| Age | Commit message (Collapse) | Author |
|---|
|
[LICENCE progressmeter.c]
replace 4 clause BSD licensed progressmeter code with a replacement
from Nils Nordman and myself; ok deraadt@
(copied from OpenBSD an re-applied portable changes)
|
|
[ssh-keygen.1 ssh-keygen.c]
Support for generating Diffie-Hellman groups (/etc/moduli) from ssh-keygen.
Based on code from Phil Karn, William Allen Simpson and Niels Provos.
ok markus@, thanks jmc@
|
|
[sshd_config]
remove AFS; itojun@
|
|
- markus@cvs.openbsd.org 2003/07/22 13:35:22
[auth1.c auth.h auth-passwd.c monitor.c monitor.h monitor_wrap.c
monitor_wrap.h readconf.c readconf.h servconf.c servconf.h session.c ssh.1
ssh.c ssh_config.5 sshconnect1.c sshd.c sshd_config.5 ssh.h]
remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1);
test+ok henning@
- (dtucker) [Makefile.in acconfig.h configure.ac] Remove KRB4/AFS support.
- (dtucker) [auth-krb4.c radix.c radix.h] Remove KRB4/AFS specific files.
I hope I got this right....
|
|
|
|
|
|
DISABLE_SHADOW. Fixes HP-UX compile error.
|
|
openbsd-compat/xcrypt.h] Split off encryption into xcrypt() interface,
and isolate shadow password functions. Tested in Solaris, but should
not break other platforms too badly (except maybe HP =). Also brings
auth-passwd.c into full sync with OpenBSD tree.
|
|
|
|
[regress/sftp-cmds.sh]
regress test for sftp arguments with escaped quotes; ok markus
|
|
[sftp-int.c]
fix sftp filename parsing for arguments with escaped quotes. bz #517;
ok markus
|
|
[scp.c]
userid is unsigned, but well, force it anyways; andrushock@korovino.net
|
|
[sshtty.c]
clear IUCLC in enter_raw_mode; from rob@pitman.co.za; ok deraadt@, fgs@
|
|
[ssh.c sshd.c]
don't exit on multiple -v or -d; ok deraadt@
|
|
[sshd.c]
remove undocumented -V option. would be only useful if openssh is used
as ssh v1 server for ssh.com's ssh v2.
|
|
Solaris/x86. Patch from jrhett at isite.net.
|
|
[sftp.c]
sync usage with manpage, add missing -R
|
|
[packet.c]
the 2^(blocksize*2) rekeying limit is too expensive for 3DES,
blowfish, etc, so enforce a 1GB limit for small blocksizes.
|
|
[key.c]
minor tweak: when generating the hex fingerprint, give strlcat the full
bound to the buffer, and add a comment below explaining why the
zero-termination is one less than the bound. markus@ ok
|
|
|
|
Call setauthdb() before loginfailed(), which may load password registry-
specific functions. Based on patch by cawlfiel@us.ibm.com.
|
|
undef'ing it.
|
|
loginfailed at all, so assume 3-arg loginfailed if not declared.
|
|
Convert aixloginmsg into platform-independant Buffer loginmsg.
|
|
|
|
Include AIX headers for authentication functions and make calls match
prototypes. Test for and handle 3-args and 4-arg variants of loginfailed.
|
|
searching libraries for it. Fixes build errors on NCR MP-RAS.
|
|
Apply atomicio typing change to these too.
|
|
[readconf.c readconf.h ssh-keysign.c ssh.c]
fix AddressFamily option in config file, from brent@graveland.net;
ok markus@
|
|
[regress/Makefile]
enable tests for dynamic fwd via socks (-D), uses nc(1)
|
|
[regress/dynamic-forward.sh]
add socks5; speedup; reformat; based on patch from dtucker@zip.com.au
|
|
[ssh.c]
convert hostkeyalias to lowercase, otherwise uppercase aliases will
not match at all; ok henning@
|
|
[channels.c ssh.1 ssh_config.5]
(re)add socks5 suppport to -D; ok djm@
now ssh(1) can act both as a socks 4 and socks 5 server and
dynamically forward ports.
|
|
[channels.c]
deny dynamic forwarding with -R for v1, too; ok djm@
|
|
[sshconnect.c]
memset 0, not \0; andrushock@korovino.net
|
|
[atomicio.c atomicio.h authfd.c clientloop.c monitor_wrap.c msg.c
progressmeter.c scp.c sftp-client.c ssh-keyscan.c ssh.h sshconnect.c
sshd.c]
deal with typing of write vs read in atomicio
|
|
[sshd.c]
report pidfile creation errors, based on patch from Roumen Petrov; ok markus@
|
|
getrrsetbyname() replacement. Patch from Roumen Petrov
|
|
flag modifications.
|
|
warnings on Solaris 2.5.1).
|
|
|
|
aj@dungeon.inka.de
|
|
of OpenSC. Report and patch from larsch@trustcenter.de
|
|
actually enable the feature, for those normally disabled. Patch by
openssh (at) roumenpetrov.info.
|
|
|
|
[readconf.c]
do not dump core for 'ssh -o proxycommand host'; ok deraadt@
|
|
[sftp-server.c]
Typo police: attribute is better written with an 'r'.
|
|
[auth2-hostbased.c auth2-pubkey.c auth2.c channels.c key.c key.h
monitor.c packet.c packet.h serverloop.c sshconnect2.c sshd.c]
int -> u_int; ok djm@, deraadt@, mouring@
|
|
[ssh_config.5]
document EnableSSHKeysign; bugzilla #599; ok deraadt@, jmc@
|
|
contrib/findssl.sh for OpenSSL header/library mismatches.
|
