summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/auth1.c
AgeCommit message (Collapse)Author
2006-08-03almost entirely get rid of the culture of ".h files that include .h files"Theo de Raadt
ok djm, sort of ok stevesk makes the pain stop in one easy step
2006-08-01move #include <stdio.h> out of includes.hKevin Steves
2006-07-22move #include <string.h> out of includes.hKevin Steves
2006-07-20missed some needed #include <unistd.h> when KERBEROS5=no; issue fromKevin Steves
massimo@cedoc.mo.it
2006-03-25Put $OpenBSD$ tags back (as comments) to replace the RCSID()s thatDamien Miller
Theo nuked - our scripts to sync -portable need them in the files
2006-03-20sprinkle some ARGSUSED for table driven functions (which sometimes must ↵Theo de Raadt
ignore their args)
2006-03-19spacingTheo de Raadt
2006-03-19RCSID() can dieTheo de Raadt
2005-07-16spacingDamien Miller
2005-06-17make this -Wsign-compare clean; ok avsm@ markus@Damien Miller
2005-05-20split protocol 1 auth methods into separate functions, makes authloopDamien Miller
much more readable; fixes and ok markus@
2004-07-28more s/illegal/invalid/Markus Friedl
2004-07-21bz#899: Don't display invalid usernames in setproctitleDamien Miller
from peak AT argo.troja.mff.cuni.cz; ok markus@
2004-05-23Add MaxAuthTries sshd config option; ok markus@Darren Tucker
2004-05-09kill some more tiny files; ok deraadt@Damien Miller
2003-11-08remove unused variable (pw). ok djm@Jakob Schlyter
2003-11-04standardise arguments to auth methods - they should all take authctxt.Damien Miller
check authctxt->valid rather then pw != NULL; ok markus@
2003-09-23replace fatal_cleanup() and linked list of fatal callbacks with staticMarkus Friedl
cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@
2003-08-28remove kerberos support from ssh1, since it has been replaced with GSSAPI;Markus Friedl
but keep kerberos passwd auth for ssh1 and 2; ok djm, hin, henning, ...
2003-08-26fix passwd auth for 'username leaks via timing'; with djm@, original patches ↵Markus Friedl
from solar
2003-08-13remove RhostsAuthentication; suggested by djm@ before; ok djm@, deraadt@,Markus Friedl
fgsch@, miod@, henning@, jakob@ and others
2003-07-22remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1);Markus Friedl
test+ok henning@
2003-04-08rename log() into logit() to avoid name conflict. markus ok, from netbsdJun-ichiro itojun Hagino
2003-02-06undo broken fix for #387, fixes #486Markus Friedl
2003-01-23Don't log TIS auth response; "get rid of it" - markus@Damien Miller
2002-11-21KNFTheo de Raadt
2002-09-26krb4 + privsep; ok dugsong@, deraadt@Markus Friedl
2002-09-09kerberos support for privsep. confirmed to work by lha@stacken.kth.seJun-ichiro itojun Hagino
patch from markus
2002-08-22auth_root_allowed() is handled by the monitor in the privsep case,Markus Friedl
so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325
2002-06-19KNF done automatically while reading....Theo de Raadt
2002-04-10strip '@' from username only for KerbV and known broken clients, bug #204Markus Friedl
2002-03-19make getpwnamallow() allways call pwcopy()Markus Friedl
2002-03-18integrate privilege separated openssh; its turned off by default for now.Niels Provos
work done by me and markus@
2002-03-18have the authentication functions return the authentication contextNiels Provos
and then do_authenticated; okay millert@
2002-03-17getpwnamallow returns struct passwd * only if user valid; okay markus@Niels Provos
2002-02-03don't use channel_input_channel_request and callbackMarkus Friedl
use new server_input_channel_req() instead: server_input_channel_req does generic request parsing on server side session_input_channel_req handles just session specific things now ok djm@
2001-12-28packet_read* no longer return the packet length, since it's not used.Markus Friedl
2001-12-28packet_get_bignum* no longer returns a sizeMarkus Friedl
2001-12-28s/packet_done/packet_check_eom/ (end-of-message); ok djm@Markus Friedl
2001-12-27get rid of packet_integrity_check, use packet_done() instead.Markus Friedl
2001-12-27auth_rhosts_rsa now accept generic keys.Markus Friedl
2001-12-27call fatal() for openssl allocation failuresMarkus Friedl
2001-12-25be more carefull on allocationMarkus Friedl
2001-12-19basic KNF done while i was looking for something elseTheo de Raadt
2001-12-05make it compile with more strict prototype checkingJun-ichiro itojun Hagino
2001-06-26Kerberos v5 support for SSH1, mostly from Assar Westerlund ↵Dug Song
<assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
2001-06-23more strict prototypes. raise warning level in Makefile.inc. markus ok'edJun-ichiro itojun Hagino
TODO; cleanup headers
2001-05-18improved kbd-interactive support. work by per@appgate.com and meMarkus Friedl
2001-03-23authctxt is now passed to do_authenticatedMarkus Friedl
2001-03-21merge common ssh v1/2 codeMarkus Friedl
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-03 15:45:40 +0000