summaryrefslogtreecommitdiffstats
path: root/secure/usr.bin
Commit message (Collapse)AuthorAgeFilesLines
* Merge OpenSSL 1.0.1e.jkim2013-02-1345-124/+129
| | | | Approved by: secteam (simon), benl (silence)
* Add a src.conf(5) option to allow users to compile in the "NONE cipher",bz2013-01-171-0/+4
| | | | | | | | | which, only after authentication, disables crypto, and only for sessions without a terminal. Submitted by: Jeremy Chadwick (freebsd jdc.parodius.com) PR: bin/163095 MFC after: 10 days
* Fix typo; s/ouput/outputkevlo2012-11-071-1/+1
|
* Merge OpenSSL 1.0.1c.jkim2012-07-1248-477/+3387
| | | | Approved by: benl (maintainer)
* Regen ca(1) for r237658. This re-applies r227458, i.e., add a missing "be".jkim2012-06-271-1/+1
|
* Merge OpenSSL 0.9.8x.jkim2012-06-2738-77/+77
| | | | | | Reviewed by: stas Approved by: benl (maintainer) MFC after: 3 days
* Restore the ability to use a non-standard LOCALBASE to sshdeadler2012-03-241-0/+4
| | | | | | | | | Add the ability to use a non-standard LOCALBASE to ssh Submitted by: jhb Reviewed by: des Approved by: cperciva MFC after: 0 days (with r233136)
* X11BASE is not used any more and has been killed by the x11 team.eadler2012-03-191-13/+0
| | | | | | Reviewed by: ??? Approved by: ??? MFC after: 3 days
* - add a missing "be" and "in"eadler2011-11-111-1/+1
| | | | | | | | | | | - fix other errors introduced when committing r226436 - add 'function' to a sentence where it makes sense Submitted by: delphij Submitted by: dougb Submitted by: jhb Approved by: dougb Approved by: jhb
* - change "is is" to "is" or "it is"eadler2011-10-162-2/+2
| | | | | | | | - change "the the" to "the" Approved by: lstewart Approved by: sahil (mentor) MFC after: 3 days
* Regenerate manual pages for OpenSSL 0.9.8q.simon2010-12-0338-38/+38
|
* Regenerate manual pages for OpenSSL 0.9.8p.simon2010-11-2238-1474/+1298
|
* Regenerate manual pages for OpenSSL 0.9.8n.simon2010-04-0138-38/+38
|
* Regenerate manual pages for OpenSSL 0.9.8m.simon2010-03-1338-48/+54
| | | | MFC after: 3 weeks
* Upgrade to OpenSSH 5.4p1.des2010-03-091-1/+1
| | | | MFC after: 1 month
* Fix a couple of comment typos.jhb2009-11-031-2/+2
| | | | MFC after: 1 week
* Upgrade to OpenSSH 5.3p1.des2009-10-017-1/+24
|
* Regenerate manual pages for OpenSSL 0.9.8k.simon2009-06-1438-92/+189
|
* Update build infrastructure for OpenSSL 0.9.8k.simon2009-06-141-1/+1
|
* Upgrade to OpenSSH 5.1p1.des2008-08-011-1/+1
| | | | | | | | | | I have worked hard to reduce diffs against the vendor branch. One notable change in that respect is that we no longer prefer DSA over RSA - the reasons for doing so went away years ago. This may cause some surprises, as ssh will warn about unknown host keys even for hosts whose keys haven't changed. MFC after: 6 weeks
* Add $FreeBSD$peter2008-07-031-0/+1
|
* For users of FreeBSD <= 6.2 we recommend during the x.org 7.x upgradekris2008-03-051-1/+10
| | | | | | | | | | | | | | | | | | | | | that they add X11BASE=${LOCALBASE} to /etc/make.conf since X11BASE was hard-wired to the now-wrong location in old releases. However, both X11BASE and LOCALBASE have moved out of scope of src/ into ports/ now, which causes problems for upgraded users who have old make.conf files still containing the above setting. X11BASE becomes null and we instruct ssh and sshd to look for xauth in /bin/xauth where it is unlikely to be found. Instead, provide a copy of the default LOCALBASE?=/usr/local setting here. We also have to deal with the case where the user only overrides LOCALBASE and doesn't set an explicit X11BASE (in ports it will be set implicitly but not here), which will also move the location of xauth. MFC after: 3 days Reported by: rwatson
* getopt(3) returns -1, not EOF.ru2008-02-191-1/+1
|
* Upgrade to OpenSSL 0.9.8e.simon2007-03-1538-83/+85
|
* Fix static compilation.ru2006-10-071-2/+2
|
* Upgrade to OpenSSL 0.9.8d.simon2006-10-0138-43/+80
|
* Upgrade to OpenSSL 0.9.8b.simon2006-07-2940-102/+1666
|
* Add a manual dependency on ssh_namespace.h.des2006-05-137-0/+14
| | | | Discussed with: ru
* Introduce a namespace munging hack inspired by NetBSD to avoid pollutingdes2006-05-137-7/+7
| | | | | | | | the namespace of applications which inadvertantly link in libssh (usually through pam_ssh) Suggested by: lukem@netbsd.org MFC after: 6 weeks
* Reimplementation of world/kernel build options. For details, see:ru2006-03-172-3/+7
| | | | | | | | http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html The src.conf(5) manpage is to follow in a few days. Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine)
* Add a new extensible GSS-API layer which can support GSS-API plugins,dfr2005-12-291-3/+3
| | | | | | | | | similar the the Solaris implementation. Repackage the krb5 GSS mechanism as a plugin library for the new implementation. This also includes a comprehensive set of manpages for the GSS-API functions with text mostly taken from the RFC. Reviewed by: Love Hörnquist Åstrand <lha@it.su.se>, ru (build system), des (openssh parts)
* Revert the commits that made libssh an INTERNALLIB; they caused too muchdes2005-06-077-22/+10
| | | | | | trouble, especially on amd64. Requested by: ru
* Make libssh an INTERNALLIB like it is in {Net,Open}BSD.des2005-06-067-10/+22
|
* Update for OpenSSH 4.1p1.des2005-06-052-3/+3
|
* Update OpenSSL 0.9.7d -> 0.9.7e.nectar2005-02-2536-1638/+1778
|
* Sync program's usage() with manpage's SYNOPSIS.ru2005-02-101-1/+1
|
* Correctly hide the command arguments.dds2005-01-171-15/+2
| | | | | PR: bin/76374 MFC after: 2 weeks
* Update for 3.8p1, including workaround for a bug in gss-genr.c.des2004-02-262-2/+3
|
* style.Makefile(5):johan2004-02-231-1/+1
| | | | Use WARNS?= instead of WARNS=.
* Fixed static linkage.ru2004-01-081-2/+5
| | | | Reviewed by: des
* Enable GSSAPI support. [1]des2004-01-081-4/+4
| | | | | | Also remove some duplicates from ssh's SRCS. Submitted by: [1] Björn Grönvall <bg@sics.se>
* Update Makefiles for OpenSSH 3.7.1p2.des2004-01-077-14/+14
|
* Explicitly add libz and libcrypto to LDADD for any ssh utilities missinggordon2003-08-195-10/+10
| | | | | | | | | | | | it. While not strictly required, it unbreaks the cross-build world that is resulting from moving the libraries around. I have a more permanent solution to this problem in the works, but I asked des for permission to commit this to get the ball rolling. This also makes the ssh build more along the lines of what the openssh-portable and OpenBSD openssh Makefile glue does. Reviewed by: des
* Very big makeover in the way telnet, telnetd and libtelnet are built.markm2003-07-162-24/+0
| | | | | | | | | | | | | | | | | | | | | | | Previously, there were two copies of telnet; a non-crypto version that lived in the usual places, and a crypto version that lived in crypto/telnet/. The latter was built in a broken manner somewhat akin to other "contribified" sources. This meant that there were 4 telnets competing with each other at build time - KerberosIV, Kerberos5, plain-old-secure and base. KerberosIV is no longer in the running, but the other three took it in turns to jump all over each other during a "make buildworld". As the crypto issue has been clarified, and crypto _calls_ are not a problem, crypto/telnet has been repo-copied to contrib/telnet, and with this commit, all telnets are now "contribified". The contrib path was chosen to not destroy history in the repository, and differs from other contrib/ entries in that it may be worked on as "normal" BSD code. There is no dangerous crypto in these sources, only a very weak system less strong than enigma(1). Kerberos5 telnet and Secure telnet are now selected by using the usual macros in /etc/make.conf, and the build process is unsurprising and less treacherous.
* Fixed "make checkdpadd".ru2003-07-021-2/+2
| | | | OK'ed by: markm
* Fix for the NO_OPENSSL case.markm2003-06-081-2/+2
| | | | Reported by: Marius Strobl <marius@alchemy.franken.de>
* Modernise. Use libcrypto instead of libcipher for DES.markm2003-06-023-382/+427
|
* Turn MAKE_KERBEROS5 into NO_KERBEROS by negating the logic. Some extramarkm2003-05-052-2/+2
| | | | | cleanups were necessary in release/Makefile, and the tinderbox code was syntax checked, not run checked.
* We no longer have a separate kerberos distribution. Its now justmarkm2003-04-301-1/+0
| | | | part of the regular security dist.
* The including makefile's directory is tried first for .include "...".ru2003-04-301-1/+1
|
OpenPOWER on IntegriCloud