Damien Miller
95c249ff47
- stevesk@cvs.openbsd.org 2002/01/27 14:57:46
...
[channels.c servconf.c servconf.h session.c sshd.8 sshd_config]
add X11UseLocalhost; ok markus@
2002-02-05 12:11:34 +11:00
Damien Miller
512bccbb5a
- stevesk@cvs.openbsd.org 2002/01/26 16:44:22
...
[includes.h session.c]
revert code to add x11 localhost display authorization entry for
hostname/unix:d and uts.nodename/unix:d if nodename was different than
hostname. just add entry for unix:d instead. ok markus@
2002-02-05 12:11:02 +11:00
Damien Miller
dff5099f13
- markus@cvs.openbsd.org 2001/12/28 14:50:54
...
[auth1.c auth-rsa.c channels.c dispatch.c kex.c kexdh.c kexgex.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshconnect2.c sshd.c]
packet_read* no longer return the packet length, since it's not used.
2002-01-22 23:16:32 +11:00
Damien Miller
48b03fc546
- markus@cvs.openbsd.org 2001/12/27 20:39:58
...
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
get rid of packet_integrity_check, use packet_done() instead.
2002-01-22 23:11:40 +11:00
Damien Miller
66823cddbe
- markus@cvs.openbsd.org 2001/12/27 20:39:58
...
[auth1.c auth-rsa.c channels.c clientloop.c packet.c packet.h serverloop.c session.c ssh.c sshconnect1.c sshd.c ttymodes.c]
get rid of packet_integrity_check, use packet_done() instead.
2002-01-22 23:11:38 +11:00
Damien Miller
bb9ffc18ca
- (djm) Merge Cygwin copy_environment with do_pam_environment, removing
...
fixed env var size limit in the process. Report from Corinna Vinschen
<vinschen@redhat.com>
2002-01-08 10:59:32 +11:00
Damien Miller
e737856350
- markus@cvs.openbsd.org 2001/12/20 16:37:29
...
[channels.c channels.h session.c]
setup x11 listen socket for just one connect if the client requests so.
(v2 only, but the openssh client does not support this feature).
2001-12-21 14:58:35 +11:00
Damien Miller
8db9a84310
Sync RCSIDs from Kevin's already committed patch
2001-12-21 14:51:28 +11:00
Damien Miller
9f0f5c64bc
- deraadt@cvs.openbsd.org 2001/12/19 07:18:56
...
[auth1.c auth2.c auth2-chall.c auth-bsdauth.c auth.c authfile.c auth.h]
[auth-krb4.c auth-rhosts.c auth-skey.c bufaux.c canohost.c channels.c]
[cipher.c clientloop.c compat.c compress.c deattack.c key.c log.c mac.c]
[match.c misc.c nchan.c packet.c readconf.c rijndael.c rijndael.h scard.c]
[servconf.c servconf.h serverloop.c session.c sftp.c sftp-client.c]
[sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c]
[sshconnect1.c sshconnect2.c sshconnect.c sshd.8 sshd.c sshd_config]
[ssh-keygen.c sshlogin.c sshpty.c sshtty.c ttymodes.c uidswap.c]
basic KNF done while i was looking for something else
2001-12-21 14:45:46 +11:00
Kevin Steves
366298c696
- (stevesk) OpenBSD CVS sync X11 localhost display
...
- stevesk@cvs.openbsd.org 2001/11/29 14:10:51
[channels.h channels.c session.c]
sshd X11 fake server will now listen on localhost by default:
$ echo $DISPLAY
localhost:12.0
$ netstat -an|grep 6012
tcp 0 0 127.0.0.1.6012 *.* LISTEN
tcp6 0 0 ::1.6012 *.* LISTEN
sshd_config gatewayports=yes can be used to revert back to the old
behavior. will control this with another option later. ok markus@
- stevesk@cvs.openbsd.org 2001/12/19 08:43:11
[includes.h session.c]
handle utsname.nodename case for FamilyLocal X authorization; ok markus@
2001-12-19 17:58:01 +00:00
Ben Lindstrom
ccd8d07b3c
- stevesk@cvs.openbsd.org 2001/12/06 18:09:23
...
[channels.c session.c]
strncpy->strlcpy. remaining strncpy's are necessary. ok markus@
2001-12-07 17:26:48 +00:00
Ben Lindstrom
38b951cdb2
- markus@cvs.openbsd.org 2001/12/01 21:41:48
...
[session.c sshd.8]
don't pass user defined variables to /usr/bin/login
2001-12-06 17:47:47 +00:00
Damien Miller
e49d0966b5
- (djm) AIX login{success,failed} changes. Move loginsuccess call to
...
do_authenticated. Call loginfailed for protocol 2 failures > MAX like
we do for protocol 1. Reports from Ralf Wenk <wera0003@fh-karlsruhe.de>,
K.Wolkersdorfer@fz-juelich.de and others
2001-11-13 23:46:18 +11:00
Damien Miller
c3aa3dd70c
- (djm) Disconnect if no tty and PAM reports password expired
2001-10-28 22:34:52 +11:00
Damien Miller
0585d51a52
- markus@cvs.openbsd.org 2001/10/11 13:45:21
...
[session.c]
delay detach of session if a channel gets closed but the child is
still alive. however, release pty, since the fd's to the child are
already closed.
2001-10-12 11:35:50 +10:00
Damien Miller
3ec2759ad4
- (djm) OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/10/10 22:18:47
[channels.c channels.h clientloop.c nchan.c serverloop.c]
[session.c session.h]
try to keep channels open until an exit-status message is sent.
don't kill the login shells if the shells stdin/out/err is closed.
this should now work:
ssh -2n localhost 'exec > /dev/null 2>&1; sleep 10; exit 5'; echo ?
2001-10-12 11:35:04 +10:00
Damien Miller
52b77beb65
- markus@cvs.openbsd.org 2001/10/09 21:59:41
...
[channels.c channels.h serverloop.c session.c session.h]
simplify session close: no more delayed session_close, no more blocking wait() calls.
2001-10-10 15:14:37 +10:00
Damien Miller
ae45246696
- markus@cvs.openbsd.org 2001/10/09 19:32:49
...
[session.c]
stat subsystem command before calling do_exec, and return error to client.
2001-10-10 15:08:06 +10:00
Damien Miller
139d4cd908
- markus@cvs.openbsd.org 2001/10/09 10:12:08
...
[session.c]
chdir $HOME after krb_afslog(); from bbense@networking.stanford.edu
2001-10-10 15:07:44 +10:00
Damien Miller
9c75142917
- markus@cvs.openbsd.org 2001/10/06 00:36:42
...
[session.c]
fix typo in error message, sync with do_exec_nopty
2001-10-10 15:02:46 +10:00
Kevin Steves
a0957d6898
- (stevesk) session.c: declare do_pre_login() before use
...
wayned@users.sourceforge.net
2001-09-27 19:50:26 +00:00
Ben Lindstrom
37e41c9019
- markus@cvs.openbsd.org 2001/09/16 14:46:54
...
[session.c]
calls krb_afslog() after setting $HOME; mattiasa@e.kth.se ; fixes
pr 1943b
2001-09-16 22:17:15 +00:00
Damien Miller
599d8eba16
- (djm) Make do_pre_login static to avoid prototype #ifdef hell
2001-09-15 12:25:53 +10:00
Ben Lindstrom
b09f6b5b02
- markus@cvs.openbsd.org 2001/09/14
...
[session.c]
command=xxx overwrites subsystems, too
2001-09-14 23:12:07 +00:00
Ben Lindstrom
91e9868e4f
- jakob@cvs.openbsd.org 2001/08/16 19:18:34
...
[servconf.c servconf.h session.c sshd.8]
deprecate CheckMail. ok markus@
2001-09-12 16:32:14 +00:00
Damien Miller
efb1edfc7f
- deraadt@cvs.openbsd.org 2001/07/09 07:04:53
...
[session.c sftp-int.c]
correct type on last arg to execl(); nordin@cse.ogi.edu
2001-07-14 12:19:36 +10:00
Damien Miller
c62f1fc3ff
- (djm) Enable /etc/nologin check on PAM systems, as some lack the
...
pam_nologin module. Report from William Yodlowsky
<bsd@openbsd.rutgers.edu>
2001-07-14 11:54:05 +10:00
Kevin Steves
8f63caa197
- (stevesk) more sync for session.c
2001-07-04 18:23:02 +00:00
Ben Lindstrom
4983d5ebd5
- markus@cvs.openbsd.org 2001/07/02 13:59:15
...
[serverloop.c session.c session.h]
wait until !session_have_children(); bugreport from
Lutz.Jaenicke@aet.TU-Cottbus.DE
2001-07-04 05:17:40 +00:00
Ben Lindstrom
bddd551e11
- markus@cvs.openbsd.org 2001/06/27 02:12:54
...
[serverloop.c serverloop.h session.c session.h]
quick hack to make ssh2 work again.
2001-07-04 04:53:53 +00:00
Ben Lindstrom
ec95ed9b4c
- dugsong@cvs.openbsd.org 2001/06/26 16:15:25
...
[auth1.c auth.h auth-krb4.c auth-passwd.c readconf.c readconf.h
servconf.c servconf.h session.c sshconnect1.c sshd.c]
Kerberos v5 support for SSH1, mostly from Assar Westerlund
<assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
2001-07-04 04:21:14 +00:00
Ben Lindstrom
4469723325
- markus@cvs.openbsd.org 2001/06/25 08:25:41
...
[channels.c channels.h cipher.c clientloop.c compat.c compat.h
hostfile.c kex.c kex.h key.c key.h nchan.c packet.c serverloop.c
session.c session.h sftp-server.c ssh-add.c ssh-agent.c uuencode.h]
update copyright for 2001
2001-07-04 03:32:30 +00:00
Kevin Steves
9b26f96c12
- (stevesk) session.c: use u_int for envsize
2001-06-29 17:52:17 +00:00
Damien Miller
665af9cae7
- (djm) Reintroduce pam_session call for non-pty sessions.
2001-06-27 09:34:15 +10:00
Damien Miller
2d5ac08f13
-Wall
2001-06-25 17:07:59 +10:00
Ben Lindstrom
bba81213b9
- itojun@cvs.openbsd.org 2001/06/23 15:12:20
...
[auth1.c auth2.c auth2-chall.c authfd.c authfile.c auth-rhosts.c
canohost.c channels.c cipher.c clientloop.c deattack.c dh.c
hostfile.c kex.c kexdh.c kexgex.c key.c nchan.c packet.c radix.c
readpass.c scp.c servconf.c serverloop.c session.c sftp.c
sftp-client.c sftp-glob.c sftp-int.c sftp-server.c ssh-add.c
ssh-agent.c ssh.c sshconnect1.c sshconnect2.c sshconnect.c sshd.c
ssh-keygen.c ssh-keyscan.c]
more strict prototypes. raise warning level in Makefile.inc.
markus ok'ed
TODO; cleanup headers
2001-06-25 05:01:22 +00:00
Ben Lindstrom
07094e52e7
- markus@cvs.openbsd.org 2001/06/21 21:08:25
...
[session.c]
don't reset forced_command (we allow multiple login shells in
ssh2); dwd@bell-labs.com
2001-06-25 03:59:43 +00:00
Ben Lindstrom
0a7ca6c7ba
- markus@cvs.openbsd.org 2001/06/19 15:40:45
...
[session.c]
allocate and free at the same level.
2001-06-21 03:17:42 +00:00
Ben Lindstrom
699776e9ec
- markus@cvs.openbsd.org 2001/06/19 14:09:45
...
[session.c sshd.8]
disable x11-fwd if use_login is enabled; from lukem@wasabisystems.com
2001-06-21 03:14:49 +00:00
Ben Lindstrom
c85ab8afab
- markus@cvs.openbsd.org 2001/06/19 12:34:09
...
[session.c]
cleanup forced command handling, from dwd@bell-labs.com
2001-06-21 03:13:10 +00:00
Ben Lindstrom
7a83722577
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/06/13 09:10:31
[session.c]
typo, use pid not s->pid, mstone@cs.loyola.edu
2001-06-13 19:23:32 +00:00
Ben Lindstrom
c51ae1bdaa
- markus@cvs.openbsd.org 2001/06/12 21:30:57
...
[session.c]
unused
2001-06-13 04:43:52 +00:00
Ben Lindstrom
2bcdf064d8
- markus@cvs.openbsd.org 2001/06/12 21:21:29
...
[session.c]
remove xauth-cookie-in-tmp handling. use default $XAUTHORITY, since
we do already trust $HOME/.ssh
you can use .ssh/sshrc and .ssh/environment if you want to customize
the location of the xauth cookies
2001-06-13 04:41:41 +00:00
Ben Lindstrom
49c126044d
- markus@cvs.openbsd.org 2001/06/12 16:10:38
...
[session.c]
merge ssh1/ssh2 tty msg parse and alloc code
2001-06-13 04:37:36 +00:00
Ben Lindstrom
7eaf8e4e26
- markus@cvs.openbsd.org 2001/06/12 10:58:29
...
[session.c]
merge session_free into session_close()
merge pty_cleanup_proc into session_pty_cleanup()
2001-06-13 04:35:43 +00:00
Ben Lindstrom
88259fbbc5
- markus@cvs.openbsd.org 2001/06/11 10:18:24
...
[session.c]
reset pointer to NULL after xfree(); report from solar@openwall.com
2001-06-12 00:21:34 +00:00
Ben Lindstrom
4d3f227699
- markus@cvs.openbsd.org 2001/06/07 22:25:02
...
[session.c]
don't overwrite errno
delay deletion of the xauth cookie
2001-06-09 01:44:07 +00:00
Ben Lindstrom
cb3929d1d9
- markus@cvs.openbsd.org 2001/06/05 16:46:19
...
[session.c]
let session_close() delete the pty. deny x11fwd if xauthfile is set.
2001-06-09 01:34:15 +00:00
Ben Lindstrom
768176b240
- markus@cvs.openbsd.org 2001/06/04 23:16:16
...
[session.c]
merge ssh1/2 x11-fwd setup, create listener after tmp-dir
2001-06-09 01:29:12 +00:00
Ben Lindstrom
983c098311
- markus@cvs.openbsd.org 2001/06/04 21:59:43
...
[channels.c channels.h session.c]
switch uid when cleaning up tmp files and sockets; reported by
zen-parse@gmx.net on bugtraq
2001-06-09 01:20:06 +00:00