openssh.git -

Age	Commit message (Collapse)	Author
2000-10-18	- (stevesk) Add initial support for setproctitle(). Current	Kevin Steves
	support is for the HP-UX pstat(PSTAT_SETCMD, ...) method.
2000-10-18	- (bal) Changed from GNU rx to PCRE on suggestion from djm.	Ben Lindstrom
	- (bal) Integrated Sony NEWS-OS patches from NAKAJI Hirouyuki <nakaji@tutrp.tut.ac.jp>
2000-10-15	- (bal) Add support for realpath and getcwd for platforms with broken	Ben Lindstrom
	or missing realpath implementations for sftp-server. - (bal) Corrected mistake in INSTALL in regards to GNU rx library
2000-10-14	Add support for GNU rx library for those lacking regexp support	Ben Lindstrom

2000-09-29	- (djm) Merged big SCO portability patch from Tim Rice	Damien Miller
	<tim@multitalents.net>
2000-09-23	- (djm) Seperate tests for int64_t and u_int64_t types	Damien Miller

2000-09-16	- (djm) Cleanup auth-passwd.c and unify HP/UX authentication. Patch from	Damien Miller
	Kevin Steves <stevesk@sweden.hp.com>
2000-09-05	- (djm) Merge cygwin support from Corinna Vinschen <vinschen@cygnus.com>	Damien Miller

2000-08-29	- More OpenBSD updates:	Damien Miller
	- deraadt@cvs.openbsd.org 2000/08/24 15:46:59 [scp.c] off_t in sink, to fix files > 2GB, i think, test is still running ;-) - deraadt@cvs.openbsd.org 2000/08/25 10:10:06 [session.c] Wall - markus@cvs.openbsd.org 2000/08/26 04:33:43 [compat.c] ssh.com-2.3.0 - markus@cvs.openbsd.org 2000/08/27 12:18:05 [compat.c] compatibility with future ssh.com versions - deraadt@cvs.openbsd.org 2000/08/27 21:50:55 [auth-krb4.c session.c ssh-add.c sshconnect.c uidswap.c] print uid/gid as unsigned - markus@cvs.openbsd.org 2000/08/28 13:51:00 [ssh.c] enable -n and -f for ssh2 - markus@cvs.openbsd.org 2000/08/28 14:19:53 [ssh.c] allow combination of -N and -f - markus@cvs.openbsd.org 2000/08/28 14:20:56 [util.c] util.c - markus@cvs.openbsd.org 2000/08/28 14:22:02 [util.c] undo - markus@cvs.openbsd.org 2000/08/28 14:23:38 [util.c] don't complain if setting NONBLOCK fails with ENODEV
2000-08-23	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	Damien Miller
	- (djm) OpenBSD CVS updates: - deraadt@cvs.openbsd.org 2000/08/18 20:07:23 [ssh.c] accept remsh as a valid name as well; roman@buildpoint.com - deraadt@cvs.openbsd.org 2000/08/18 20:17:13 [deattack.c crc32.c packet.c] rename crc32() to ssh_crc32() to avoid zlib name clash. do not move to libz crc32 function yet, because it has ugly "long"'s in it; oneill@cs.sfu.ca - deraadt@cvs.openbsd.org 2000/08/18 20:26:08 [scp.1 scp.c] -S prog support; tv@debian.org - deraadt@cvs.openbsd.org 2000/08/18 20:50:07 [scp.c] knf - deraadt@cvs.openbsd.org 2000/08/18 20:57:33 [log-client.c] shorten - markus@cvs.openbsd.org 2000/08/19 12:48:11 [channels.c channels.h clientloop.c ssh.c ssh.h] support for ~. in ssh2 - deraadt@cvs.openbsd.org 2000/08/19 15:29:40 [crc32.h] proper prototype - markus@cvs.openbsd.org 2000/08/19 15:34:44 [authfd.c authfd.h key.c key.h ssh-add.1 ssh-add.c ssh-agent.1] [ssh-agent.c ssh-keygen.c sshconnect1.c sshconnect2.c Makefile] [fingerprint.c fingerprint.h] add SSH2/DSA support to the agent and some other DSA related cleanups. (note that we cannot talk to ssh.com's ssh2 agents) - markus@cvs.openbsd.org 2000/08/19 15:55:52 [channels.c channels.h clientloop.c] more ~ support for ssh2 - markus@cvs.openbsd.org 2000/08/19 16:21:19 [clientloop.c] oops - millert@cvs.openbsd.org 2000/08/20 12:25:53 [session.c] We have to stash the result of get_remote_name_or_ip() before we close our socket or getpeername() will get EBADF and the process will exit. Only a problem for "UseLogin yes". - millert@cvs.openbsd.org 2000/08/20 12:30:59 [session.c] Only check /etc/nologin if "UseLogin no" since login(1) may have its own policy on determining who is allowed to login when /etc/nologin is present. Also use the _PATH_NOLOGIN define. - millert@cvs.openbsd.org 2000/08/20 12:42:43 [auth1.c auth2.c session.c ssh.c] Add calls to setusercontext() and login_get*(). We basically call setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class. - millert@cvs.openbsd.org 2000/08/21 10:23:31 [session.c] Fix incorrect PATH setting; noted by Markus.
2000-08-23	- (djm) Define USE_PIPES to avoid socketpair problems on HPUX 10 and SunOS 4	Damien Miller
	Avoids "scp never exits" problem. Reports from Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE> and Tamito KAJIYAMA <kajiyama@grad.sccs.chukyo-u.ac.jp>
2000-08-18	- (djm) OpenBSD CVS changes:	Damien Miller
	- markus@cvs.openbsd.org 2000/07/22 03:14:37 [servconf.c servconf.h sshd.8 sshd.c sshd_config] random early drop; ok theo, niels - deraadt@cvs.openbsd.org 2000/07/26 11:46:51 [ssh.1] typo - deraadt@cvs.openbsd.org 2000/08/01 11:46:11 [sshd.8] many fixes from pepper@mail.reppep.com - provos@cvs.openbsd.org 2000/08/01 13:01:42 [Makefile.in util.c aux.c] rename aux.c to util.c to help with cygwin port - deraadt@cvs.openbsd.org 2000/08/02 00:23:31 [authfd.c] correct sun_len; Alexander@Leidinger.net - provos@cvs.openbsd.org 2000/08/02 10:27:17 [readconf.c sshd.8] disable kerberos authentication by default - provos@cvs.openbsd.org 2000/08/02 11:27:05 [sshd.8 readconf.c auth-krb4.c] disallow kerberos authentication if we can't verify the TGT; from dugsong@ kerberos authentication is on by default only if you have a srvtab. - markus@cvs.openbsd.org 2000/08/04 14:30:07 [auth.c] unused - markus@cvs.openbsd.org 2000/08/04 14:30:35 [sshd_config] MaxStartups - markus@cvs.openbsd.org 2000/08/15 13:20:46 [authfd.c] cleanup; ok niels@ - markus@cvs.openbsd.org 2000/08/17 14:05:10 [session.c] cleanup login(1)-like jobs, no duplicate utmp entries - markus@cvs.openbsd.org 2000/08/17 14:06:34 [session.c sshd.8 sshd.c] sshd -u len, similar to telnetd
2000-08-16	- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc)	Damien Miller
	- (djm) Fix strerror replacement for old SunOS. Based on patch from Charles Levert <charles@comm.polymtl.ca> - (djm) Seperate arc4random into seperate file and use OpenSSL's RC4 implementation.
2000-07-15	- Fixes for SunOS 4.1.4 from Gordon Atwood <gordon@cs.ualberta.ca>	Damien Miller
	- Include floatingpoint.h for entropy.c - strerror replacement
2000-07-11	- (djm) ReliantUNIX support from Udo Schweigert <ust@cert.siemens.de>	Damien Miller

2000-07-09	- (djm) AIX getuserattr() session initialisation from Tom Bertelson	Damien Miller
	<tbert@abac.com>
2000-07-09	- (djm) Only enable PAM_TTY kludge for Linux. Problem report from	Damien Miller
	Kevin Steves <stevesk@sweden.hp.com>
2000-07-08	* empty log message *	Damien Miller

2000-07-01	- (djm) Added check for broken snprintf() functions which do not correctly	Damien Miller
	terminate output string and attempt to use replacement.
2000-07-01	- (djm) Login fixes from Tom Bertelson <tbert@abac.com>	Damien Miller

2000-06-28	- (djm) Added patch from Chris Adams <cmadams@hiwaay.net> to add OSF SIA	Damien Miller
	support. Enable using "USE_SIA=1 ./configure [options]"
2000-06-28	- (djm) Patch from Michael Stone <mstone@cs.loyola.edu> to add support for	Damien Miller
	Irix 6.x array sessions, project id's, and system audit trail id.
2000-06-26	- (djm) Account expiry support from Andreas Steinmetz <ast@domdv.de>	Damien Miller
	- (djm) Added password expiry checking (no password change support)
2000-06-23	- (djm) Use sa_family_t in prototype for rresvport_af. Patch from	Damien Miller
	Svante Signell <svante.signell@telia.com> - (djm) Autoconf logic to define sa_family_t if it is missing
2000-06-18	- (djm) Started merge of Ben Lindstrom's <mouring@pconline.com> NeXT support	Damien Miller

2000-06-03	Removed obsolete lastlog symbols	andre

2000-06-03	Added new login recording code	andre
	Added test program for login code (make logintest)
2000-05-20	- SunOS 4.x support from Todd C. Miller <Todd.Miller@courtesan.com>	Damien Miller

2000-05-20	- Don't touch utmp if USE_UTMPX defined	Damien Miller

2000-05-17	- Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp>	Damien Miller
	- INSTALL typo and URL fix - Makefile fix - Solaris fixes - Checking for ssize_t and memmove. Based on patch from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp>
2000-05-17	- Applied Tom Bertelson's <tbert@abac.com> AIX authentication fix	Damien Miller

2000-05-02	- Add Andre Lucas' <andre.lucas@dial.pipex.com> patch to read entropy	Damien Miller
	gathering commands from a text file
2000-04-30	- Integrate Andre Lucas' <andre.lucas@dial.pipex.com> entropy collection	Damien Miller
	patch. - Adds timeout to entropy collection - Disables slow entropy sources - Load and save seed file - Changed entropy seed code to user per-user seeds only (server seed is saved in root's .ssh directory) - Use atexit() and fatal cleanups to save seed on exit
2000-04-16	- Reduce diff against OpenBSD source	Damien Miller
	- All OpenSSL includes are now unconditionally referenced as openssl/foo.h - Pick up formatting changes - Other minor changed (typecasts, etc) that I missed
2000-04-03	- Wrote entropy collection routines for systems that lack /dev/random	Damien Miller
	and EGD
2000-03-13	* empty log message *	Damien Miller

2000-03-11	- IPv6 workarounds from Hideaki YOSHIFUJI <yoshfuji@ecei.tohoku.ac.jp>	Damien Miller

2000-03-09	- Removed warning workaround for Linux and devpts filesystems (no longer	Damien Miller
	required after OpenBSD updates)
2000-03-05	- Check for getpagesize in libucb.a if not found in libc. Fix for old	Damien Miller
	Solaris from Andre Lucas <andre.lucas@dial.pipex.com>
2000-03-02	- Warning was valid - possible race condition on PTYs. Avoided using	Damien Miller
	platform-specific code. - Document some common problems
2000-03-02	- Big cleanup of autoconf code	Damien Miller
	- Rearranged to be a little more logical - Added -R option for Solaris - Rewrote OpenSSL detection code. Now uses AC_TRY_RUN with a test program to detect library and header location _and_ ensure library has proper RSA support built in (this is a problem with OpenSSL 0.9.5).
2000-01-23	- AIX patch from Matt Richards <v2matt@btv.ibm.com> and David Rankin	Damien Miller
	<drankin@bohemians.lexington.ky.us>
2000-01-22	- Merge preformatted manpage patch from Andre Lucas	Damien Miller
	<andre.lucas@dial.pipex.com>
2000-01-20	- Don't use getaddrinfo on AIX	Damien Miller

2000-01-19	- Linux/glibc-2.1.2 takes a long time to look up names for AF_UNSPEC	Damien Miller
	addresses using getaddrinfo(). Added a configure switch to make the default lookup mode AF_INET
2000-01-19	- Compile fix from Darren_Hall@progressive.com	Damien Miller

2000-01-18	- Fixed --with-pid-dir option	Damien Miller

2000-01-16	- Renamed --with-xauth-path to --with-xauth	Damien Miller
	- Added --with-pid-dir option - Released 1.2.1pre26
2000-01-14	- Merged OpenBSD IPv6 patch:	Damien Miller
	- [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1] [scp.c packet.h packet.c login.c log.c canohost.c channels.c] [hostfile.c sshd_config] ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new features: sshd allows multiple ListenAddress and Port options. note that libwrap is not IPv6-ready. (based on patches from fujiwara@rcac.tdi.co.jp) - [ssh.c canohost.c] more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo, from itojun@ - [channels.c] listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE) - [packet.h] allow auth-kerberos for IPv4 only - [scp.1 sshd.8 servconf.h scp.c] document -4, -6, and 'ssh -L 2022/::1/22' - [ssh.c] 'ssh @host' is illegal (null user name), from karsten@gedankenpolizei.de - [sshconnect.c] better error message - [sshd.c] allow auth-kerberos for IPv4 only - Big IPv6 merge: - Cleanup overrun in sockaddr copying on RHL 6.1 - Replacements for getaddrinfo, getnameinfo, etc based on versions from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp> - Replacement for missing structures on systems that lack IPv6 - record_login needed to know about AF_INET6 addresses - Borrowed more code from OpenBSD: rresvport_af and requisites
2000-01-06	- Fixed annoying DES corruption problem. libcrypt has been	Damien Miller
	overriding symbols in libcrypto. Removed libcrypt and crypt.h altogether (libcrypto includes its own crypt(1) replacement) - Added platform-specific rules for Irix 6.x. Included warning that they are untested.