| Age | Commit message (Collapse) | Author |
|---|
|
[auth2.c]
Remove unused prototype. ok djm@
|
|
[dh.c]
Don't return -1 on error in dh_pub_is_valid(), since it evaluates
to true.
Also fix a typo.
Initial diff from Matthew Dempsky, input from djm.
OK djm, markus.
|
|
[ssh-agent.c]
When adding a key that already exists, update the properties
(time, confirm, comment) instead of discarding them. ok djm@ markus@
|
|
[auth-bsdauth.c auth-passwd.c auth.c auth.h auth1.c auth2-chall.c]
[monitor.c monitor_wrap.c]
unifdef -DBSD_AUTH
unifdef -USKEY
These options have been in use for some years;
ok markus@ "no objection" millert@
(NB. RCD ID sync only for portable)
|
|
[ssh_config.5]
document KbdInteractiveAuthentication in ssh_config.5;
patch from dkg AT fifthhorseman.net
|
|
[sshpty.c]
remove #if defined block not needed; ok markus@ dtucker@
(NB. RCD ID sync only for portable)
|
|
so disable it for that platform. From bacon at cs nyu edu.
|
|
have <poll.h> (eq QNX). From bacon at cs nyu edu.
|
|
EWOULDBLOCK; patch from ben AT psc.edu
|
|
Problem report and additional testing rac AT tenzing.org.
|
|
[sftp-client.c]
use off_t instead of u_int64_t for file offsets, matching what the
progressmeter code expects; bz #842
|
|
[sftp-server.c]
fix incorrect test when setting syslog facility; from Jan Pechanec
|
|
[umac.c]
use xmalloc() and xfree(); ok markus@ pvalchev@
|
|
[sshpty.c]
remove #if defined block not needed; ok markus@ dtucker@
NB. RCS ID sync only
|
|
[session.c ssh-keygen.c sshlogin.c]
use strcspn to properly overwrite '\n' in fgets returned buffer
ok pyr@, ray@, millert@, moritz@, chl@
|
|
[sshpty.c]
sort #include
NB. RCS ID sync only
|
|
[ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.c]
sort synopsis and options in ssh-agent(1); usage is lowercase
ok jmc@
|
|
[ssh.c sshconnect.c sshconnect.h]
make ssh(1)'s ConnectTimeout option apply to both the TCP connection and
SSH banner exchange (previously it just covered the TCP connection).
This allows callers of ssh(1) to better detect and deal with stuck servers
that accept a TCP connection but don't progress the protocol, and also
makes ConnectTimeout useful for connections via a ProxyCommand;
feedback and "looks ok" markus@
|
|
[clientloop.c monitor.c monitor_fdpass.c monitor_fdpass.h]
[monitor_wrap.c ssh.c]
make file descriptor passing code return an error rather than call fatal()
when it encounters problems, and use this to make session multiplexing
masters survive slaves failing to pass all stdio FDs; ok markus@
|
|
[sshconnect.c]
Execute ProxyCommands with $SHELL rather than /bin/sh unconditionally
|
|
[auth2-none.c sshd_config sshd_config.5]
Support "Banner=none" to disable displaying of the pre-login banner;
ok dtucker@ deraadt@
|
|
[auth.h]
login_cap.h doesn't belong here
NB. RCS ID sync only for portable
|
|
[auth-passwd.c auth.c session.c]
missed include bits from last commit
NB. RCS ID sync only for portable
|
|
[auth-passwd.c auth.c session.c]
unifdef HAVE_LOGIN_CAP; ok deraadt@ millert@
NB. RCS ID sync only for portable
|
|
Patch from Jan.Pechanec at sun com.
|
|
did a AC_CHECK_FUNCS within the AC_CHECK_LIB test.
|
|
return 0 on successful test. From David.Leonard at quest com.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
implementations together which is hopefully more coherent.
|
|
accounts and that's what the code looks for, so make man page and code
agree. Pointed out by Roumen Petrov.
|
|
connections too. Based on a patch from Sandro Wefel, with & ok djm@
|
|
[ssh_config.5]
tun device forwarding now honours ExitOnForwardFailure; ok markus@
|
|
contrib/suse/openssh.spec] Crank version.
|
|
ok djm@
|
|
[version.h]
openssh 4.7
|
|
[clientloop.c]
do NOT fall back to the trused x11 cookie if generation of an untrusted
cookie fails; from security-alert at sun.com; ok dtucker
|
|
called with PAM_ESTABLISH_CRED at least once, which resolves a problem
with pam_dhkeys. Patch from David Leonard, ok djm@
|
|
Matt Kraai, ok djm@.
|
|
|
|
|
|
used anywhere and are a potential source of warnings.
|
|
and the AIX native login restrictions.
|
|
|
|
[clientloop.c clientloop.h ssh.c]
bz#1232: ensure that any specified LocalCommand is executed after the
tunnel device is opened. Also, make failures to open a tunnel device
fatal when ExitOnForwardFailure is active.
Reported by h.goebel AT goebel-consult.de; ok dtucker markus reyk deraadt
|
|
[scp.1 scp.c]
the ellipsis is not an optional argument; while here, sync the usage
and synopsis of commands
lots of good ideas by jmc@
ok jmc@
|
