summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)Author
2005-01-20 - (dtucker) [auth-pam.c] Bug #971: Prevent leaking information about userV_3_9Darren Tucker
existence via keyboard-interactive/pam, in conjunction with previous auth2-chall.c change; with Colin Watson and djm.
2005-01-20 - dtucker@cvs.openbsd.org 2005/01/19 13:11:47Darren Tucker
[auth-bsdauth.c auth2-chall.c] Have keyboard-interactive code call the drivers even for responses for invalid logins. This allows the drivers themselves to decide how to handle them and prevent leaking information where possible. Existing behaviour for bsdauth is maintained by checking authctxt->valid in the bsdauth driver. Note that any third-party kbdint drivers will now need to be able to handle responses for invalid logins. ok markus@
2004-11-02 - (dtucker) [configure.ac includes.h] Bug #947: Fix compile error on HP-UXDarren Tucker
10.x by testing for conflicts in shadow.h and undef'ing _INCLUDE__STDC__ only if a conflict is detected.
2004-10-19 - (dtucker) [uidswap.c] Don't test dropping of gids for the root user orDarren Tucker
on Cygwin. Cygwin parts from vinschen at redhat com; ok djm@
2004-10-19 - (dtucker) [uidswap.c] Don't test dropping of gids for the root user orDarren Tucker
on Cygwin. Cygwin parts from vinschen at redhat com; ok djm@
2004-10-16that was "ok dtucker@"Damien Miller
2004-10-16 - (djm) [auth-pam.c] snprintf->strl*, fix server message length calculationsDamien Miller
2004-10-06 - (dtucker) [monitor_mm.c openbsd-compat/xmmap.c] Bug #940: cast constantsDarren Tucker
to void * to appease picky compilers (eg Tru64's "cc -std1").
2004-10-06 - (dtucker) [README.privsep] Bug #939: update info about HP-UX Trusted ModeDarren Tucker
and other PAM platforms.
2004-09-30 - (dtucker) [configure.ac] Set AC_PACKAGE_NAME. ok djm@Darren Tucker
2004-09-23 - (dtucker) [openbsd-compat/bsd-snprintf.c] Previous change was off by one,Darren Tucker
which could have caused the justification to be wrong. ok djm@
2004-09-21 - (dtucker) [contrib/cygwin/ssh-host-config] Update to match current CygwinDarren Tucker
install process. Patch from vinschen at redhat.com.
2004-09-21 - (dtucker) [openbsd-compat/bsd-snprintf.c] Check for max length too.Darren Tucker
ok djm@
2004-09-12 - (dtucker) [configure.ac] Fix incorrect quoting and tests for cross-compile.Darren Tucker
Partly by & ok djm@.
2004-09-12 - (djm) [ssh.c sshd.c version.h] Don't divulge portable version in protocolDamien Miller
banner. Suggested by deraadt@, ok mouring@, dtucker@
2004-09-12 - (djm) [loginrec.c] xmallocDamien Miller
2004-09-12 - (djm) [loginrec.c] __func__ifiyDamien Miller
2004-09-12 - (djm) [loginrec.c] Start KNF and tidy up of this long-neglected file.Damien Miller
No change in resultant binary
2004-09-11 - (dtucker) [auth-krb5.c] Bug #922: Pass KRB5CCNAME to PAM. From deengertDarren Tucker
at anl.gov, ok djm@
2004-09-11 - (dtucker) [configure.ac] Bug #321: Add cross-compile support to configure.Darren Tucker
Parts by chua at ayrnetworks.com, astrand at lysator.liu.se and me. ok djm@
2004-09-11 - (dtucker) [session.c] Bug #927: make .hushlogin silent again. ok djm@Darren Tucker
2004-09-11 - (dtucker) [auth-pam.c auth.h auth2-none.c auth2.c monitor.c monitor_wrap.c]Darren Tucker
Bug #892: Send messages from failing PAM account modules to the client via SSH2_MSG_USERAUTH_BANNER messages. Note that this will not happen with SSH2 kbdint authentication, which need to be dealt with separately. ok djm@
2004-09-11 - (djm) [auth2-kbdint.c auth2-none.c auth2-passwd.c auth2-pubkey.c]Damien Miller
Make cygwin code more consistent with that which surrounds it
2004-09-11 - (dtucker) [auth-pam.c] Relocate sshpam_store_conv(), no code change.Darren Tucker
2004-09-11 - (dtucker) [auth-pam.c auth-pam.h session.c] Bug #890: Send output fromDarren Tucker
failing PAM session modules to user then exit, similar to the way /etc/nologin is handled. ok djm@
2004-09-11 - (djm) [ssh-agent.c] unifdef some cygwin code; ok dtucker@Damien Miller
2004-08-30 - (dtucker) [Makefile.in contrib/ssh-copy-id] Bug #894: Improve portabilityDarren Tucker
of shell constructs. Patch from cjwatson at debian.org.
2004-08-30 - (dtucker) [regress/Makefile] Clean scp-ssh-wrapper.scp too. Patch fromDarren Tucker
vinschen at redhat.com.
2004-08-30 - (dtucker) [session.c openbsd-compat/bsd-cygwin_util.{c,h}] Bug #915: onlyDarren Tucker
copy required environment variables on Cygwin. Patch from vinschen at redhat.com, ok djm@
2004-08-29 - (dtucker) [openbsd-compat/port-aix.c] Bug #712: Explicitly check forDarren Tucker
accounts with authentication configs that sshd can't support (ie SYSTEM=NONE and AUTH1=something).
2004-08-29 - (dtucker) [configure.ac] Replace non-portable echo \n with extra echo.Darren Tucker
2004-08-29 - (dtucker) [regress/agent-ptrace.sh] Skip ptrace test on OSF1/DUnix/Tru64Darren Tucker
too; patch from cmadams at hiwaay.net.
2004-08-29 - (dtucker) [Makefile.in] Get regress/Makefile symlink right for out-of-treeDarren Tucker
builds too, from vinschen at redhat.com.
2004-08-29 - (dtucker) [regress/scp.sh] Make this work on Cygwin too, which doesn't likeDarren Tucker
files ending in .exe that aren't binaries; patch from vinschen at redhat.com.
2004-08-29 - (dtucker) [regress/dynamic-forward.sh] Allow time for connections to be tornDarren Tucker
down, needed on some platforms, should be harmless on others. Patch from jason at devrandom.org.
2004-08-29 - (dtucker) [regress/multiplex.sh] Skip test on platforms that do notDarren Tucker
support FD passing since multiplex requires it. Noted by tim@
2004-08-29 - (dtucker) [configure.ac] Include sys/stream.h in sys/ptms.h header check,Darren Tucker
fixes configure warning on Solaris reported by wknox at mitre.org.
2004-08-29 - djm@cvs.openbsd.org 2004/08/28 01:01:48Darren Tucker
[sshd.c] don't erroneously close stdin for !reexec case, from Dave Johnson; ok markus@
2004-08-29 - markus@cvs.openbsd.org 2004/08/26 16:00:55Darren Tucker
[ssh.1 sshd.8] get rid of references to rhosts authentication; with jmc@
2004-08-29 - dtucker@cvs.openbsd.org 2004/08/23 14:29:23Darren Tucker
[ssh-keysign.c] Remove duplicate getuid(), suggested by & ok markus@
2004-08-29 - dtucker@cvs.openbsd.org 2004/08/23 14:26:38Darren Tucker
[ssh-keysign.c ssh.c] Use permanently_set_uid() in ssh and ssh-keysign for consistency, matches change in Portable; ok markus@ (CVS ID sync only)
2004-08-29 - djm@cvs.openbsd.org 2004/08/23 11:48:47Darren Tucker
[channels.c] typo, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus
2004-08-29 - djm@cvs.openbsd.org 2004/08/23 11:48:09Darren Tucker
[authfile.c] fix error path, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus
2004-08-29 - (dtucker) [openbsd-compat/getrrsetbyname.c] Prevent getrrsetbyname fromDarren Tucker
failing with NOMEMORY if no sigs are returned and malloc(0) returns NULL. From Martin.Kraemer at Fujitsu-Siemens.com; ok djm@
2004-08-28Add filename to ChangeLog entryDarren Tucker
2004-08-28 - (dtucker) [openbsd-compat/mktemp.c] Remove superfluous Cygwin #ifdef; fromDarren Tucker
vinschen at redhat.com.
2004-08-23 - (djm) [loginrec.c] Typo and bad args in error messages; Spotted byDamien Miller
Martin.Kraemer AT Fujitsu-Siemens.com
2004-08-23 - (djm) [ssh-rand-helper.c] Typo. Found byDamien Miller
Martin.Kraemer AT Fujitsu-Siemens.com
2004-08-17 - (djm) Release 3.9p1V_3_9_P1Damien Miller
2004-08-17 - (djm) Crank RPM spec version numbersDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-16 00:06:39 +0000