summaryrefslogtreecommitdiff
path: root/debian/rules
AgeCommit message (Collapse)Author
2016-07-23Don't stop the ssh-session-cleanup service on upgrade (closes: #832155).Colin Watson
2016-07-22Fix typo.Colin Watson
2016-07-22Add a session cleanup script and a systemd unit file to trigger it, which ↵Colin Watson
serves to terminate SSH sessions cleanly if systemd doesn't do that itself, often because libpam-systemd is not installed (thanks, Vivek Das Mohapatra, Tom Hutter, and others; closes: #751636).
2016-05-16Set SSH_PROGRAM=/usr/bin/ssh1 when building openssh-client-ssh1 so that scp1 ↵Colin Watson
works (reported by Olivier MATZ).
2016-04-03Change all openssh.org references to openssh.com (closes: #819213).Colin Watson
2015-12-21Add systemd readiness notification support (closes: #778913).Michael Biebl
2015-12-06Add an openssh-client-ssh1 binary package for people who need to connect to ↵Colin Watson
outdated SSH1-only servers (closes: #807107).
2015-11-24Drop ConsoleKit session registration patch; it was only ever enabled for ↵Colin Watson
Ubuntu, which no longer needs it (LP: #1334916, #1502045).
2015-11-24Do much less work in architecture-independent-only builds.Colin Watson
2015-11-24Fix dh_install and dh_fixperms overrides to work properly with an ↵Colin Watson
architecture-independent-only build (closes: #806090).
2015-09-10Build with audit support on Linux (closes: #797727, LP: #1478087).Tyler Hicks
2015-08-19New upstream release (6.8p1).Colin Watson
2014-10-08Run a subset of the upstream regression test suite at package build time, ↵Colin Watson
and the rest of it under autopkgtest.
2014-10-06Simplify debian/rules using /usr/share/dpkg/buildflags.mk.Colin Watson
2014-09-30Don't link /usr/share/doc/ssh to openssh-client, as this is not safe between ↵Colin Watson
Architecture: all and Architecture: any binary packages (closes: #763375).
2014-08-02Use dh-exec to simplify override_dh_install target.Colin Watson
2014-07-20Make sure that DEB_HOST_ARCH is set, even when invoking debian/rules directly.Colin Watson
2014-05-26Only use pam_keyinit on Linux architectures (closes: #747245).Colin Watson
2014-05-26Upgrade to debhelper v9.Colin Watson
2014-03-27Re-enable btmp logging, as its permissions were fixed a long time ago in ↵Colin Watson
response to #370050 (closes: #341883).
2014-03-05Link openssh-sftp-server's documentation directory to openssh-client's.Colin Watson
2014-02-13Remove code related to non-dependency-based sysv-rc ordering, since that is ↵Colin Watson
no longer supported.
2014-02-13Configure --without-hardening on hppa, to work around ↵Colin Watson
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=60155 (closes: #738798).
2014-02-12Tweak dh_systemd_enable invocations to avoid lots of error noise.Colin Watson
2014-02-11Only enable ssh.service for systemd, not both ssh.service and ssh.socket. ↵Colin Watson
Thanks to Michael Biebl for spotting this.
2014-02-10Add systemd support (thanks, Sven Joachim; closes: #676830).Colin Watson
2014-02-10Incorporate default path changes from shadow 1:4.0.18.1-8, removing ↵Colin Watson
/usr/bin/X11 (closes: #644521).
2014-02-09Initialize git-dpmColin Watson
2013-07-02Update config.guess and config.sub automatically at build time.Colin Watson
dh_autoreconf does not take care of that by default because openssh does not use automake.
2013-06-27debian/rules: Include real distribution in SSH_EXTRAVERSION instead ofYolanda Robla
hardcoding Debian (LP: #1195342).
2013-05-22Fix dh_builddeb invocation so that we really use xz compression forColin Watson
binary packages, as intended since 1:6.1p1-2.
2013-05-22Switch to new unified layout for Upstart jobs as documented inColin Watson
https://wiki.ubuntu.com/UpstartCompatibleInitScripts: the init script checks for a running Upstart, and we now let dh_installinit handle most of the heavy lifting in maintainer scripts. Ubuntu users should be essentially unaffected except that sshd may no longer start automatically in chroots if the running Upstart predates 0.9.0; but the main goal is simply not to break when openssh-server is installed in a chroot.
2013-05-21Drop conffile handling for upgrades from pre-split ssh package; this wasColin Watson
originally added in 1:4.3p2-7 / 1:4.3p2-8, and contained a truly ghastly hack around a misbehaviour in sarge's dpkg. Since this is now four Debian releases ago, we can afford to drop this and simplify the packaging.
2013-05-06Use dh-autoreconf.Colin Watson
2013-03-25Add ssh-agent upstart user job. This implements something similar toStéphane Graber
the 90x11-common_ssh-agent Xsession script. That is, start ssh-agent and set the appropriate environment variables (closes: #703906).
2012-11-26Simplify --with-consolekit handling.Colin Watson
2012-11-26Install apport hooks.Colin Watson
2012-11-26Merge Upstart job scripting support from Ubuntu, to handle the Upstart job ↵Colin Watson
being primary there.
2012-11-25Only build with -j if DEB_BUILD_OPTIONS=parallel=* is used (closes:Colin Watson
#694282).
2012-10-31* Merge from Ubuntu:Colin Watson
- Add support for registering ConsoleKit sessions on login. (This is currently enabled only when building for Ubuntu.)
2012-09-28Use xz compression for binary packages.Colin Watson
2012-06-24Tighten libssl1.0.0 and libcrypto1.0.0-udeb dependencies to the currentColin Watson
"fix" version at build time (closes: #678661).
2012-04-02* Fix cross-building:Colin Watson
- Allow using a cross-architecture pkg-config. - Pass default LDFLAGS to contrib/Makefile. - Allow dh_strip to strip gnome-ssh-askpass, rather than calling 'install -s'.
2012-04-01Use dpkg-buildflags, including for hardening support; drop use ofColin Watson
hardening-includes.
2011-09-06* New upstream release (http://www.openssh.org/txt/release-5.9).Colin Watson
- Introduce sandboxing of the pre-auth privsep child using an optional sshd_config(5) "UsePrivilegeSeparation=sandbox" mode that enables mandatory restrictions on the syscalls the privsep child can perform. - Add new SHA256-based HMAC transport integrity modes from http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt. - The pre-authentication sshd(8) privilege separation slave process now logs via a socket shared with the master process, avoiding the need to maintain /dev/log inside the chroot (closes: #75043, #429243, #599240). - ssh(1) now warns when a server refuses X11 forwarding (closes: #504757). - sshd_config(5)'s AuthorizedKeysFile now accepts multiple paths, separated by whitespace (closes: #76312). The authorized_keys2 fallback is deprecated but documented (closes: #560156). - ssh(1) and sshd(8): set IPv6 traffic class from IPQoS, as well as IPv4 ToS/DSCP (closes: #498297). - ssh-add(1) now accepts keys piped from standard input. E.g. "ssh-add - < /path/to/key" (closes: #229124). - Clean up lost-passphrase text in ssh-keygen(1) (closes: #444691). - Say "required" rather than "recommended" in unprotected-private-key warning (LP: #663455).
2011-07-29Use 'dpkg-vendor --derives-from Ubuntu' to detect Ubuntu systems ratherColin Watson
than 'lsb_release -is' so that Ubuntu derivatives behave the same way as Ubuntu itself.
2011-07-29Only recommend ssh-import-id when built on Ubuntu (closes: #635887).Colin Watson
2010-04-17Use dh_installinit -n, since our maintainer scripts already handle thisColin Watson
more carefully (thanks, Julien Cristau).
2010-04-08Use dh_install more effectively.Colin Watson
2010-04-08remove obsolete Ssh.bin hack, no longer needed with new PKCS#11 smartcard ↵Colin Watson
handling