Commit Graph

3390 Commits

Author SHA1 Message Date
Damien Miller
7392ae6270 - jakob@cvs.openbsd.org 2003/06/11 10:16:16
[sshconnect.c]
     clean up check_host_key() and improve SSHFP feedback. ok markus@
2003-06-11 22:05:25 +10:00
Damien Miller
2b92d32e19 - deraadt@cvs.openbsd.org 2003/06/10 22:20:52
[packet.c progressmeter.c]
     mostly ansi cleanup; pval ok
2003-06-11 22:05:06 +10:00
Damien Miller
f1ce505daf - jmc@cvs.openbsd.org 2003/06/10 09:12:11
[scp.1 sftp-server.8 ssh.1 ssh-add.1 ssh-agent.1 ssh_config.5]
     [sshd.8 sshd_config.5 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8]
     - section reorder
     - COMPATIBILITY merge
     - macro cleanup
     - kill whitespace at EOL
     - new sentence, new line
     ssh pages ok markus@
2003-06-11 22:04:39 +10:00
Damien Miller
78f2e5ca98 - (djm) Re-merge OpenSC info into README.smartcard 2003-06-10 21:09:09 +10:00
Damien Miller
c18c06e131 - (djm) Sync README.smartcard with OpenBSD -current 2003-06-10 18:55:22 +10:00
Darren Tucker
400b8786d6 - (dtucker) [uidswap.c] Fix setreuid and add missing args to fatal(). ok djm@ 2003-06-06 10:46:04 +10:00
Darren Tucker
881753bef2 - (dtucker) Define EAI_NONAME in fake-rfc2553.h (used by fake-rfc2553.c). 2003-06-05 22:20:11 +10:00
Darren Tucker
4aff13f1e7 - (dtucker) Add includes.h to fake-rfc2553.c so it will build. 2003-06-05 19:37:30 +10:00
Damien Miller
76b5c8a83a - (djm) Bug #589 - scard-opensc: load only keys with a private keys
Patch from larsch@trustcenter.de
2003-06-05 19:19:35 +10:00
Damien Miller
f49078dfdf - (djm) Bug #588 - Add scard-opensc.o back to Makefile.in
Patch from larsch@trustcenter.de
2003-06-05 18:53:42 +10:00
Damien Miller
c28e38d23a - (djm) Merge all the openbsd/fake-* into fake-rfc2553.[ch] 2003-06-05 18:52:47 +10:00
Damien Miller
b95bb7f9b1 - (djm) Don't use xmalloc() or pull in toplevel headers in fake-* code 2003-06-05 10:04:12 +10:00
Damien Miller
ceb3136f5f KNF 2003-06-05 09:56:35 +10:00
Damien Miller
5fe46a45c8 - (djm) Implement paranoid priv dropping checks, based on:
"SetUID demystified" - Hao Chen, David Wagner and Drew Dean
   Proceedings of USENIX Security Symposium 2002
2003-06-05 09:53:31 +10:00
Darren Tucker
0f68486a76 Put AI_NUMERICHOST back where it belongs. 2003-06-05 09:52:42 +10:00
Damien Miller
10eac0cf8f - (djm) Support AI_NUMERICHOST in fake-getaddrinfo.c. Needed for recent
canohost.c changes.
2003-06-05 09:48:32 +10:00
Darren Tucker
66c884070e Revert recently introduced typo: AI_NUMERICHOST -> NI_NUMERICHOST 2003-06-05 00:11:53 +10:00
Damien Miller
0cbb9dea05 - (djm) Always use mysignal() for SIGALRM 2003-06-04 22:56:15 +10:00
Damien Miller
cc685c1cbe - djm@cvs.openbsd.org 2003/06/04 12:41:22
[sftp.c]
     kill ssh process on receipt of signal; ok markus@
2003-06-04 22:51:38 +10:00
Damien Miller
b69aaa8db7 - djm@cvs.openbsd.org 2003/06/04 12:40:39
[scp.c]
     kill ssh process upon receipt of signal, bz #241.
     based on patch from esb AT hawaii.edu; ok markus@
2003-06-04 22:51:24 +10:00
Damien Miller
65d1f5765f - djm@cvs.openbsd.org 2003/06/04 12:18:49
[scp.c]
     ansify; ok markus@
2003-06-04 22:51:08 +10:00
Damien Miller
9fc7c699af - djm@cvs.openbsd.org 2003/06/04 12:03:59
[serverloop.c]
     remove bitrotten commet; ok markus@
2003-06-04 22:50:54 +10:00
Damien Miller
4c322482bb - (djm) Update to fix of bug #584: lock card before return.
From larsch@trustcenter.de
2003-06-04 22:12:17 +10:00
Damien Miller
31b3a0a98f - djm@cvs.openbsd.org 2003/06/04 10:23:48
[sshd.c]
     remove duplicated group-dropping code; ok markus@
2003-06-04 20:32:12 +10:00
Damien Miller
941ac459ce - (djm) OpenBSD CVS Sync
- djm@cvs.openbsd.org 2003/06/04 08:25:18
     [sshconnect.c]
     disable challenge/response and keyboard-interactive auth methods
     upon hostkey mismatch. based on patch from fcusack AT fcusack.com.
     bz #580; ok markus@
2003-06-04 20:31:53 +10:00
Damien Miller
2527f5755a - (djm) Bug #584: scard-opensc.c doesn't work without PIN. Patch from
larsch@trustcenter.de; ok markus@
2003-06-04 19:22:06 +10:00
Damien Miller
485397c48d - (djm) Bug #577 - wrong flag in scard-opensc.c sc_private_decrypt.
ok markus@
2003-06-04 19:15:10 +10:00
Damien Miller
865173ee03 - (djm) Bug #573 - Remove unneeded Krb headers and compat goop. Patch from
simon@sxw.org.uk (Also matches a change in OpenBSD a while ago)
2003-06-04 19:06:59 +10:00
Damien Miller
d311c4e54b change "No more 4-term BSD licenses in our tree" to
"No more 4-term BSD licenses in linked code"

mdoc2man.pl is 4-term BSDL
2003-06-03 13:09:16 +10:00
Damien Miller
dafb12ed28 a - millert@cvs.openbsd.org 2003/06/03 02:56:16
[scp.c]
     Remove the advertising clause in the UCB license which Berkeley
     rescinded 22 July 1999.  Proofed by myself and Theo.
2003-06-03 13:06:18 +10:00
Darren Tucker
eb28cbc399 - (dtucker) [port-aix.c bsd-cray.c] Fix uses of verify_reverse_mapping. 2003-06-03 12:45:27 +10:00
Damien Miller
048d88d5aa trim prior to 3.6p1 2003-06-03 12:43:14 +10:00
Damien Miller
638733ed60 2-term license, matching the rest of loginrec code 2003-06-03 12:18:50 +10:00
Damien Miller
329638e49c - (djm) Sync openbsd-compat with OpenBSD CVS.
- No more 4-term BSD licenses in our tree
2003-06-03 12:12:50 +10:00
Damien Miller
4636d93c0c Removal of advertising clause in accordance with:
ftp://ftp.cs.berkeley.edu/pub/4bsd/README.Impt.License.Change

ok theo@ and millert@
2003-06-03 11:23:32 +10:00
Damien Miller
3a961dc0d3 - (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/06/02 09:17:34
     [auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c]
     [canohost.c monitor.c servconf.c servconf.h session.c sshd_config]
     [sshd_config.5]
     deprecate VerifyReverseMapping since it's dangerous if combined
     with IP based access control as noted by Mike Harding; replace with
     a UseDNS option, UseDNS is on by default and includes the
     VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@
     ok deraadt@, djm@
 - (djm) Fix portable-specific uses of verify_reverse_mapping too
2003-06-03 10:25:48 +10:00
Damien Miller
35276253a6 - (djm) Replace setproctitle replacement with code derived from
UCB sendmail
2003-06-03 10:14:28 +10:00
Damien Miller
eacbb4fcc1 - jakob@cvs.openbsd.org 2003/06/02 08:31:10
[ssh_config.5]
     VerifyHostKeyDNS is v2 only. ok markus@
2003-06-02 19:10:41 +10:00
Damien Miller
61d3680aca - deraadt@cvs.openbsd.org 2003/05/29 16:58:45
[sshd.c uidswap.c]
     seteuid and setegid; markus ok
2003-06-02 19:09:48 +10:00
Damien Miller
ab2db41b61 - djm@cvs.openbsd.org 2003/05/26 12:54:40
[sshconnect.c]
     fix format strings; ok markus@
2003-06-02 19:09:13 +10:00
Damien Miller
5d5f054173 RCS ID sync 2003-06-02 19:08:25 +10:00
Damien Miller
8d2ee9bc71 remove a bit of diff which snuck into the copyright header 2003-06-02 18:59:45 +10:00
Damien Miller
f46844214d - (djm) Sync license on openbsd-compat/bindresvport.c with OpenBSD CVS 2003-06-02 18:59:08 +10:00
Damien Miller
dcc8312a19 - (djm) Fix use of macro before #define in cipher-aes.c 2003-06-02 18:57:59 +10:00
Damien Miller
dba5950820 - (djm) Remove "noip6" option from RedHat spec file. This may now be
set at runtime using AddressFamily option.
2003-06-02 17:43:19 +10:00
Tim Rice
237ca4ab08 openbsd-compat/xmmap.[ch] License clarifications. Add missing CVS ID. 2003-06-01 19:25:27 -07:00
Damien Miller
f2e3e9deba - (djm) Always use saved_argv in sshd.c as compat_init_setproctitle may
clobber
2003-06-02 12:15:54 +10:00
Damien Miller
f3bff94957 - (djm) Fix segv from bad reordering in auth-pam.c 2003-06-02 12:13:40 +10:00
Damien Miller
46337202d4 - (djm) Fix segv from bad reordering in auth-pam.c 2003-06-02 11:04:39 +10:00
Damien Miller
ae22174b21 sync logintest license with that of loginrec.c 2003-06-02 10:42:17 +10:00