Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
* | fix merges from 0.3f | assar | 2001-06-21 | 7 | -274/+528 | |
| | ||||||
* | This commit was generated by cvs2svn to compensate for changes in r78527, | assar | 2001-06-21 | 485 | -7462/+39617 | |
|\ | | | | | | | which included commits to RCS files with non-trunk default branches. | |||||
| * | import of heimdal 0.3f | assar | 2001-06-21 | 495 | -7740/+40167 | |
| | | ||||||
* | | (do_authloop): handle !KRB4 && KRB5 | assar | 2001-06-16 | 1 | -4/+7 | |
| | | ||||||
* | | Unbreak OpenSSH for the KRB5-and-no-KRB4 case. Asking for KRB5 does | markm | 2001-06-15 | 1 | -1/+3 | |
| | | | | | | | | not imply that you want, need or have kerberosIV headers. | |||||
* | | Enable Kerberos 5 support in sshd again. | green | 2001-06-12 | 3 | -2/+4 | |
| | | ||||||
* | | Switch to the user's uid before attempting to unlink the auth forwarding | green | 2001-06-08 | 4 | -25/+45 | |
| | | | | | | | | | | | | file, nullifying the effects of a race. Obtained from: OpenBSD | |||||
* | | Fix $FreeBSD$ style committer messed up in rev 1.7 for some reason. | obrien | 2001-05-24 | 1 | -1/+1 | |
| | | ||||||
* | | Oops, forgot the 'u' in the getopt for the previous commit. | dillon | 2001-05-24 | 1 | -1/+1 | |
| | | ||||||
* | | A feature to allow one to telnet to a unix domain socket. (MFC from | dillon | 2001-05-23 | 3 | -3/+51 | |
| | | | | | | | | | | | | | | | | | | non-crypto version) Also update the crypto telnet's man page to reflect other options ported from the non-crypto version. Obtained from: Lyndon Nerenberg <lyndon@orthanc.ab.ca> | |||||
* | | Resolve conflicts | kris | 2001-05-20 | 6 | -26/+48 | |
| | | ||||||
* | | This commit was generated by cvs2svn to compensate for changes in r76866, | kris | 2001-05-20 | 116 | -815/+1893 | |
|\ \ | | | | | | | | | | which included commits to RCS files with non-trunk default branches. | |||||
| * | | Initial import of OpenSSL 0.9.6a | kris | 2001-05-20 | 122 | -841/+1941 | |
| | | | ||||||
* | | | Restore the RSA host key to /etc/ssh/ssh_host_key. | obrien | 2001-05-18 | 1 | -2/+1 | |
| | | | | | | | | | | | | Also fix $FreeBSD$ spamage in crypto/openssh/sshd_config rev. 1.16. | |||||
* | | | Make the PAM user-override actually override the correect thing. | nsayer | 2001-05-17 | 1 | -3/+3 | |
| | | | ||||||
* | | | Back out last commit. This was already fixed. This should never have | peter | 2001-05-17 | 1 | -2/+0 | |
| | | | | | | | | | | | | | | | happened, this is why we have commit mail expressly delivered to committers. | |||||
* | | | Fix the latest telnet breakage. Obviously this was never compiled. | peter | 2001-05-17 | 1 | -4/+4 | |
| | | | ||||||
* | | | Since the root-on-insecure-tty code was added to telnetd, a dependency | nsayer | 2001-05-16 | 1 | -0/+2 | |
| | | | | | | | | | | | | | | | on char *line was added to libtelnet. Put a dummy one in to keep the linker happy. | |||||
* | | | Make sure the protocol actively rejects bad data rather than | nsayer | 2001-05-16 | 1 | -8/+8 | |
| | | | | | | | | | | | | (potentially) not responding to an invalid SRA 'auth is' message. | |||||
* | | | srandomdev() affords us the opportunity to radically improve, and at the | nsayer | 2001-05-16 | 1 | -0/+7 | |
| | | | | | | | | | | | | same time simplify, the random number selection code. | |||||
* | | | Catch any attempted buffer overflows. The magic numbers in this code | nsayer | 2001-05-16 | 1 | -2/+6 | |
| | | | | | | | | | | | | | | | | | | | | | (512) are a little distressing, but the method really needs to be extended to allow server-supplied DH parameters anyway. Submitted by: kris | |||||
* | | | Catch malloc return failures. This should help avoid dereferencing NULL on | nsayer | 2001-05-16 | 1 | -0/+8 | |
| | | | | | | | | | | | | | | | | | | low-memory situations. Submitted by: kris | |||||
* | | | Hack to work around braindeath in libtelnet:sra.c. The sra.o file | peter | 2001-05-15 | 1 | -0/+1 | |
| | | | | | | | | | | | | | | | | | | | | | references global variables from telnetd, but is also linked into telnet as well. I was tempted to back out the last sra.c change as it is 100% bogus and should be taken out and shot, but for now this bandaid should get world working again. :-( | |||||
* | | | If the uid of the attempted authentication is 0 and if the pty is | nsayer | 2001-05-15 | 1 | -1/+34 | |
| | | | | | | | | | | | | | | | insecure, do not succeed. Copied from login.c. This functionality really should be a PAM module. | |||||
* | | | If a host would exceed 16 characters in the utmp entry, record only | green | 2001-05-15 | 1 | -1/+1 | |
| | | | | | | | | | | | | | | | | | | it's IP address/base host instead. Submitted by: brian | |||||
* | | | mdoc(7) police: finished fixing conflicts in revision 1.18. | ru | 2001-05-14 | 1 | -1/+0 | |
| | | | ||||||
* | | | Fix make world in the kerberosIV case. | markm | 2001-05-11 | 1 | -1/+5 | |
| | | | ||||||
* | | | merge imported changes into HEAD | assar | 2001-05-11 | 3 | -18/+8 | |
| | | | ||||||
* | | | Fix some of the handling in the pam module, don't unregister things | alfred | 2001-05-09 | 1 | -14/+50 | |
| | | | | | | | | | | | | | | | | | | | | | that were never registered. At the same time handle a failure from pam_setcreds with a bit more paranioa than the previous fix. Sync a bit with the "Portable OpenSSH" work to make comparisons a easier. | |||||
* | | | Since PAM is broken, let pam_setcred() failure be non-fatal. | green | 2001-05-08 | 1 | -1/+1 | |
| | | | ||||||
| | | | ||||||
| \ \ | ||||||
*-. \ \ | This commit was generated by cvs2svn to compensate for changes in r76371, | assar | 2001-05-08 | 55 | -341/+280 | |
|\ \ \ \ | | |_|/ | |/| | | | | | | which included commits to RCS files with non-trunk default branches. | |||||
| | * | | mdoc(ng) fixes | assar | 2001-05-08 | 22 | -145/+128 | |
| | | | | | | | | | | | | | | | | Submitted by: ru | |||||
| * | | | mdoc(ng) fixes | assar | 2001-05-08 | 36 | -214/+160 | |
| | | | | | | | | | | | | | | | | Submitted by: ru | |||||
* | | | | Pointy hat fix -- reapply the SRA PAM patch. To -current this time. | nsayer | 2001-05-07 | 1 | -0/+133 | |
| | | | | ||||||
* | | | | sshd_config should still be keeping ssh host keys in /etc/ssh, not /etc. | green | 2001-05-05 | 1 | -3/+3 | |
| | | | | ||||||
* | | | | Finish committing _more_ somehow-uncommitted OpenSSH 2.9 updates. | green | 2001-05-05 | 2 | -5/+11 | |
| | | | | | | | | | | | | | | | | (Missing Delta Brigade, tally-ho!) | |||||
* | | | | Get ssh(1) compiling with MAKE_KERBEROS5. | green | 2001-05-04 | 2 | -2/+6 | |
| | | | | ||||||
* | | | | Remove obsoleted files. | green | 2001-05-04 | 12 | -1582/+0 | |
| | | | | ||||||
* | | | | Fix conflicts for OpenSSH 2.9. | green | 2001-05-04 | 49 | -4374/+5736 | |
| | | | | ||||||
* | | | | This commit was generated by cvs2svn to compensate for changes in r76259, | green | 2001-05-04 | 118 | -2874/+10190 | |
|\ \ \ \ | | | | | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. | |||||
| * | | | | Say "hi" to the latest in the OpenSSH series, version 2.9! | green | 2001-05-04 | 162 | -7158/+15940 | |
| | | | | | | | | | | | | | | | | | | | | Happy birthday to: rwatson | |||||
| * | | | | This commit was manufactured by cvs2svn to create branch | cvs2svn | 2000-12-05 | 3 | -0/+1064 | |
| | | | | | | | | | | | | | | | | | | | | 'VENDOR-crypto-openssh'. | |||||
* | | | | | Add a "VersionAddendum" configuration setting for sshd which allows | green | 2001-05-03 | 3 | -2/+77 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | anyone to easily change the part of the OpenSSH version after the main version number. The FreeBSD-specific version banner could be disabled that way, for example: # Call ourselves plain OpenSSH VersionAddendum | |||||
* | | | | | Backout completely canonical lookup modifications. | green | 2001-05-03 | 3 | -15/+24 | |
| | | | | | ||||||
* | | | | | Toss into attic stuff we don't use. | markm | 2001-04-14 | 4 | -940/+0 | |
| | | | | | ||||||
* | | | | | mdoc(7) police: removed hard sentence breaks introduced in rev.1.10. | ru | 2001-04-13 | 1 | -4/+5 | |
| | | | | | ||||||
* | | | | | Clean up telnet's argument processing a bit. autologin and encryption is | nsayer | 2001-04-06 | 2 | -34/+23 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | now the default, so ignore the arguments that turn it on. Add a new -y argument to turn off encryption in case someone wants to do that. Sync these changes with the man page (including removing the now obsolete statement about availability only in the US and Canada). | |||||
* | | | | | Reactivate SRA. | nsayer | 2001-04-05 | 1 | -0/+18 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | Make handling of SIGINT and SIGQUIT follow SIGTSTP in TerminalNewMode(). This allows people to break out of SRA authentication if they wish to. | |||||
* | | | | | Suggested by kris, OpenSSH shall have a version designated to note that | green | 2001-03-20 | 1 | -1/+2 | |
| | | | | | | | | | | | | | | | | | | | | it's not "plain" OpenSSH 2.3.0. | |||||
* | | | | | Make password attacks based on traffic analysis harder by requiring that | green | 2001-03-20 | 9 | -5/+74 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | "non-echoed" characters are still echoed back in a null packet, as well as pad passwords sent to not give hints to the length otherwise. Obtained from: OpenBSD |