summaryrefslogtreecommitdiff
path: root/ChangeLog
AgeCommit message (Collapse)Author
2005-06-17Manoj Srivastava:Colin Watson
- Added SELinux capability, and turned it on be default. Added restorecon calls in preinst and postinst (should not matter if the machine is not SELinux aware). By and large, the changes made should have no effect unless the rules file calls --with-selinux; and even then there should be no performance hit for machines not actively running SELinux. - Modified the preinst and postinst to call restorecon to set the security context for the generated public key files. - Added a comment to /etc/pam.d/ssh to indicate that an SELinux system may want to also include pam_selinux.so.
2005-05-25 - (djm) Release 4.1p1Damien Miller
2005-05-25 - (dtucker) [openbsd-compat/bsd-cygwin_util.c] Ensure sufficient memoryDarren Tucker
allocation when retrieving core Windows environment. Add CYGWIN variable to propagated variables. Patch from vinschen at redhat.com, ok djm@
2005-05-25 - (dtucker) [openbsd-compat/bsd-cygwin_util.c] Ensure sufficient memoryDarren Tucker
allocation when retrieving core Windows environment. Add CYGWIN variable to propagated variables. Patch from vinschen at redhat.com, ok djm@
2005-05-25 - (dtucker) [auth-pam.c] Since people don't seem to be getting the messageDarren Tucker
that USE_POSIX_THREADS is unsupported, not recommended and generally a bad idea, it is now known as UNSUPPORTED_POSIX_THREADS_HACK. Attempting to use USE_POSIX_THREADS will now generate an error so we don't silently change behaviour. ok djm@
2005-05-25 - (djm) [contrib/caldera/openssh.spec contrib/redhat/openssh.spec]Damien Miller
[contrib/suse/openssh.spec] Update spec file versions to 4.1p1
2005-05-24 - (djm) [openbsd-compat/readpassphrase.c] bz #950: Retry tcsetattr to ensureDamien Miller
terminal modes are reset correctly. Fix from peak AT argo.troja.mff.cuni.cz; "looks ok" dtucker@
2005-05-1220050512Tim Rice
- (tim) [buildpkg.sh.in] missing ${PKG_INSTALL_ROOT} in init script hard link section. Bug 1038.
2005-05-09 - (dtucker) [contrib/cygwin/ssh-host-config] Add a test and warning for aDarren Tucker
user-mode mounts in Cygwin installation. Patch from vinschen at redhat.com.
2005-05-04 - (djm) [ssh.c] some systems return EADDRINUSE on a bind to an already-usedDamien Miller
unix domain socket, so catch that too; from jakob@ ok dtucker@
2005-05-03 - (dtucker) [canohost.c] normalise socket addresses returned byDarren Tucker
get_remote_hostname(). This means that IPv4 addresses in log messages on IPv6 enabled machines will no longer be prefixed by "::ffff:" and AllowUsers, DenyUsers, AllowGroups, DenyGroups will match IPv4-style addresses only for 4-in-6 mapped connections, regardless of whether or not the machine is IPv6 enabled. ok djm@
2005-04-25typoDarren Tucker
2005-04-25 - (dtucker) [regress/multiplex.sh] Put control socket in /tmp so runningDarren Tucker
"make tests" works even if you'r building on a filesystem that doesn't support sockets. From deengert at anl.gov, ok djm@
2005-04-25 - (dtucker) [regress/multiplex.sh] Remove cleanup call since test-exec.shDarren Tucker
will clean up anyway. From tim@
2005-04-25 - (dtucker) [regress/multiplex.sh] Use "kill -0 $pid" to check for theDarren Tucker
existence of a process since it's more portable. Found by jbasney at ncsa.uiuc.edu; ok tim@
2005-04-24 - (dtucker) [INSTALL configure.ac] Make zlib version check test for 1.1.4 orDarren Tucker
1.2.1.2 or higher. With tim@, ok djm@
2005-04-23 - (tim) [config.guess] Add support for OpenServer 6.Tim Rice
2005-04-21 - (dtucker) [session.c] Bug #1024: Don't check pam_session_is_open ifDarren Tucker
UseLogin is set as PAM is not used to establish credentials in that case. Found by Michael Selvesteen, ok djm@
2005-04-19 - (dtucker) [INSTALL] Fix s/key text too.Darren Tucker
2005-04-19 - (dtucker) [INSTALL] Put the s/key text and URL back together.Darren Tucker
2005-04-19 - (dtucker) [INSTALL] Reference README.privsep for the privilege separationDarren Tucker
requirements. Pointed out by Bengt Svensson.
2005-04-11 - (tim) [configure.ac] UnixWare needs PASSWD_NEEDS_USERNAMETim Rice
2005-04-05 - (dtucker) [auth-passwd.c auth-sia.h] Remove duplicate definitions ofDarren Tucker
sys_auth_passwd, pointed out by cmadams at hiwaay.net.
2005-04-05 - (dtucker) [auth-sia.c] Constify sys_auth_passwd, fixes build error onDarren Tucker
Tru64. Patch from cmadams at hiwaay.net.
2005-04-05 - (dtucker) [configure.ac] Define HAVE_SO_PEERCRED if we have it. ok djm@Darren Tucker
2005-04-03 - (dtucker) [monitor.c] Don't free buffers in audit functions, monitor_readDarren Tucker
will free as needed. ok tim@ djm@
2005-04-03 - djm@cvs.openbsd.org 2005/04/02 12:41:16Damien Miller
[scp.c] since ssh has xstrdup, use it instead of strdup+test. unbreaks -Werror build
2005-04-03 - deraadt@cvs.openbsd.org 2005/03/31 18:39:21Damien Miller
[scp.c] copy argv[] element instead of smashing the one that ps will see; ok otto
2005-03-31 - (dtucker) [monitor.c] Remaining part of fix for bug #1006.Darren Tucker
2005-03-31 - (dtucker) [ssh.c] Prevent null pointer deref in port forwarding debugDarren Tucker
message on some platforms. Patch from pete at seebeyond.com via djm.
2005-03-31 - (dtucker) [auth.h sshd.c openbsd-compat/port-aix.c] Bug #1006: fix bug inDarren Tucker
handling of password expiry messages returned by AIX's authentication routines, originally reported by robvdwal at sara.nl.
2005-03-31 - jmc@cvs.openbsd.org 2005/03/18 17:05:00Darren Tucker
[sshd_config.5] typo;
2005-03-31 - markus@cvs.openbsd.org 2005/03/16 21:17:39Darren Tucker
[version.h] 4.1
2005-03-31 - jmc@cvs.openbsd.org 2005/03/16 11:10:38Darren Tucker
[ssh_config.5] get the syntax right for {Local,Remote}Forward; based on a diff from markus; problem report from ponraj; ok dtucker@ markus@ deraadt@
2005-03-29 - (dtucker) [contrib/aix/buildbff.sh] Bug #1005: Look up only the user we'reDarren Tucker
interested in which is much faster in large (eg LDAP or NIS) environments. Patch from dleonard at vintela.com.
2005-03-21 - (dtucker) [configure.ac openbsd-compat/port-aix.h] Prevent redefinitionsDarren Tucker
of setauthdb on AIX 5.3, reported by anders.liljegren at its.uu.se.
2005-03-21 - (dtucker) [configure.ac] Make configure error out if the user specifiesDarren Tucker
--with-libedit but the required libs can't be found, rather than silently ignoring and continuing. ok tim@
2005-03-21 - (dtucker) [configure.ac] Prevent configure --with-zlib from adding -IyesDarren Tucker
and -Lyes to CFLAGS and LIBS. Pointed out by peter at slagheap.net, with & ok tim@
2005-03-17 - (tim) [configure.ac] remove trailing white space.Tim Rice
2005-03-17 - (tim) [configure.ac] make some configure options a little more error proof.Tim Rice
2005-03-17 - (tim) [configure.ac] portability changes on test statements. Some shellsTim Rice
have problems with -a operator.
2005-03-17 - (tim) [configure.ac] Bug 998. Make path for --with-opensc optional.Tim Rice
Make --without-opensc work.
2005-03-14 - (tim) [contrib/caldera/openssh.spec] links in rc?.d were getting trashedTim Rice
with a rpm -F
2005-03-14credit patch authorDarren Tucker
2005-03-14 - markus@cvs.openbsd.org 2005/03/14 11:46:56Darren Tucker
[buffer.c buffer.h channels.c] limit input buffer size for channels; bugzilla #896; with and ok dtucker@
2005-03-14 - dtucker@cvs.openbsd.org 2005/03/14 11:44:42Darren Tucker
[auth.c] Populate host for log message for logins denied by AllowUsers and DenyUsers (bz #999); ok markus@
2005-03-14 - dtucker@cvs.openbsd.org 2005/03/14 10:09:03Darren Tucker
[ssh-keygen.1] Correct description of -H (bz #997); ok markus@, punctuation jmc@
2005-03-14 - jmc@cvs.openbsd.org 2005/03/12 11:55:03Darren Tucker
[ssh_config.5] escape `.' at eol to avoid double spacing issues;
2005-03-14 - markus@cvs.openbsd.org 2005/03/11 14:59:06Darren Tucker
[ssh-keygen.c] typo, missing \n; mpech
2005-03-14 - deraadt@cvs.openbsd.org 2005/03/10 22:40:38Darren Tucker
[auth-options.c] spacing
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-01 04:46:51 +0000