summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/auth1.c
AgeCommit message (Collapse)Author
2003-11-08remove unused variable (pw). ok djm@Jakob Schlyter
2003-11-04standardise arguments to auth methods - they should all take authctxt.Damien Miller
check authctxt->valid rather then pw != NULL; ok markus@
2003-09-23replace fatal_cleanup() and linked list of fatal callbacks with staticMarkus Friedl
cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@
2003-08-28remove kerberos support from ssh1, since it has been replaced with GSSAPI;Markus Friedl
but keep kerberos passwd auth for ssh1 and 2; ok djm, hin, henning, ...
2003-08-26fix passwd auth for 'username leaks via timing'; with djm@, original patches ↵Markus Friedl
from solar
2003-08-13remove RhostsAuthentication; suggested by djm@ before; ok djm@, deraadt@,Markus Friedl
fgsch@, miod@, henning@, jakob@ and others
2003-07-22remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1);Markus Friedl
test+ok henning@
2003-04-08rename log() into logit() to avoid name conflict. markus ok, from netbsdJun-ichiro itojun Hagino
2003-02-06undo broken fix for #387, fixes #486Markus Friedl
2003-01-23Don't log TIS auth response; "get rid of it" - markus@Damien Miller
2002-11-21KNFTheo de Raadt
2002-09-26krb4 + privsep; ok dugsong@, deraadt@Markus Friedl
2002-09-09kerberos support for privsep. confirmed to work by lha@stacken.kth.seJun-ichiro itojun Hagino
patch from markus
2002-08-22auth_root_allowed() is handled by the monitor in the privsep case,Markus Friedl
so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325
2002-06-19KNF done automatically while reading....Theo de Raadt
2002-04-10strip '@' from username only for KerbV and known broken clients, bug #204Markus Friedl
2002-03-19make getpwnamallow() allways call pwcopy()Markus Friedl
2002-03-18integrate privilege separated openssh; its turned off by default for now.Niels Provos
work done by me and markus@
2002-03-18have the authentication functions return the authentication contextNiels Provos
and then do_authenticated; okay millert@
2002-03-17getpwnamallow returns struct passwd * only if user valid; okay markus@Niels Provos
2002-02-03don't use channel_input_channel_request and callbackMarkus Friedl
use new server_input_channel_req() instead: server_input_channel_req does generic request parsing on server side session_input_channel_req handles just session specific things now ok djm@
2001-12-28packet_read* no longer return the packet length, since it's not used.Markus Friedl
2001-12-28packet_get_bignum* no longer returns a sizeMarkus Friedl
2001-12-28s/packet_done/packet_check_eom/ (end-of-message); ok djm@Markus Friedl
2001-12-27get rid of packet_integrity_check, use packet_done() instead.Markus Friedl
2001-12-27auth_rhosts_rsa now accept generic keys.Markus Friedl
2001-12-27call fatal() for openssl allocation failuresMarkus Friedl
2001-12-25be more carefull on allocationMarkus Friedl
2001-12-19basic KNF done while i was looking for something elseTheo de Raadt
2001-12-05make it compile with more strict prototype checkingJun-ichiro itojun Hagino
2001-06-26Kerberos v5 support for SSH1, mostly from Assar Westerlund ↵Dug Song
<assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
2001-06-23more strict prototypes. raise warning level in Makefile.inc. markus ok'edJun-ichiro itojun Hagino
TODO; cleanup headers
2001-05-18improved kbd-interactive support. work by per@appgate.com and meMarkus Friedl
2001-03-23authctxt is now passed to do_authenticatedMarkus Friedl
2001-03-21merge common ssh v1/2 codeMarkus Friedl
2001-03-20add changes need for BSD_AUTH plus disabled BSD_AUTH codeMarkus Friedl
2001-03-08unused; ok markus@Kevin Steves
2001-02-22use pwcopy in ssh.c, tooMarkus Friedl
2001-02-13setproctitle(user) only if getpwnam succeedsMarkus Friedl
2001-02-12PermitRootLogin={yes,without-password,forced-commands-only,no}Markus Friedl
(before this change, root could login even if PermitRootLogin==no)
2001-02-07move k_setpag() to a central place; ok dugsong@Markus Friedl
2001-01-22rename skey -> challenge response.Markus Friedl
auto-enable kbd-interactive for ssh2 if challenge-reponse is enabled.
2001-01-21split ssh.h and try to cleanup the #include mess. remove unnecessary #includes.Markus Friedl
rename util.[ch] -> misc.[ch]
2001-01-19move ssh1 definitions to ssh1.h, pathnames to pathnames.hMarkus Friedl
2001-01-181) removes fake skey from sshd, since this will be muchMarkus Friedl
harder with /usr/libexec/auth/login_XXX 2) share/unify code used in ssh-1 and ssh-2 authentication (server side) 3) make addition of BSD_AUTH and other challenge reponse methods easier.
2001-01-07missing free, stevesk@pobox.comMarkus Friedl
2000-12-27typoMarkus Friedl
2000-12-19replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned'Markus Friedl
with u_char.
2000-11-10typo; from mouring@pconline.comMarkus Friedl
2000-10-11new cipher frameworkMarkus Friedl
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-03 01:16:23 +0000