Age | Commit message (Collapse) | Author | |
---|---|---|---|
2005-01-20 | - (dtucker) [auth-pam.c] Bug #971: Prevent leaking information about userV_3_9 | Darren Tucker | |
existence via keyboard-interactive/pam, in conjunction with previous auth2-chall.c change; with Colin Watson and djm. | |||
2005-01-20 | - dtucker@cvs.openbsd.org 2005/01/19 13:11:47 | Darren Tucker | |
[auth-bsdauth.c auth2-chall.c] Have keyboard-interactive code call the drivers even for responses for invalid logins. This allows the drivers themselves to decide how to handle them and prevent leaking information where possible. Existing behaviour for bsdauth is maintained by checking authctxt->valid in the bsdauth driver. Note that any third-party kbdint drivers will now need to be able to handle responses for invalid logins. ok markus@ | |||
2004-11-02 | - (dtucker) [configure.ac includes.h] Bug #947: Fix compile error on HP-UX | Darren Tucker | |
10.x by testing for conflicts in shadow.h and undef'ing _INCLUDE__STDC__ only if a conflict is detected. | |||
2004-10-19 | - (dtucker) [uidswap.c] Don't test dropping of gids for the root user or | Darren Tucker | |
on Cygwin. Cygwin parts from vinschen at redhat com; ok djm@ | |||
2004-10-19 | - (dtucker) [uidswap.c] Don't test dropping of gids for the root user or | Darren Tucker | |
on Cygwin. Cygwin parts from vinschen at redhat com; ok djm@ | |||
2004-10-16 | that was "ok dtucker@" | Damien Miller | |
2004-10-16 | - (djm) [auth-pam.c] snprintf->strl*, fix server message length calculations | Damien Miller | |
2004-10-06 | - (dtucker) [monitor_mm.c openbsd-compat/xmmap.c] Bug #940: cast constants | Darren Tucker | |
to void * to appease picky compilers (eg Tru64's "cc -std1"). | |||
2004-10-06 | - (dtucker) [README.privsep] Bug #939: update info about HP-UX Trusted Mode | Darren Tucker | |
and other PAM platforms. | |||
2004-09-30 | - (dtucker) [configure.ac] Set AC_PACKAGE_NAME. ok djm@ | Darren Tucker | |
2004-09-23 | - (dtucker) [openbsd-compat/bsd-snprintf.c] Previous change was off by one, | Darren Tucker | |
which could have caused the justification to be wrong. ok djm@ | |||
2004-09-21 | - (dtucker) [contrib/cygwin/ssh-host-config] Update to match current Cygwin | Darren Tucker | |
install process. Patch from vinschen at redhat.com. | |||
2004-09-21 | - (dtucker) [openbsd-compat/bsd-snprintf.c] Check for max length too. | Darren Tucker | |
ok djm@ | |||
2004-09-12 | - (dtucker) [configure.ac] Fix incorrect quoting and tests for cross-compile. | Darren Tucker | |
Partly by & ok djm@. | |||
2004-09-12 | - (djm) [ssh.c sshd.c version.h] Don't divulge portable version in protocol | Damien Miller | |
banner. Suggested by deraadt@, ok mouring@, dtucker@ | |||
2004-09-12 | - (djm) [loginrec.c] xmalloc | Damien Miller | |
2004-09-12 | - (djm) [loginrec.c] __func__ifiy | Damien Miller | |
2004-09-12 | - (djm) [loginrec.c] Start KNF and tidy up of this long-neglected file. | Damien Miller | |
No change in resultant binary | |||
2004-09-11 | - (dtucker) [auth-krb5.c] Bug #922: Pass KRB5CCNAME to PAM. From deengert | Darren Tucker | |
at anl.gov, ok djm@ | |||
2004-09-11 | - (dtucker) [configure.ac] Bug #321: Add cross-compile support to configure. | Darren Tucker | |
Parts by chua at ayrnetworks.com, astrand at lysator.liu.se and me. ok djm@ | |||
2004-09-11 | - (dtucker) [session.c] Bug #927: make .hushlogin silent again. ok djm@ | Darren Tucker | |
2004-09-11 | - (dtucker) [auth-pam.c auth.h auth2-none.c auth2.c monitor.c monitor_wrap.c] | Darren Tucker | |
Bug #892: Send messages from failing PAM account modules to the client via SSH2_MSG_USERAUTH_BANNER messages. Note that this will not happen with SSH2 kbdint authentication, which need to be dealt with separately. ok djm@ | |||
2004-09-11 | - (djm) [auth2-kbdint.c auth2-none.c auth2-passwd.c auth2-pubkey.c] | Damien Miller | |
Make cygwin code more consistent with that which surrounds it | |||
2004-09-11 | - (dtucker) [auth-pam.c] Relocate sshpam_store_conv(), no code change. | Darren Tucker | |
2004-09-11 | - (dtucker) [auth-pam.c auth-pam.h session.c] Bug #890: Send output from | Darren Tucker | |
failing PAM session modules to user then exit, similar to the way /etc/nologin is handled. ok djm@ | |||
2004-09-11 | - (djm) [ssh-agent.c] unifdef some cygwin code; ok dtucker@ | Damien Miller | |
2004-08-30 | - (dtucker) [Makefile.in contrib/ssh-copy-id] Bug #894: Improve portability | Darren Tucker | |
of shell constructs. Patch from cjwatson at debian.org. | |||
2004-08-30 | - (dtucker) [regress/Makefile] Clean scp-ssh-wrapper.scp too. Patch from | Darren Tucker | |
vinschen at redhat.com. | |||
2004-08-30 | - (dtucker) [session.c openbsd-compat/bsd-cygwin_util.{c,h}] Bug #915: only | Darren Tucker | |
copy required environment variables on Cygwin. Patch from vinschen at redhat.com, ok djm@ | |||
2004-08-29 | - (dtucker) [openbsd-compat/port-aix.c] Bug #712: Explicitly check for | Darren Tucker | |
accounts with authentication configs that sshd can't support (ie SYSTEM=NONE and AUTH1=something). | |||
2004-08-29 | - (dtucker) [configure.ac] Replace non-portable echo \n with extra echo. | Darren Tucker | |
2004-08-29 | - (dtucker) [regress/agent-ptrace.sh] Skip ptrace test on OSF1/DUnix/Tru64 | Darren Tucker | |
too; patch from cmadams at hiwaay.net. | |||
2004-08-29 | - (dtucker) [Makefile.in] Get regress/Makefile symlink right for out-of-tree | Darren Tucker | |
builds too, from vinschen at redhat.com. | |||
2004-08-29 | - (dtucker) [regress/scp.sh] Make this work on Cygwin too, which doesn't like | Darren Tucker | |
files ending in .exe that aren't binaries; patch from vinschen at redhat.com. | |||
2004-08-29 | - (dtucker) [regress/dynamic-forward.sh] Allow time for connections to be torn | Darren Tucker | |
down, needed on some platforms, should be harmless on others. Patch from jason at devrandom.org. | |||
2004-08-29 | - (dtucker) [regress/multiplex.sh] Skip test on platforms that do not | Darren Tucker | |
support FD passing since multiplex requires it. Noted by tim@ | |||
2004-08-29 | - (dtucker) [configure.ac] Include sys/stream.h in sys/ptms.h header check, | Darren Tucker | |
fixes configure warning on Solaris reported by wknox at mitre.org. | |||
2004-08-29 | - djm@cvs.openbsd.org 2004/08/28 01:01:48 | Darren Tucker | |
[sshd.c] don't erroneously close stdin for !reexec case, from Dave Johnson; ok markus@ | |||
2004-08-29 | - markus@cvs.openbsd.org 2004/08/26 16:00:55 | Darren Tucker | |
[ssh.1 sshd.8] get rid of references to rhosts authentication; with jmc@ | |||
2004-08-29 | - dtucker@cvs.openbsd.org 2004/08/23 14:29:23 | Darren Tucker | |
[ssh-keysign.c] Remove duplicate getuid(), suggested by & ok markus@ | |||
2004-08-29 | - dtucker@cvs.openbsd.org 2004/08/23 14:26:38 | Darren Tucker | |
[ssh-keysign.c ssh.c] Use permanently_set_uid() in ssh and ssh-keysign for consistency, matches change in Portable; ok markus@ (CVS ID sync only) | |||
2004-08-29 | - djm@cvs.openbsd.org 2004/08/23 11:48:47 | Darren Tucker | |
[channels.c] typo, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus | |||
2004-08-29 | - djm@cvs.openbsd.org 2004/08/23 11:48:09 | Darren Tucker | |
[authfile.c] fix error path, spotted by Martin.Kraemer AT Fujitsu-Siemens.com; ok markus | |||
2004-08-29 | - (dtucker) [openbsd-compat/getrrsetbyname.c] Prevent getrrsetbyname from | Darren Tucker | |
failing with NOMEMORY if no sigs are returned and malloc(0) returns NULL. From Martin.Kraemer at Fujitsu-Siemens.com; ok djm@ | |||
2004-08-28 | Add filename to ChangeLog entry | Darren Tucker | |
2004-08-28 | - (dtucker) [openbsd-compat/mktemp.c] Remove superfluous Cygwin #ifdef; from | Darren Tucker | |
vinschen at redhat.com. | |||
2004-08-23 | - (djm) [loginrec.c] Typo and bad args in error messages; Spotted by | Damien Miller | |
Martin.Kraemer AT Fujitsu-Siemens.com | |||
2004-08-23 | - (djm) [ssh-rand-helper.c] Typo. Found by | Damien Miller | |
Martin.Kraemer AT Fujitsu-Siemens.com | |||
2004-08-17 | - (djm) Release 3.9p1V_3_9_P1 | Damien Miller | |
2004-08-17 | - (djm) Crank RPM spec version numbers | Damien Miller | |