Commit Graph

1619 Commits

Author SHA1 Message Date
Damien Miller
b90416b7df - (djm) Sync with -current openbsd-compat/readpassphrase.c:
- djm@cvs.openbsd.org 2001/06/27 13:23:30
     typo, spotted by Tom Holroyd <tomh@po.crl.go.jp>; ok deraadt@
2001-06-27 23:26:38 +10:00
Damien Miller
b5b0af4d58 - (djm) Oops, forgot make logic for primes=>moduli. Also try to rename
existing primes->moduli if it exists.
2001-06-27 21:52:32 +10:00
Damien Miller
407548b7ed - (djm) Rename sysconfdir/primes => sysconfdir/moduli 2001-06-27 17:07:16 +10:00
Damien Miller
ec9868aa3c - (djm) Remove redundant and incorrect test for max auth attempts in
PAM kbdint code. Based on fix from Matthew Melvin
  <matthewm@webcentral.com.au>
2001-06-27 15:36:43 +10:00
Damien Miller
665af9cae7 - (djm) Reintroduce pam_session call for non-pty sessions. 2001-06-27 09:34:15 +10:00
Damien Miller
c8a3868ed0 - (djm) Bring in readpassphrase() from OpenBSD libc. Compiles OK on Linux and
Solaris
2001-06-25 18:09:16 +10:00
Damien Miller
2d5ac08f13 -Wall 2001-06-25 17:07:59 +10:00
Ben Lindstrom
491bbb811a - markus@cvs.openbsd.org 2001/06/24 17:18:31
[ttymodes.c]
     passing modes works fine: debug2->3
2001-06-25 05:24:16 +00:00
Ben Lindstrom
126c56ad9e - markus@cvs.openbsd.org 2001/06/24 05:47:13
[sshconnect2.c]
     oops, missing format string
2001-06-25 05:22:53 +00:00
Ben Lindstrom
949974bbdb - markus@cvs.openbsd.org 2001/06/24 05:35:33
[readpass.c readpass.h ssh-add.c sshconnect2.c ssh-keygen.c]
     switch to readpassphrase(3)
     2.7/8-stable needs readpassphrase.[ch] from libc
2001-06-25 05:20:31 +00:00
Ben Lindstrom
f0c50293dd - markus@cvs.openbsd.org 2001/06/24 05:25:10
[auth-options.c match.c match.h]
     move ip+hostname check to match.c
2001-06-25 05:17:53 +00:00
Ben Lindstrom
0520945179 - markus@cvs.openbsd.org 2001/06/23 22:37:46
[sshconnect1.c]
     consistent with ssh2: skip key if empty passphrase is entered,
     retry num_of_passwd_prompt times if passphrase is wrong. ok fgsch@
2001-06-25 05:16:02 +00:00
Ben Lindstrom
980978639c - markus@cvs.openbsd.org 2001/06/23 19:12:43
[sshd.c]
     pidfile/sigterm race; bbraun@synack.net
2001-06-25 05:10:20 +00:00
Ben Lindstrom
2464322d7e - itojun@cvs.openbsd.org 2001/06/23 17:48:18
[sftp.1 ssh.1 sshd.8 ssh-keyscan.1]
     kill whitespace at EOL.
2001-06-25 05:08:11 +00:00
Ben Lindstrom
e586c4ce3f - markus@cvs.openbsd.org 2001/06/23 17:05:22
[ssh-keygen.c]
     fix import for (broken?) ssh.com/f-secure private keys
     (i tested > 1000 RSA keys)
2001-06-25 05:04:58 +00:00
Ben Lindstrom
bba81213b9 - itojun@cvs.openbsd.org 2001/06/23 15:12:20
[auth1.c auth2.c auth2-chall.c authfd.c authfile.c auth-rhosts.c
      canohost.c channels.c cipher.c clientloop.c deattack.c dh.c
      hostfile.c kex.c kexdh.c kexgex.c key.c nchan.c packet.c radix.c
      readpass.c scp.c servconf.c serverloop.c session.c sftp.c
      sftp-client.c sftp-glob.c sftp-int.c sftp-server.c ssh-add.c
      ssh-agent.c ssh.c sshconnect1.c sshconnect2.c sshconnect.c sshd.c
      ssh-keygen.c ssh-keyscan.c]
     more strict prototypes.  raise warning level in Makefile.inc.
     markus ok'ed
     TODO; cleanup headers
2001-06-25 05:01:22 +00:00
Ben Lindstrom
34f91883a6 - markus@cvs.openbsd.org 2001/06/23 06:41:10
[ssh-keygen.c]
     try to decode ssh-3.0.0 private rsa keys
     (allow migration to openssh, not vice versa), #910
2001-06-25 04:47:54 +00:00
Ben Lindstrom
90fd060bc8 - deraadt@cvs.openbsd.org 2001/06/23 05:57:09
[sftp.1 sftp-server.8 ssh-keygen.1]
     ok, tmac is now fixed
2001-06-25 04:45:33 +00:00
Ben Lindstrom
5363aee8bd - markus@cvs.openbsd.org 2001/06/23 05:26:02
[key.c]
     handle sigature of size 0 (some broken clients send this).
2001-06-25 04:42:20 +00:00
Ben Lindstrom
a4789ef878 - markus@cvs.openbsd.org 2001/06/23 03:04:42
[auth2.c auth-rh-rsa.c]
     restore correct ignore_user_known_hosts logic.
2001-06-25 04:40:49 +00:00
Ben Lindstrom
3c798d4743 - markus@cvs.openbsd.org 2001/06/23 03:03:59
[sshd.8]
     draft-ietf-secsh-dh-group-exchange-01.txt
2001-06-25 04:39:22 +00:00
Ben Lindstrom
d6481ea49a - markus@cvs.openbsd.org 2001/06/23 02:34:33
[kexdh.c kexgex.c kex.h pathnames.h readconf.c servconf.h ssh.1
      sshconnect1.c sshconnect2.c sshconnect.c sshconnect.h sshd.8]
     get rid of known_hosts2, use it for hostkey lookup, but do not
     modify.
2001-06-25 04:37:41 +00:00
Ben Lindstrom
b710f788f1 - deraadt@cvs.openbsd.org 2001/06/23 02:33:05
[sftp.1 sftp-server.8 ssh-keygen.1]
     join .%A entries; most by bk@rt.fm
2001-06-25 04:32:38 +00:00
Ben Lindstrom
83647ce474 - markus@cvs.openbsd.org 2001/06/23 00:20:57
[auth2.c auth.c auth.h auth-rh-rsa.c]
     *known_hosts2 is obsolete for hostbased authentication and
     only used for backward compat. merge ssh1/2 hostkey check
     and move it to auth.c
2001-06-25 04:30:16 +00:00
Ben Lindstrom
7d5ed3a07b - deraadt@cvs.openbsd.org 2001/06/23 00:16:16
[scp.c]
     slightly better care
2001-06-25 04:28:30 +00:00
Ben Lindstrom
6ab6486273 - markus@cvs.openbsd.org 2001/06/22 23:35:21
[ssh.c]
     don't overwrite argv (fixes ssh user@host in 'ps'), report by ericj@
2001-06-25 04:26:55 +00:00
Ben Lindstrom
488d8805f3 - markus@cvs.openbsd.org 2001/06/22 22:21:20
[sftp-server.c]
     allow long usernames/groups in readdir
2001-06-25 04:24:49 +00:00
Ben Lindstrom
af7388046d - provos@cvs.openbsd.org 2001/06/22 21:57:59
[dh.c]
     increase linebuffer to deal with larger moduli; use rewind instead of
     close/open
2001-06-25 04:18:59 +00:00
Ben Lindstrom
f96704d4ef - markus@cvs.openbsd.org 2001/06/22 21:55:49
[auth2.c auth-rsa.c pathnames.h ssh.1 sshd.8 sshd_config
      ssh-keygen.1]
     merge authorized_keys2 into authorized_keys.
     authorized_keys2 is used for backward compat.
     (just append authorized_keys2 to authorized_keys).
2001-06-25 04:17:12 +00:00
Ben Lindstrom
ae1c51c208 - provos@cvs.openbsd.org 2001/06/22 21:28:53
[sshd.8]
     document /etc/moduli
2001-06-25 04:14:59 +00:00
Ben Lindstrom
93a29e046e - provos@cvs.openbsd.org 2001/06/22 21:27:08
[dh.c pathnames.h]
     use /etc/moduli instead of /etc/primes, okay markus@
2001-06-25 04:13:25 +00:00
Ben Lindstrom
d2bf0d64d9 - mpech@cvs.openbsd.org 2001/06/22 10:17:51
[ssh.1 sshd.8 ssh-keyscan.1]
     o) .Sh AUTHOR -> .Sh AUTHORS;
     o) remove unnecessary .Pp;
     o) better -mdoc style;
     o) typo;
     o) sort SEE ALSO;

     aaron@ ok
2001-06-25 04:10:54 +00:00
Ben Lindstrom
07094e52e7 - markus@cvs.openbsd.org 2001/06/21 21:08:25
[session.c]
      don't reset forced_command (we allow multiple login shells in
      ssh2); dwd@bell-labs.com
2001-06-25 03:59:43 +00:00
Kevin Steves
824569537f - (stevesk) handle systems without pw_expire and pw_change. 2001-06-22 21:14:18 +00:00
Ben Lindstrom
601e43638e - markus@cvs.openbsd.org 2001/06/20 13:56:39
[channels.c channels.h clientloop.c packet.c serverloop.c]
     move from channel_stop_listening to channel_free_all,
     call channel_free_all before calling waitpid() in serverloop.
     fixes the utmp handling; report from Lutz.Jaenicke@aet.TU-Cottbus.DE
2001-06-21 03:19:23 +00:00
Ben Lindstrom
0a7ca6c7ba - markus@cvs.openbsd.org 2001/06/19 15:40:45
[session.c]
     allocate and free at the same level.
2001-06-21 03:17:42 +00:00
Ben Lindstrom
699776e9ec - markus@cvs.openbsd.org 2001/06/19 14:09:45
[session.c sshd.8]
     disable x11-fwd if use_login is enabled; from lukem@wasabisystems.com
2001-06-21 03:14:49 +00:00
Ben Lindstrom
c85ab8afab - markus@cvs.openbsd.org 2001/06/19 12:34:09
[session.c]
     cleanup forced command handling, from dwd@bell-labs.com
2001-06-21 03:13:10 +00:00
Ben Lindstrom
3af4d4634f - markus@cvs.openbsd.org 2001/06/16 08:58:34
[misc.c]
     copy pw_expire and pw_change, too.
2001-06-21 03:11:27 +00:00
Ben Lindstrom
738f51e3df - markus@cvs.openbsd.org 2001/06/16 08:57:35
[scp.c]
     no stdio or exit() in signal handlers.
2001-06-21 03:08:58 +00:00
Ben Lindstrom
83417a86da - markus@cvs.openbsd.org 2001/06/16 08:50:39
[channels.h]
     bad //-style comment; thx to stevev@darkwing.uoregon.edu
2001-06-21 03:07:27 +00:00
Ben Lindstrom
352b1c2130 - markus@cvs.openbsd.org 2001/06/16 08:49:38
[misc.c]
     typo; dunlap@apl.washington.edu
2001-06-21 03:04:37 +00:00
Kevin Steves
805cf5a788 - (stevesk) update TODO: STREAMS pty systems don't call vhangup() now 2001-06-15 04:23:12 +00:00
Kevin Steves
974fb9cf2f - (stevesk) don't set SA_RESTART and set SIGCHLD to SIG_DFL
around grantpt().
2001-06-15 00:04:23 +00:00
Ben Lindstrom
7a83722577 - OpenBSD CVS Sync
- markus@cvs.openbsd.org 2001/06/13 09:10:31
     [session.c]
     typo, use pid not s->pid, mstone@cs.loyola.edu
2001-06-13 19:23:32 +00:00
Ben Lindstrom
c51ae1bdaa - markus@cvs.openbsd.org 2001/06/12 21:30:57
[session.c]
     unused
2001-06-13 04:43:52 +00:00
Ben Lindstrom
2bcdf064d8 - markus@cvs.openbsd.org 2001/06/12 21:21:29
[session.c]
     remove xauth-cookie-in-tmp handling. use default $XAUTHORITY, since
     we do already trust $HOME/.ssh
     you can use .ssh/sshrc and .ssh/environment if you want to customize
     the location of the xauth cookies
2001-06-13 04:41:41 +00:00
Ben Lindstrom
16d45b3952 - markus@cvs.openbsd.org 2001/06/12 16:11:26
[packet.c]
     do not log() packet_set_maxsize
2001-06-13 04:39:18 +00:00
Ben Lindstrom
49c126044d - markus@cvs.openbsd.org 2001/06/12 16:10:38
[session.c]
     merge ssh1/ssh2 tty msg parse and alloc code
2001-06-13 04:37:36 +00:00
Ben Lindstrom
7eaf8e4e26 - markus@cvs.openbsd.org 2001/06/12 10:58:29
[session.c]
     merge session_free into session_close()
     merge pty_cleanup_proc into session_pty_cleanup()
2001-06-13 04:35:43 +00:00