summaryrefslogtreecommitdiff
path: root/ChangeLog
AgeCommit message (Collapse)Author
2005-10-03 - djm@cvs.openbsd.org 2005/09/19 11:37:34Darren Tucker
[ssh_config.5 ssh.1] mention ability to specify bind_address for DynamicForward and -D options; bz#1077 spotted by Haruyama Seigo
2005-10-03 - djm@cvs.openbsd.org 2005/09/13 23:40:07Darren Tucker
[sshd.c ssh.c misc.h sftp.c ssh-keygen.c ssh-keysign.c sftp-server.c scp.c misc.c ssh-keyscan.c ssh-add.c ssh-agent.c] ensure that stdio fds are attached; ok deraadt@
2005-10-03 - markus@cvs.openbsd.org 2005/09/09 19:18:05Darren Tucker
[clientloop.c] typo; from mark at mcs.vuw.ac.nz, bug #1082
2005-10-03 - markus@cvs.openbsd.org 2005/09/07 08:53:53Darren Tucker
[channels.c] enforce chanid != NULL; ok djm
2005-09-30 - (dtucker) [monitor.c] Bug #1087: Send loginmsg to preauth privsepDarren Tucker
child during PAM account check without clearing it. This restores the post-login warnings such as LDAP password expiry. Patch from Tomas Mraz with help from several others.
2005-09-30 - (dtucker) [openbsd-compat/openbsd-compat.h] Bug #1096: Add prototypeDarren Tucker
for strtoll. Patch from o.flebbe at science-computing.de.
2005-09-29 - (dtucker) [monitor_wrap.c] Remove duplicate definition of loginmsgDarren Tucker
introduced during sync.
2005-09-28 - (dtucker) [auth-pam.c] Bug #1028: send final non-query messages fromDarren Tucker
PAM via keyboard-interactive. Patch tested by the folks at Vintela.
2005-09-28 - (dtucker) [entropy.c] Use u_char for receiving RNG seed for consistencyDarren Tucker
2005-09-27 - (dtucker) [entropy.c entropy.h sshd.c] Pass RNG seed to the reexec'edDarren Tucker
process when sshd relies on ssh-random-helper. Should result in faster logins on systems without a real random device or prngd. ok djm@
2005-09-27 - (dtucker) [entropy.c] Remove unnecessary tests for getuid and geteuidDarren Tucker
calls, since they can't possibly fail. ok djm@
2005-09-24 - (dtucker) [auth2.c] Move start_pam() calls out of if-else block to removeDarren Tucker
duplicate call. ok djm@
2005-09-22 - (dtucker) [configure.ac] Fix help for --with-opensc; patch from skeleten atDarren Tucker
shillest.net.
2005-09-22 - (dtucker) [configure.ac] Use -R linker flag for libedit too; patch fromDarren Tucker
skeleten at shillest.net.
2005-09-19remove acconfig.hTim Rice
2005-09-19 - (tim) [aclocal.m4 configure.ac] Delete acconfig.h and add templates toTim Rice
AC_DEFINE and AC_DEFINE_UNQUOTED to quiet autoconf 2.59 warning messages.
2005-09-12 - (tim) [configure.ac] Bug 1078. Fix --without-kerberos5. Reported byTim Rice
Mike Frysinger.
2005-09-08 - (tim) [defines.h openbsd-compat/port-uw.c] Add long password support toTim Rice
OpenServer 6 and add osr5bigcrypt support so when someone migrates passwords between UnixWare and OpenServer they will still work. OK dtucker@
2005-09-01 - (djm) Update RPM spec file versionsDamien Miller
2005-08-31 - (tim) [configure.ac auth.c defines.h session.c openbsd-compat/port-uw.cTim Rice
openbsd-compat/port-uw.h openbsd-compat/xcrypt.c] libiaf cleanup. Disable libiaf bits for OpenServer6. Free memory allocated by ia_get_logpwd(). Feedback and OK dtucker@
2005-09-01 - (dtucker) [README] Update release note URL to 4.2Darren Tucker
2005-08-31 - markus@cvs.openbsd.org 2005/08/31 09:28:42Damien Miller
[version.h] 4.2
2005-08-31 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2005/08/30 22:08:05 [gss-serv.c sshconnect2.c] destroy credentials if krb5_kuserok() call fails. Stops credentials being delegated to users who are not authorised for GSSAPIAuthentication when GSSAPIDeletegateCredentials=yes and another authentication mechanism succeeds; bz#1073 reported by paul.moore AT centrify.com, fix by simon AT sxw.org.uk, tested todd@ biorn@ jakob@; ok deraadt@
2005-08-31correct bug numberDamien Miller
2005-08-30 - (tim) [configure.ac] Back out last change. It needs to be done differently.Tim Rice
2005-08-29 - (tim) [configure.ac] ia_openinfo() seems broken on OSR6. Limit UW longTim Rice
password support to 7.x for now.
2005-08-26 - (tim) [CREDITS LICENCE auth.c configure.ac defines.h includes.h session.cTim Rice
openbsd-compat/Makefile.in openbsd-compat/openbsd-compat.h openbsd-compat/xcrypt.c] New files [openssh/openbsd-compat/port-uw.c openssh/openbsd-compat/port-uw.h] Support long passwords (> 8-char) on UnixWare 7 from Dhiraj Gulati and Ahsan Rashid. Cleanup and testing by tim@. Feedback and OK dtucker@
2005-08-23 - (tim) [defines.h] PATH_MAX bits for OpenServer OK dtucker@Tim Rice
2005-08-23 - (tim) [configure.ac ] Not all gcc's support -Wsign-compareTim Rice
2005-08-23 - (dtucker) [regress/test-exec.sh] Do not prepend an extra "/" to a fully-Darren Tucker
qualified sshd pathname since some systems (eg Cygwin) may consider "/foo" and "//foo" to be different. Spotted by vinschen at redhat.com.
2005-08-23 - (dtucker) [configure.ac defines.h includes.h sftp.c] Add support forDarren Tucker
LynxOS, patch from Olli Savia (ops at iki.fi). ok djm@
2005-08-16 - (djm) [ttymodes.c] bugzilla #1054: Fix encoding of _POSIX_VDISABLE,Damien Miller
from Jacob Nevins; ok dtucker@
2005-08-15 - (tim) [configure.ac] corrections to libedit tests. Report and patchesTim Rice
by skeleten AT shillest.net
2005-08-15 - (tim) wrap el_end() in #ifdef USE_LIBEDITTim Rice
2005-08-12 - jaredy@cvs.openbsd.org 2005/08/08 13:22:48Damien Miller
[sftp.c] sftp prompt enhancements: - in non-interactive mode, do not print an empty prompt at the end before finishing - print newline after EOF in editline mode - call el_end() in editline mode ok dtucker djm
2005-08-12oops, that last commit was:Damien Miller
Report from Janusz Mucka; ok djm@
2005-08-12 - dtucker@cvs.openbsd.org 2005/08/06 10:03:12Damien Miller
[servconf.c] Unbreak sshd ListenAddress for bare IPv6 addresses.
2005-08-12 - djm@cvs.openbsd.org 2005/07/30 02:03:47Damien Miller
[readconf.c] listen_hosts initialisation here too; spotted greg AT y2005.nest.cx
2005-08-12 - djm@cvs.openbsd.org 2005/07/30 01:26:16Damien Miller
[ssh.c] fix -D listen_host initialisation, so it picks up gateway_ports setting correctly
2005-08-12 - markus@cvs.openbsd.org 2005/07/28 17:36:22Damien Miller
[packet.c] missing packet_init_compression(); from solar
2005-08-10 - (dtucker) [LICENCE configure.ac defines.h openbsd-compat/realpath.c]Darren Tucker
Sync current (thread-safe) version of realpath.c from OpenBSD (which is in turn based on FreeBSD's). ok djm@
2005-08-10 - (dtucker) [configure.ac] Test libedit library and headers for compatibility.Darren Tucker
Report from skeleten AT shillest.net, ok djm@
2005-08-09 - (tim) [configure.ac] Allow --with-audit=no. OK dtucker@Tim Rice
Report by skeleten AT shillest.net
2005-08-03 - (dtucker) [openbsd-compat/fake-rfc2553.h] MAX_INT -> INT_MAX since theDarren Tucker
latter is specified in the standard.
2005-08-03 - (dtucker) [openbsd-compat/fake-rfc2553.h] Check for EAI_* definesDarren Tucker
individually and use a value less likely to collide with real values from netdb.h. Fixes compile warnings on FreeBSD 5.3. ok djm@
2005-08-03 - (dtucker) [configure.ac] Add a --with-Werror option to configure forDarren Tucker
adding -Werror to CFLAGS when all of the configure tests are done. ok djm@
2005-08-02 - (dtucker) [configure.ac] Enable -Wuninitialized by default when compilingDarren Tucker
with gcc. ok djm@
2005-08-02 - dtucker@cvs.openbsd.org 2005/07/27 10:39:03Darren Tucker
[scp.c hostfile.c sftp-client.c] Silence bogus -Wuninitialized warnings; ok djm@
2005-07-26 - markus@cvs.openbsd.org 2005/07/25 11:59:40Damien Miller
[kex.c kex.h myproposal.h packet.c packet.h servconf.c session.c] [sshconnect2.c sshd.c sshd_config sshd_config.5] add a new compression method that delays compression until the user has been authenticated successfully and set compression to 'delayed' for sshd. this breaks older openssh clients (< 3.5) if they insist on compression, so you have to re-enable compression in sshd_config. ok djm@
2005-07-26 - (djm) OpenBSD CVS SyncDamien Miller
- otto@cvs.openbsd.org 2005/07/19 15:32:26 [auth-passwd.c] auth_usercheck(3) can return NULL, so check for that. Report from mpech@. ok markus@