summaryrefslogtreecommitdiff
path: root/ssh.c
AgeCommit message (Collapse)Author
2004-04-20 - djm@cvs.openbsd.org 2004/04/18 23:10:26Damien Miller
[readconf.c readconf.h ssh-keysign.c ssh.c] perform strict ownership and modes checks for ~/.ssh/config files, as these can be used to execute arbitrary programs; ok markus@ NB. ssh will now exit when it detects a config with poor permissions
2004-03-22 - markus@cvs.openbsd.org 2004/03/11 10:21:17Damien Miller
[ssh.c sshd.c] ssh, sshd: sync version output, ok djm
2004-03-22 - markus@cvs.openbsd.org 2004/03/10 09:45:06Damien Miller
[ssh.c] trim usage to match ssh(1) and look more like unix. ok djm@
2004-03-22 - markus@cvs.openbsd.org 2004/03/09 22:11:05Damien Miller
[ssh.c] increase x11 cookie lifetime to 20 minutes; ok djm
2003-12-17 - markus@cvs.openbsd.org 2003/12/16 15:49:51Damien Miller
[clientloop.c clientloop.h readconf.c readconf.h scp.1 sftp.1 ssh.1] [ssh.c ssh_config.5] application layer keep alive (ServerAliveInterval ServerAliveCountMax) for ssh(1), similar to the sshd(8) option; ok beck@; with help from jmc and dtucker@
2003-12-17 - markus@cvs.openbsd.org 2003/12/09 17:30:05Damien Miller
[ssh.c] don't modify argv for ssh -o; similar to sshd.c 1.283
2003-11-24 - dtucker@cvs.openbsd.org 2003/11/24 00:16:35Damien Miller
[ssh.1 ssh.c] Make ssh -k mean GSSAPIDelegateCredentials=no. Suggestion & ok markus@
2003-11-21 - djm@cvs.openbsd.org 2003/11/21 11:57:03Damien Miller
[everything] unexpand and delete whitespace at EOL; ok markus@ (done locally and RCS IDs synced)
2003-10-15 - markus@cvs.openbsd.org 2003/10/11 08:24:08Darren Tucker
[readconf.c readconf.h ssh.1 ssh.c ssh_config.5] remote x11 clients are now untrusted by default, uses xauth(8) to generate untrusted cookies; ForwardX11Trusted=yes restores old behaviour. ok deraadt; feedback and ok djm/fries
2003-09-02 - markus@cvs.openbsd.org 2003/09/01 18:15:50Damien Miller
[readconf.c readconf.h servconf.c servconf.h ssh.c] remove unused kerberos code; ok henning@
2003-08-22 - (djm) s/get_progname/ssh_get_progname/g to avoid conflict with HeimdalDamien Miller
-lbroken; ok dtucker
2003-08-13 - markus@cvs.openbsd.org 2003/08/13 09:07:10Darren Tucker
[readconf.c ssh.c] socks4->socks, since with support both 4 and 5; dtucker@zip.com.au
2003-08-13 - markus@cvs.openbsd.org 2003/08/13 08:46:31Darren Tucker
[auth1.c readconf.c readconf.h servconf.c servconf.h ssh.c ssh_config ssh_config.5 sshconnect1.c sshd.8 sshd.c sshd_config sshd_config.5] remove RhostsAuthentication; suggested by djm@ before; ok djm@, deraadt@, fgsch@, miod@, henning@, jakob@ and others
2003-08-02 - (dtucker) OpenBSD CVS SyncDarren Tucker
- markus@cvs.openbsd.org 2003/07/22 13:35:22 [auth1.c auth.h auth-passwd.c monitor.c monitor.h monitor_wrap.c monitor_wrap.h readconf.c readconf.h servconf.c servconf.h session.c ssh.1 ssh.c ssh_config.5 sshconnect1.c sshd.c sshd_config.5 ssh.h] remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1); test+ok henning@ - (dtucker) [Makefile.in acconfig.h configure.ac] Remove KRB4/AFS support. - (dtucker) [auth-krb4.c radix.c radix.h] Remove KRB4/AFS specific files. I hope I got this right....
2003-07-19 - markus@cvs.openbsd.org 2003/07/16 10:34:53Darren Tucker
[ssh.c sshd.c] don't exit on multiple -v or -d; ok deraadt@
2003-07-03 - djm@cvs.openbsd.org 2003/07/03 08:09:06Darren Tucker
[readconf.c readconf.h ssh-keysign.c ssh.c] fix AddressFamily option in config file, from brent@graveland.net; ok markus@
2003-07-03 - markus@cvs.openbsd.org 2003/07/02 20:37:48Darren Tucker
[ssh.c] convert hostkeyalias to lowercase, otherwise uppercase aliases will not match at all; ok henning@
2003-06-18 - markus@cvs.openbsd.org 2003/06/12 19:12:03Damien Miller
[scard.c scard.h ssh-agent.c ssh.c] add sc_get_key_label; larsch at trustcenter.de; bugzilla#591
2003-05-18 - (djm) Remove IPv4 by default hack now that we can specify AF in configDamien Miller
2003-05-16 - (djm) OpenBSD CVS SyncDamien Miller
- djm@cvs.openbsd.org 2003/05/15 13:52:10 [ssh.c] Make "ssh -V" print the OpenSSL version in a human readable form. Patch from Craig Leres (mindrot at ee.lbl.gov); ok markus@
2003-05-14 - (djm) Bug #258: sscanf("[0-9]") -> sscanf("[0123456789]") for portabilityDamien Miller
2003-05-14 - markus@cvs.openbsd.org 2003/05/11 20:30:25Damien Miller
[channels.c clientloop.c serverloop.c session.c ssh.c] make channel_new() strdup the 'remote_name' (not the caller); ok theo
2003-05-14 - (djm) RCSID sync w/ OpenBSDDamien Miller
2003-04-09*** empty log message ***Damien Miller
2003-02-24 - markus@cvs.openbsd.org 2003/02/06 09:27:29Damien Miller
[ssh.c ssh_config.5] support 'ProxyCommand none'; bugzilla #433; binder@arago.de; ok djm@
2002-12-23 - millert@cvs.openbsd.org 2002/12/09 16:50:30Ben Lindstrom
[ssh.c] Avoid setting optind to 0 as GNU getopt treats that like we do optreset. markus@ OK
2002-12-23 - markus@cvs.openbsd.org 2002/11/27 17:53:35Ben Lindstrom
[scp.c sftp.c ssh.c] allow usernames with embedded '@', e.g. scp user@vhost@realhost:file /tmp; http://bugzilla.mindrot.org/show_bug.cgi?id=447; ok mouring@, millert@
2002-12-23 - markus@cvs.openbsd.org 2002/11/21 23:04:33Ben Lindstrom
[ssh.c] debug->debug2
2002-09-19 - djm@cvs.openbsd.org 2002/09/19 01:58:18Damien Miller
[ssh.c sshconnect.c] bugzilla.mindrot.org #223 - ProxyCommands don't exit. Patch from dtucker@zip.com.au; ok markus@
2002-09-12 - stevesk@cvs.openbsd.org 2002/09/11 18:27:26Damien Miller
[authfd.c authfd.h ssh.c] don't connect to agent to test for presence if we've previously connected; ok markus@
2002-09-04 - stevesk@cvs.openbsd.org 2002/08/29 19:49:42Damien Miller
[ssh.c] shrink initial privilege bracket for setuid case; ok markus@
2002-09-04 - stevesk@cvs.openbsd.org 2002/08/29 16:02:54Damien Miller
[ssh.1 ssh.c] deprecate -P as UsePrivilegedPort defaults to no now; ok markus@
2002-07-23 - stevesk@cvs.openbsd.org 2002/07/19 17:42:40Ben Lindstrom
[ssh.c] display a warning from ssh when XAuthLocation does not exist or xauth returned no authentication data. ok markus@
2002-07-04 - markus@cvs.openbsd.org 2002/07/03 14:21:05Ben Lindstrom
[ssh-keysign.8 ssh-keysign.c ssh.c ssh_config] re-enable ssh-keysign's sbit, but make ssh-keysign read /etc/ssh/ssh_config and exit if HostbasedAuthentication is disabled globally. based on discussions with deraadt, itojun and sommerfeld; ok itojun@
2002-07-04 - deraadt@cvs.openbsd.org 2002/06/30 21:59:45Ben Lindstrom
[auth-bsdauth.c auth-skey.c auth2-chall.c clientloop.c key.c monitor_wrap.c monitor_wrap.h scard.h session.h sftp-glob.c ssh.c sshconnect2.c sshd.c] minor KNF
2002-06-12 - markus@cvs.openbsd.org 2002/06/12 01:09:52Ben Lindstrom
[ssh.c] ssh_connect returns 0 on success
2002-06-12 - markus@cvs.openbsd.org 2002/06/11 23:03:54Ben Lindstrom
[ssh.c] remove unused cruft.
2002-06-11 - (bal) Cygwin fix up from swap uid clean up in ssh.c patch byBen Lindstrom
vinschen@redhat.com
2002-06-11 - markus@cvs.openbsd.org 2002/06/11 04:14:26Ben Lindstrom
[ssh.c sshconnect.c sshconnect.h] no longer use uidswap.[ch] from the ssh client run less code with euid==0 if ssh is installed setuid root just switch the euid, don't switch the complete set of groups (this is only needed by sshd). ok provos@
2002-06-09 - markus@cvs.openbsd.org 2002/06/08 05:17:01Ben Lindstrom
[readconf.c readconf.h ssh.1 ssh.c] deprecate FallBackToRsh and UseRsh; patch from djm@
2002-06-09 - markus@cvs.openbsd.org 2002/06/08 05:07:56Ben Lindstrom
[ssh.c] nuke ptrace comment
2002-06-06 - markus@cvs.openbsd.org 2002/05/23 19:39:34Ben Lindstrom
[ssh.c] add comment about ssh-keysign
2002-06-06 - markus@cvs.openbsd.org 2002/05/23 19:24:30Ben Lindstrom
[authfile.c authfile.h pathnames.h ssh.c sshconnect.c sshconnect.h sshconnect1.c sshconnect2.c ssh-keysign.8 ssh-keysign.c Makefile.in] add /usr/libexec/ssh-keysign: a setuid helper program for hostbased authentication in protocol v2 (needs to access the hostkeys). Note: Makefile.in untested. Will test after merge is finished.
2002-06-06 - deraadt@cvs.openbsd.org 2002/05/22 23:18:25Ben Lindstrom
[ssh.c sshd.c] spelling; abishoff@arc.nasa.gov
2002-06-06 - stevesk@cvs.openbsd.org 2002/05/16 22:09:59Ben Lindstrom
[session.c ssh.c] don't limit xauth pathlen on client side and longer print length on server when debug; ok markus@
2002-04-23 - markus@cvs.openbsd.org 2002/04/22 21:04:52Damien Miller
[channels.c clientloop.c clientloop.h ssh.c] request reply (success/failure) for -R style fwd in protocol v2, depends on ordered replies. fixes http://bugzilla.mindrot.org/show_bug.cgi?id=215; ok provos@
2002-03-27 - markus@cvs.openbsd.org 2002/03/26 11:37:05Ben Lindstrom
[ssh.c] update Copyright
2002-03-26 - markus@cvs.openbsd.org 2002/03/25 21:04:02Ben Lindstrom
[ssh.c] simplify num_identity_files handling
2002-03-26 - markus@cvs.openbsd.org 2002/03/25 17:34:27Ben Lindstrom
[scard.c scard.h ssh-agent.c ssh-keygen.c ssh.c] change sc_get_key to sc_get_keys and hide smartcard details in scard.c
2002-03-22 - rees@cvs.openbsd.org 2002/03/21 22:44:05Ben Lindstrom
[authfd.c authfd.h ssh-add.c ssh-agent.c ssh.c] Add PIN-protection for secret key.