Age | Commit message (Collapse) | Author |
|
[session.c]
fallback to _PATH_STDPATH on setusercontext+LOGIN_SETPATH errors;
|
|
[log.c log.h session.c sshd.c]
remove fatal cleanups after fork; based on discussions with and code
from solar.
|
|
freed by the caller; add free_pam_environment() and use it.
|
|
dtucker@zip.com.au plus a a more KNF since I am near it.
|
|
|
|
[auth2.c session.c sshd.c]
lint asks that we use names that do not overlap
|
|
[session.c]
disclose less information from environment files; based on input
from djm, and dschultz@uclink.Berkeley.EDU
|
|
[session.c]
limit # of env vars to 1000; ok deraadt/djm
|
|
|
|
- (bal) moved aix_usrinfo() and noted not setting real TTY. Patch by
dtucker@zip.com.au
|
|
[channels.c channels.h session.c session.h]
display, screen, row, col, xpixel, ypixel are u_int; markus ok
- (bal) Also fixed IPADDR_IN_DISPLAY case where display, screen, row, col,
xpixel are u_int.
|
|
[session.c]
compression_level is u_int
|
|
[servconf.c servconf.h session.c sshd.c]
allow Compression=yes/no in sshd_config
|
|
code. (Bugzilla Bug 261)
|
|
[auth-krb4.c monitor.h serverloop.c session.c ssh-agent.c sshd.c]
pid_t cleanup. Markus need this now to keep hacking.
markus@, millert@ ok
|
|
[channels.c channels.h session.c]
move creation of agent socket to session.c; no need for uidswapping
in channel.c.
|
|
|
|
Bertrand.Velle@apogee-com.fr
|
|
[session.c ssh.c]
don't limit xauth pathlen on client side and longer print length on
server when debug; ok markus@
|
|
the superuser receives.
|
|
|
|
[session.c session.h]
retrieve last login time before the pty is allocated, store per session
|
|
[session.c]
do not call record_login twice (for use_privsep)
|
|
it can be removed. only used on solaris. will no longer compile with
privsep shuffling.
|
|
[auth-krb5.c auth-rh-rsa.c auth.c cipher.c key.c misc.h packet.c session.c
sftp-client.c sftp-glob.h sftp.c ssh-add.c ssh.c sshconnect2.c sshd.c
ttymodes.c]
KNF whitespace
|
|
[auth-options.c auth.h session.c session.h sshd.c]
clean up prototypes
|
|
[auth-bsdauth.c auth-options.c auth-rh-rsa.c auth-rsa.c auth-skey.c auth.h
auth1.c auth2-chall.c auth2.c kex.c kex.h kexdh.c kexgex.c servconf.c
session.h servconf.h serverloop.c session.c sshd.c]
integrate privilege separated openssh; its turned off by default for now.
work done by me and markus@
applied, but outside of ensure that smaller code bits migrated with
their owners.. no work was tried to 'fix' it to work. =) Later project!
|
|
[auth.c session.c]
move auth_approval into getpwnamallow with help from millert@
|
|
revert
|
|
PAM, Cygwin and OSF SIA will not work for sure
|
|
since we need more session information than provided by that function.
|
|
patch by wknox@mitre.org (William Knox).
[sshlogin.h] declare record_utmp_only for session.c
|
|
that is left is handling aix_usrinfo().
|
|
|
|
[session.c]
typo
- (bal) CVS ID sync since the last two patches were merged mistakenly
|
|
- markus@cvs.openbsd.org 2002/02/15 23:11:26
[session.c]
split do_child(), ok mouring@
Compiles under Redhat 7.2.. I cannot give any promises.. but I spent a
good hour and half ensure all the right bits are in the right spots.. and
it does seem to help out quite a bit for readiblity.
|
|
openbsd-compat/port-aix.[c] to improve readilbity of do_child() and
simplify our diffs against upstream source.
|
|
openbsd-compat/port-irix.[ch] to improve readiblity of do_child()
|
|
[channels.h session.c ssh.c]
increase the SSH v2 window size to 4 packets. comsumes a little
bit more memory for slow receivers but increases througput.
|
|
- deraadt@cvs.openbsd.org 2002/02/09 17:37:34
[pathnames.h session.c ssh.1 sshd.8 sshd_config ssh-keyscan.1]
move ssh config files to /etc/ssh
- (djm) Adjust portable Makefile.in tnd ssh-rand-helper.c o match
|
|
[session.c]
minor KNF
|
|
- :%s/reverse_mapping_check/verify_reverse_mapping/g
|
|
[auth1.c serverloop.c session.c session.h]
don't use channel_input_channel_request and callback
use new server_input_channel_req() instead:
server_input_channel_req does generic request parsing on server side
session_input_channel_req handles just session specific things now
ok djm@
|
|
[session.c]
don't depend on servconf.c; ok djm@
|
|
[session.c]
limit subsystem length in log; ok markus@
|
|
[auth2.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c canohost.c servconf.c servconf.h session.c sshd.8 sshd_config]
s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@
|
|
[channels.c servconf.c servconf.h session.c sshd.8 sshd_config]
add X11UseLocalhost; ok markus@
|
|
[includes.h session.c]
revert code to add x11 localhost display authorization entry for
hostname/unix:d and uts.nodename/unix:d if nodename was different than
hostname. just add entry for unix:d instead. ok markus@
|
|
[auth1.c auth-rsa.c channels.c dispatch.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
packet_read* no longer return the packet length, since it's not used.
|
|
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
get rid of packet_integrity_check, use packet_done() instead.
|