Damien Miller
b90416b7df
- (djm) Sync with -current openbsd-compat/readpassphrase.c:
...
- djm@cvs.openbsd.org 2001/06/27 13:23:30
typo, spotted by Tom Holroyd <tomh@po.crl.go.jp>; ok deraadt@
2001-06-27 23:26:38 +10:00
Damien Miller
b5b0af4d58
- (djm) Oops, forgot make logic for primes=>moduli. Also try to rename
...
existing primes->moduli if it exists.
2001-06-27 21:52:32 +10:00
Damien Miller
407548b7ed
- (djm) Rename sysconfdir/primes => sysconfdir/moduli
2001-06-27 17:07:16 +10:00
Damien Miller
ec9868aa3c
- (djm) Remove redundant and incorrect test for max auth attempts in
...
PAM kbdint code. Based on fix from Matthew Melvin
<matthewm@webcentral.com.au>
2001-06-27 15:36:43 +10:00
Damien Miller
665af9cae7
- (djm) Reintroduce pam_session call for non-pty sessions.
2001-06-27 09:34:15 +10:00
Damien Miller
c8a3868ed0
- (djm) Bring in readpassphrase() from OpenBSD libc. Compiles OK on Linux and
...
Solaris
2001-06-25 18:09:16 +10:00
Damien Miller
2d5ac08f13
-Wall
2001-06-25 17:07:59 +10:00
Ben Lindstrom
491bbb811a
- markus@cvs.openbsd.org 2001/06/24 17:18:31
...
[ttymodes.c]
passing modes works fine: debug2->3
2001-06-25 05:24:16 +00:00
Ben Lindstrom
126c56ad9e
- markus@cvs.openbsd.org 2001/06/24 05:47:13
...
[sshconnect2.c]
oops, missing format string
2001-06-25 05:22:53 +00:00
Ben Lindstrom
949974bbdb
- markus@cvs.openbsd.org 2001/06/24 05:35:33
...
[readpass.c readpass.h ssh-add.c sshconnect2.c ssh-keygen.c]
switch to readpassphrase(3)
2.7/8-stable needs readpassphrase.[ch] from libc
2001-06-25 05:20:31 +00:00
Ben Lindstrom
f0c50293dd
- markus@cvs.openbsd.org 2001/06/24 05:25:10
...
[auth-options.c match.c match.h]
move ip+hostname check to match.c
2001-06-25 05:17:53 +00:00
Ben Lindstrom
0520945179
- markus@cvs.openbsd.org 2001/06/23 22:37:46
...
[sshconnect1.c]
consistent with ssh2: skip key if empty passphrase is entered,
retry num_of_passwd_prompt times if passphrase is wrong. ok fgsch@
2001-06-25 05:16:02 +00:00
Ben Lindstrom
980978639c
- markus@cvs.openbsd.org 2001/06/23 19:12:43
...
[sshd.c]
pidfile/sigterm race; bbraun@synack.net
2001-06-25 05:10:20 +00:00
Ben Lindstrom
2464322d7e
- itojun@cvs.openbsd.org 2001/06/23 17:48:18
...
[sftp.1 ssh.1 sshd.8 ssh-keyscan.1]
kill whitespace at EOL.
2001-06-25 05:08:11 +00:00
Ben Lindstrom
e586c4ce3f
- markus@cvs.openbsd.org 2001/06/23 17:05:22
...
[ssh-keygen.c]
fix import for (broken?) ssh.com/f-secure private keys
(i tested > 1000 RSA keys)
2001-06-25 05:04:58 +00:00
Ben Lindstrom
bba81213b9
- itojun@cvs.openbsd.org 2001/06/23 15:12:20
...
[auth1.c auth2.c auth2-chall.c authfd.c authfile.c auth-rhosts.c
canohost.c channels.c cipher.c clientloop.c deattack.c dh.c
hostfile.c kex.c kexdh.c kexgex.c key.c nchan.c packet.c radix.c
readpass.c scp.c servconf.c serverloop.c session.c sftp.c
sftp-client.c sftp-glob.c sftp-int.c sftp-server.c ssh-add.c
ssh-agent.c ssh.c sshconnect1.c sshconnect2.c sshconnect.c sshd.c
ssh-keygen.c ssh-keyscan.c]
more strict prototypes. raise warning level in Makefile.inc.
markus ok'ed
TODO; cleanup headers
2001-06-25 05:01:22 +00:00
Ben Lindstrom
34f91883a6
- markus@cvs.openbsd.org 2001/06/23 06:41:10
...
[ssh-keygen.c]
try to decode ssh-3.0.0 private rsa keys
(allow migration to openssh, not vice versa), #910
2001-06-25 04:47:54 +00:00
Ben Lindstrom
90fd060bc8
- deraadt@cvs.openbsd.org 2001/06/23 05:57:09
...
[sftp.1 sftp-server.8 ssh-keygen.1]
ok, tmac is now fixed
2001-06-25 04:45:33 +00:00
Ben Lindstrom
5363aee8bd
- markus@cvs.openbsd.org 2001/06/23 05:26:02
...
[key.c]
handle sigature of size 0 (some broken clients send this).
2001-06-25 04:42:20 +00:00
Ben Lindstrom
a4789ef878
- markus@cvs.openbsd.org 2001/06/23 03:04:42
...
[auth2.c auth-rh-rsa.c]
restore correct ignore_user_known_hosts logic.
2001-06-25 04:40:49 +00:00
Ben Lindstrom
3c798d4743
- markus@cvs.openbsd.org 2001/06/23 03:03:59
...
[sshd.8]
draft-ietf-secsh-dh-group-exchange-01.txt
2001-06-25 04:39:22 +00:00
Ben Lindstrom
d6481ea49a
- markus@cvs.openbsd.org 2001/06/23 02:34:33
...
[kexdh.c kexgex.c kex.h pathnames.h readconf.c servconf.h ssh.1
sshconnect1.c sshconnect2.c sshconnect.c sshconnect.h sshd.8]
get rid of known_hosts2, use it for hostkey lookup, but do not
modify.
2001-06-25 04:37:41 +00:00
Ben Lindstrom
b710f788f1
- deraadt@cvs.openbsd.org 2001/06/23 02:33:05
...
[sftp.1 sftp-server.8 ssh-keygen.1]
join .%A entries; most by bk@rt.fm
2001-06-25 04:32:38 +00:00
Ben Lindstrom
83647ce474
- markus@cvs.openbsd.org 2001/06/23 00:20:57
...
[auth2.c auth.c auth.h auth-rh-rsa.c]
*known_hosts2 is obsolete for hostbased authentication and
only used for backward compat. merge ssh1/2 hostkey check
and move it to auth.c
2001-06-25 04:30:16 +00:00
Ben Lindstrom
7d5ed3a07b
- deraadt@cvs.openbsd.org 2001/06/23 00:16:16
...
[scp.c]
slightly better care
2001-06-25 04:28:30 +00:00
Ben Lindstrom
6ab6486273
- markus@cvs.openbsd.org 2001/06/22 23:35:21
...
[ssh.c]
don't overwrite argv (fixes ssh user@host in 'ps'), report by ericj@
2001-06-25 04:26:55 +00:00
Ben Lindstrom
488d8805f3
- markus@cvs.openbsd.org 2001/06/22 22:21:20
...
[sftp-server.c]
allow long usernames/groups in readdir
2001-06-25 04:24:49 +00:00
Ben Lindstrom
af7388046d
- provos@cvs.openbsd.org 2001/06/22 21:57:59
...
[dh.c]
increase linebuffer to deal with larger moduli; use rewind instead of
close/open
2001-06-25 04:18:59 +00:00
Ben Lindstrom
f96704d4ef
- markus@cvs.openbsd.org 2001/06/22 21:55:49
...
[auth2.c auth-rsa.c pathnames.h ssh.1 sshd.8 sshd_config
ssh-keygen.1]
merge authorized_keys2 into authorized_keys.
authorized_keys2 is used for backward compat.
(just append authorized_keys2 to authorized_keys).
2001-06-25 04:17:12 +00:00
Ben Lindstrom
ae1c51c208
- provos@cvs.openbsd.org 2001/06/22 21:28:53
...
[sshd.8]
document /etc/moduli
2001-06-25 04:14:59 +00:00
Ben Lindstrom
93a29e046e
- provos@cvs.openbsd.org 2001/06/22 21:27:08
...
[dh.c pathnames.h]
use /etc/moduli instead of /etc/primes, okay markus@
2001-06-25 04:13:25 +00:00
Ben Lindstrom
d2bf0d64d9
- mpech@cvs.openbsd.org 2001/06/22 10:17:51
...
[ssh.1 sshd.8 ssh-keyscan.1]
o) .Sh AUTHOR -> .Sh AUTHORS;
o) remove unnecessary .Pp;
o) better -mdoc style;
o) typo;
o) sort SEE ALSO;
aaron@ ok
2001-06-25 04:10:54 +00:00
Ben Lindstrom
07094e52e7
- markus@cvs.openbsd.org 2001/06/21 21:08:25
...
[session.c]
don't reset forced_command (we allow multiple login shells in
ssh2); dwd@bell-labs.com
2001-06-25 03:59:43 +00:00
Kevin Steves
824569537f
- (stevesk) handle systems without pw_expire and pw_change.
2001-06-22 21:14:18 +00:00
Ben Lindstrom
601e43638e
- markus@cvs.openbsd.org 2001/06/20 13:56:39
...
[channels.c channels.h clientloop.c packet.c serverloop.c]
move from channel_stop_listening to channel_free_all,
call channel_free_all before calling waitpid() in serverloop.
fixes the utmp handling; report from Lutz.Jaenicke@aet.TU-Cottbus.DE
2001-06-21 03:19:23 +00:00
Ben Lindstrom
0a7ca6c7ba
- markus@cvs.openbsd.org 2001/06/19 15:40:45
...
[session.c]
allocate and free at the same level.
2001-06-21 03:17:42 +00:00
Ben Lindstrom
699776e9ec
- markus@cvs.openbsd.org 2001/06/19 14:09:45
...
[session.c sshd.8]
disable x11-fwd if use_login is enabled; from lukem@wasabisystems.com
2001-06-21 03:14:49 +00:00
Ben Lindstrom
c85ab8afab
- markus@cvs.openbsd.org 2001/06/19 12:34:09
...
[session.c]
cleanup forced command handling, from dwd@bell-labs.com
2001-06-21 03:13:10 +00:00
Ben Lindstrom
3af4d4634f
- markus@cvs.openbsd.org 2001/06/16 08:58:34
...
[misc.c]
copy pw_expire and pw_change, too.
2001-06-21 03:11:27 +00:00
Ben Lindstrom
738f51e3df
- markus@cvs.openbsd.org 2001/06/16 08:57:35
...
[scp.c]
no stdio or exit() in signal handlers.
2001-06-21 03:08:58 +00:00
Ben Lindstrom
83417a86da
- markus@cvs.openbsd.org 2001/06/16 08:50:39
...
[channels.h]
bad //-style comment; thx to stevev@darkwing.uoregon.edu
2001-06-21 03:07:27 +00:00
Ben Lindstrom
352b1c2130
- markus@cvs.openbsd.org 2001/06/16 08:49:38
...
[misc.c]
typo; dunlap@apl.washington.edu
2001-06-21 03:04:37 +00:00
Kevin Steves
805cf5a788
- (stevesk) update TODO: STREAMS pty systems don't call vhangup() now
2001-06-15 04:23:12 +00:00
Kevin Steves
974fb9cf2f
- (stevesk) don't set SA_RESTART and set SIGCHLD to SIG_DFL
...
around grantpt().
2001-06-15 00:04:23 +00:00
Ben Lindstrom
7a83722577
- OpenBSD CVS Sync
...
- markus@cvs.openbsd.org 2001/06/13 09:10:31
[session.c]
typo, use pid not s->pid, mstone@cs.loyola.edu
2001-06-13 19:23:32 +00:00
Ben Lindstrom
c51ae1bdaa
- markus@cvs.openbsd.org 2001/06/12 21:30:57
...
[session.c]
unused
2001-06-13 04:43:52 +00:00
Ben Lindstrom
2bcdf064d8
- markus@cvs.openbsd.org 2001/06/12 21:21:29
...
[session.c]
remove xauth-cookie-in-tmp handling. use default $XAUTHORITY, since
we do already trust $HOME/.ssh
you can use .ssh/sshrc and .ssh/environment if you want to customize
the location of the xauth cookies
2001-06-13 04:41:41 +00:00
Ben Lindstrom
16d45b3952
- markus@cvs.openbsd.org 2001/06/12 16:11:26
...
[packet.c]
do not log() packet_set_maxsize
2001-06-13 04:39:18 +00:00
Ben Lindstrom
49c126044d
- markus@cvs.openbsd.org 2001/06/12 16:10:38
...
[session.c]
merge ssh1/ssh2 tty msg parse and alloc code
2001-06-13 04:37:36 +00:00
Ben Lindstrom
7eaf8e4e26
- markus@cvs.openbsd.org 2001/06/12 10:58:29
...
[session.c]
merge session_free into session_close()
merge pty_cleanup_proc into session_pty_cleanup()
2001-06-13 04:35:43 +00:00