summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/auth2.c
AgeCommit message (Collapse)Author
2002-08-22auth_root_allowed() is handled by the monitor in the privsep case,Markus Friedl
so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325
2002-06-30lint asks that we use names that do not overlapTheo de Raadt
2002-05-31move Authmethod definitons to per-method file.Markus Friedl
2002-05-25split auth2.c into one file per method; ok provos@/deraadt@Markus Friedl
2002-05-13less warnings. skey_{respond,query} are public (in auth.h)Jun-ichiro itojun Hagino
2002-05-12Fix sshd Banner option for privsep; ok markus@ provos@Damien Miller
2002-03-19make getpwnamallow() allways call pwcopy()Markus Friedl
2002-03-18integrate privilege separated openssh; its turned off by default for now.Niels Provos
work done by me and markus@
2002-03-18have the authentication functions return the authentication contextNiels Provos
and then do_authenticated; okay millert@
2002-03-17getpwnamallow returns struct passwd * only if user valid; okay markus@Niels Provos
2002-02-24signed vs. unsigned: make size arguments u_int, ok stevesk@Markus Friedl
2002-02-04cross checking of announced vs actual pktype in pubkey/hostbaed auth; ok ↵Markus Friedl
stevesk@
2002-01-29s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@Markus Friedl
2002-01-13use buffer API and avoid static strings of fixed size; ok provos@/mouring@Markus Friedl
2002-01-11a single dispatch_protocol_error() that sends a message of type 'UNIMPLEMENTED'Markus Friedl
dispatch_range(): set handler for a ranges message types use dispatch_protocol_ignore() for authentication requests after successful authentication (the drafts requirement). serverloop/clientloop now send a 'UNIMPLEMENTED' message instead of exiting.
2001-12-28remove plen from the dispatch fn. it's no longer used.Markus Friedl
2001-12-28s/packet_done/packet_check_eom/ (end-of-message); ok djm@Markus Friedl
2001-12-20Conformance fix: we should send failing packet sequence number whenDamien Miller
responding with a SSH_MSG_UNIMPLEMENTED message. Spotted by yakk@yakk.dot.net; ok markus@
2001-12-19basic KNF done while i was looking for something elseTheo de Raadt
2001-12-18log fingerprint on successful public key authentication; ok markus@Jakob Schlyter
2001-12-09add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions,Markus Friedl
fixes memleak.
2001-12-05make it compile with more strict prototype checkingJun-ichiro itojun Hagino
2001-11-17enum/int type cleanup where it made sense to do so; ok markus@Kevin Steves
2001-11-07unused includesMarkus Friedl
2001-09-27typos; from solarMarkus Friedl
2001-09-20key_read returns now -1 or 1Markus Friedl
2001-07-23use %lu; ok markus@Kevin Steves
2001-06-26new interface for secure_filename()Markus Friedl
2001-06-25prototype cleanup; ok markus@Kevin Steves
2001-06-23more strict prototypes. raise warning level in Makefile.inc. markus ok'edJun-ichiro itojun Hagino
TODO; cleanup headers
2001-06-23restore correct ignore_user_known_hosts logic.Markus Friedl
2001-06-23*known_hosts2 is obsolete for hostbased authentication andMarkus Friedl
only used for backward compat. merge ssh1/2 hostkey check and move it to auth.c
2001-06-22merge authorized_keys2 into authorized_keys.Markus Friedl
authorized_keys2 is used for backward compat. (just append authorized_keys2 to authorized_keys).
2001-06-07style is used for bsdauth.Markus Friedl
disconnect on user/service change (ietf-drafts)
2001-05-31undo the .c file split, just merge the header and keep the cvs historyMarkus Friedl
2001-05-30mergeMarkus Friedl
2001-05-30channel layer cleanup: merge header files and split .c filesMarkus Friedl
2001-05-20configurable authorized_keys{,2} location; originally from peter@; ok djm@Markus Friedl
2001-05-18improved kbd-interactive support. work by per@appgate.com and meMarkus Friedl
2001-04-19use local variable, no function call needed.Markus Friedl
(btw, hostbased works now with ssh.com >= 2.0.13)
2001-04-18more ssh v2 hostbased-auth interop: ssh.com >= 2.1.0 works nowMarkus Friedl
(however the 2.1.0 server seems to work only if debug is enabled...)
2001-04-18no longer constMarkus Friedl
2001-04-18use FDQN with trailing dot in the hostbased auth packets, ok deraadt@Markus Friedl
2001-04-12implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2)Markus Friedl
similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :)
2001-04-06do gid/groups-swap in addition to uid-swap, should help if /home/groupMarkus Friedl
is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks to olar@openwall.com is comments. we had many requests for this.
2001-04-04we don't care about missing bannerfiles; from tsoome@ut.ee, ok deraadt@Markus Friedl
2001-03-28check auth_root_allowed for kbd-int auth, too.Markus Friedl
2001-03-21merge common ssh v1/2 codeMarkus Friedl
2001-03-20add changes need for BSD_AUTH plus disabled BSD_AUTH codeMarkus Friedl
2001-03-11debugMarkus Friedl
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-01 21:55:12 +0000