| Age | Commit message (Collapse) | Author |
|---|
|
patch by dtucker@zip.com.au
|
|
ntsec now default if cygwin version beginning w/ version 56. Patch
by Corinna Vinschen <vinschen@redhat.com>
|
|
[scp.c]
check exit status from ssh, and exit(1) if ssh fails; bug#369;
binder@arago.de
|
|
[readconf.c readconf.h ssh-keysign.8 ssh-keysign.c]
we cannot use HostbasedAuthentication for enabling ssh-keysign(8),
because HostbasedAuthentication might be enabled based on the
target host and ssh-keysign(8) does not know the remote hostname
and not trust ssh(1) about the hostname, so we add a new option
EnableSSHKeysign; ok djm@, report from zierke@informatik.uni-hamburg.de
|
|
[sshd.c]
log to stderr if -ie is given, bug #414, prj@po.cwru.edu
|
|
[sftp-client.c]
typo; GaryF@livevault.com
|
|
[monitor.c]
handle overflows for size_t larger than u_int; siw@goneko.de, bug #425
|
|
[packet.c]
log before send disconnect; ok djm@
|
|
[auth.c]
don't compare against pw_home if realpath fails for pw_home (seen
on AFS); ok djm@
|
|
[bufaux.c]
%u for u_int
|
|
[packet.c]
use %u for u_int
|
|
[sftp-common.c]
64bit pedant. %llu is "unsigned long long". markus ok
|
|
|
|
dirk.meyer@dinoex.sub.org
|
|
dtucker@zip.com.au
|
|
|
|
- (bal) Fix bug id 383 and only call loginrestrict for AIX if not root.
|
|
|
|
SIA.
|
|
|
|
|
|
[version.h]
OpenSSH 3.5
|
|
- markus@cvs.openbsd.org 2002/10/01 20:34:12
[ssh-agent.c]
allow root to access the agent, since there is no protection from root.
|
|
[ssh.1]
clarify compression level protocol 1 only; ok markus@ deraadt@
|
|
- mickey@cvs.openbsd.org 2002/09/27 10:42:09
[compat.c compat.h sshd.c]
add a generic match for a prober, such as sie big brother;
idea from stevesk@; markus@ ok
|
|
|
|
[auth1.c auth.h auth-krb4.c monitor.c monitor.h monitor_wrap.c]
[monitor_wrap.h]
krb4 + privsep; ok dugsong@, deraadt@
|
|
[sshd.c]
typo; pilot@monkey.org
|
|
- markus@cvs.openbsd.org 2002/09/25 11:17:16
[sshd_config]
sync LoginGraceTime with default
|
|
This does not include the deattack.c fixes.
|
|
in AIX. Patch by dtucker@zip.com.au ok by djm
|
|
[sshd.8]
tweak the example $HOME/.ssh/rc script to not show on any cmdline the
sensitive data it handles. This fixes bug # 402 as reported by
kolya@mit.edu (Nickolai Zeldovich).
ok markus@ and stevesk@
|
|
[monitor.c]
only call kerberos code for authctxt->valid
|
|
[monitor.c]
only call auth_krb5 if kerberos is enabled; ok deraadt@
|
|
- stevesk@cvs.openbsd.org 2002/09/23 20:46:27
[canohost.c]
change get_peer_ipaddr() and get_local_ipaddr() to not return NULL for
non-sockets; fixes a problem passing NULL to snprintf(). ok markus@
|
|
From autoconf guidelines:
"Test programs should exit, not return, from main, because on some
systems (old Suns, at least) the argument to return in main is ignored."
|
|
[auth.c]
log illegal user here for missing privsep case (ssh2).
this is executed in the monitor. ok markus@
|
|
[serverloop.c]
log IP address also; ok markus@
|
|
[ssh-add.c]
typo; cd@kalkatraz.de
|
|
- stevesk@cvs.openbsd.org 2002/09/19 14:53:14
[compat.c]
|
|
[ssh.c sshconnect.c]
bugzilla.mindrot.org #223 - ProxyCommands don't exit.
Patch from dtucker@zip.com.au; ok markus@
|
|
[channels.c]
don't quit while creating X11 listening socket.
http://mail-index.netbsd.org/current-users/2002/09/16/0005.html
got from portable. markus ok
|
|
[sshd.8]
reference moduli(5) in FILES /etc/moduli.
|
|
[sshd_config.5]
more details on X11Forwarding security issues and threats; ok markus@
|
|
[session.c]
log when _PATH_NOLOGIN exists; ok markus@
|
|
[channels.c sshconnect.c sshd.c]
remove use of SO_LINGER, it should not be needed. error check
SO_REUSEADDR. fixup comments. ok markus@
|
|
[session.c ssh.1]
add SSH_CONNECTION and deprecate SSH_CLIENT; bug #384. ok markus@
|
|
- stevesk@cvs.openbsd.org 2002/09/12 19:11:52
[ssh-agent.c]
%u for uid print; ok markus@
|
|
pressed.
|
|
|
