01-02 - stevesk@cvs.openbsd.org 2006/01/01 10:08:48Damien Miller
[misc.c] no trailing "\n" for debug()
2006-01-02 - stevesk@cvs.openbsd.org 2006/01/01 08:59:27Damien Miller
[includes.h misc.c] move <net/if.h>; ok djm@
2006-01-02 - jmc@cvs.openbsd.org 2005/12/31 13:45:19Damien Miller
[ssh.1] .Nm does not require an argument;
2006-01-02 - jmc@cvs.openbsd.org 2005/12/31 13:44:04Damien Miller
[ssh.1] clean up ENVIRONMENT a little;
2006-01-02 - (djm) OpenBSD CVS SyncDamien Miller
- jmc@cvs.openbsd.org 2005/12/31 10:46:17 [ssh.1] merge the "LOGIN SESSION AND REMOTE EXECUTION" and "SERVER AUTHENTICATION" sections into "AUTHENTICATION"; some rewording done to make the text read better, plus some improvements from djm; ok djm
2006-01-02 - (djm) [README.tun] Add README.tun, missed during sync of tun(4) supportDamien Miller
2006-01-01 - (djm) [openbsd-compat/port-tun.c] Linux needs linux/if.h tooDamien Miller
2006-01-01 - (djm) [configure.ac] Fix linux/if_tun.h testDamien Miller
2006-01-01 - (djm) [Makefile.in configure.ac includes.h misc.c]Damien Miller
[openbsd-compat/port-tun.c openbsd-compat/port-tun.h] Add support for tunnel forwarding for FreeBSD and NetBSD. NetBSD's support is limited to IPv4 tunnels only, and most versions don't support the tap(4) device at all.
2005-12-31 - (djm) [configure.ac] oops, make that linux/if_tun.hDamien Miller
2005-12-31 - (djm) [configure.ac] Disable Linux tun(4) compat code if linux/tun.h doesDamien Miller
not exist
2005-12-31 - (djm) [openbsd-compat/port-tun.c openbsd-compat/port-tun.h configure.ac]Damien Miller
[serverloop.c ssh.c openbsd-compat/Makefile.in] [openbsd-compat/openbsd-compat.h] Implement tun(4) forwarding compatability support for Linux, diff from reyk@
2005-12-31 - stevesk@cvs.openbsd.org 2005/12/31 01:38:45Damien Miller
[ssh.1] document -MM; ok djm@
2005-12-31 - jmc@cvs.openbsd.org 2005/12/30 16:59:00Damien Miller
[sftp.1] do not suggest that interactive authentication will work with the -b flag; based on a diff from john l. scarfone; ok djm
2005-12-31 - reyk@cvs.openbsd.org 2005/12/30 15:56:37Damien Miller
[channels.c channels.h clientloop.c] add channel output filter interface. ok djm@, suggested by markus@
2005-12-31 - (djm) OpenBSD CVS SyncDamien Miller
- stevesk@cvs.openbsd.org 2005/12/28 22:46:06 [canohost.c channels.c clientloop.c] use 'break-in' for consistency; ok deraadt@ ok and input jmc@
2005-12-28 (tim) [buildpkg.sh.in] grep for $SSHDUID instead of $SSHDGID on /etc/passwdTim Rice
2005-12-24 - djm@cvs.openbsd.org 2005/12/24 02:27:41Damien Miller
[session.c sshd.c] eliminate some code duplicated in privsep and non-privsep paths, and explicitly clear SIGALRM handler; "groovy" deraadt@
2005-12-24 - jmc@cvs.openbsd.org 2005/12/23 23:46:23Damien Miller
[ssh.1] less mark up for -c;
2005-12-24 - jmc@cvs.openbsd.org 2005/12/23 14:55:53Damien Miller
[ssh.1] - sync the description of -e w/ synopsis - simplify the description of -I - note that -I is only available if support compiled in, and that it isn't by default feedback/ok djm@
2005-12-24 - jmc@cvs.openbsd.org 2005/12/22 11:23:42Damien Miller
[ssh.1] expand the description of -w somewhat; help/ok reyk
2005-12-24 - jmc@cvs.openbsd.org 2005/12/22 10:31:40Damien Miller
[ssh_config.5] put the description of "UsePrivilegedPort" in the correct place;
2005-12-24 - stevesk@cvs.openbsd.org 2005/12/21 22:44:26Damien Miller
[sshd.8] clarify precedence of -p, Port, ListenAddress; ok and help jmc@
2005-12-24 - jmc@cvs.openbsd.org 2005/12/21 12:53:31Damien Miller
[ssh.1] -Y does X11 forwarding too; ok markus
2005-12-24 - jmc@cvs.openbsd.org 2005/12/21 11:57:25Damien Miller
[ssh.1] options now described `above', rather than `later';
2005-12-24 - jmc@cvs.openbsd.org 2005/12/21 11:48:16Damien Miller
[ssh.1] -L and -R descriptions are now above, not below, ~C description;
2005-12-24 - jmc@cvs.openbsd.org 2005/12/20 22:09:41Damien Miller
[ssh.1] move info on ssh return values and config files up into the main description;
2005-12-24 - jmc@cvs.openbsd.org 2005/12/20 22:02:50Damien Miller
[ssh.1] .Ss -> .Sh: subsections have not made this page more readable
2005-12-24 - jmc@cvs.openbsd.org 2005/12/20 21:59:43Damien Miller
[ssh.1] merge the sections on protocols 1 and 2 into one section on authentication; feedback djm dtucker ok deraadt markus dtucker
2005-12-20 - dtucker@cvs.openbsd.org 2005/12/20 04:41:07Darren Tucker
[ssh.c] exit(255) on error to match description in ssh(1); bz #1137; ok deraadt@
2005-12-20 - stevesk@cvs.openbsd.org 2005/12/17 21:36:42Darren Tucker
[ssh_config.5] spelling: intented -> intended
2005-12-20 - stevesk@cvs.openbsd.org 2005/12/17 21:13:05Darren Tucker
[ssh_config.5 session.c] spelling: fowarding, fowarded
2005-12-20missed changelog entryDarren Tucker
2005-12-20 - jmc@cvs.openbsd.org 2005/12/16 18:14:40Darren Tucker
[ssh.1] signpost the protocol sections;
2005-12-20 - jmc@cvs.openbsd.org 2005/12/16 18:08:53Darren Tucker
[ssh.1] simplify a sentence;
2005-12-20 - jmc@cvs.openbsd.org 2005/12/16 18:07:08Darren Tucker
[ssh.1] move the option descriptions up the page: start of a restructure; ok markus deraadt
2005-12-20 - (dtucker) OpenBSD CVS SyncDarren Tucker
- reyk@cvs.openbsd.org 2005/12/13 15:03:02 [serverloop.c] if forced_tun_device is not set, it is -1 and not SSH_TUNID_ANY
2005-12-19 - (dtucker) [cipher-aes.c cipher-ctr.c cipher.c configure.acDarren Tucker
openbsd-compat/openssl-compat.h] Check for and work around broken AES ciphers >128bit on (some) Solaris 10 systems. ok djm@
2005-12-17 - (dtucker) [configure.ac openbsd-compat/bsd-snprintf.c] Bug #1133: OurDarren Tucker
snprintf replacement can have a conflicting declaration in HP-UX's system headers (const vs. no const) so we now check for and work around it. Patch from the dynamic duo of David Leonard and Ted Percival.
2005-12-17 - (dtucker) [defines.h] HP-UX system headers define "YES" and "NO" whichDarren Tucker
scp.c also uses, so undef them here.
2005-12-14 - dtucker@cvs.openbsd.org 2005/12/30 04:36:39Darren Tucker
[regress/scp-ssh-wrapper.sh] Fix assumption about how many args scp will pass; ok djm@
2005-12-13 - (djm) [misc.c] Disable tunnel code for non-OpenBSD (for now), enableDamien Miller
again by providing a sys_tun_open() function for your platform and setting the CUSTOM_SYS_TUN_OPEN define. More work is required to match OpenBSD's tunnel protocol, which prepends the address family to the packet
2005-12-13 - markus@cvs.openbsd.org 2005/12/12 13:46:18Damien Miller
[channels.c channels.h session.c] make sure protocol messages for internal channels are ignored. allow adjust messages for non-open channels; with and ok djm@
2005-12-13 - jmc@cvs.openbsd.org 2005/12/08 21:37:50Damien Miller
[ssh_config.5] new sentence, new line;
2005-12-13 - reyk@cvs.openbsd.org 2005/12/08 18:34:11Damien Miller
[auth-options.c includes.h misc.c misc.h readconf.c servconf.c] [serverloop.c ssh.c ssh_config.5 sshd_config.5 configure.ac] two changes to the new ssh tunnel support. this breaks compatibility with the initial commit but is required for a portable approach. - make the tunnel id u_int and platform friendly, use predefined types. - support configuration of layer 2 (ethernet) or layer 3 (point-to-point, default) modes. configuration is done using the Tunnel (yes|point-to-point|ethernet|no) option is ssh_config(5) and restricted by the PermitTunnel (yes|point-to-point|ethernet|no) option in sshd_config(5). ok djm@, man page bits by jmc@
2005-12-13 - jmc@cvs.openbsd.org 2005/12/08 15:06:29Damien Miller
[ssh_config.5] keep options in order;
2005-12-13 - jmc@cvs.openbsd.org 2005/12/08 14:59:44Damien Miller
[ssh.1 ssh_config.5] make `!command' a little clearer; ok reyk
2005-12-13 - jmc@cvs.openbsd.org 2005/12/07 10:52:13Damien Miller
[ssh.1] - avoid line split in SYNOPSIS - add args to -w - kill trailing whitespace
2005-12-13 - djm@cvs.openbsd.org 2005/12/07 03:52:22Damien Miller
[clientloop.c] reyk forgot to compile with -Werror (missing header)
2005-12-13 - reyk@cvs.openbsd.org 2005/12/06 22:38:28Damien Miller
[auth-options.c auth-options.h channels.c channels.h clientloop.c] [misc.c misc.h readconf.c readconf.h scp.c servconf.c servconf.h] [serverloop.c sftp.c ssh.1 ssh.c ssh_config ssh_config.5 sshconnect.c] [sshconnect.h sshd.8 sshd_config sshd_config.5] Add support for tun(4) forwarding over OpenSSH, based on an idea and initial channel code bits by markus@. This is a simple and easy way to use OpenSSH for ad hoc virtual private network connections, e.g. administrative tunnels or secure wireless access. It's based on a new ssh channel and works similar to the existing TCP forwarding support, except that it depends on the tun(4) network interface on both ends of the connection for layer 2 or layer 3 tunneling. This diff also adds support for LocalCommand in the ssh(1) client. ok djm@, markus@, jmc@ (manpages), tested and discussed with others