summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/canohost.c
AgeCommit message (Collapse)Author
2004-07-21bz#902: cache remote port so we don't fatal() in auth_log when remoteDamien Miller
connection goes away quickly. from peak AT argo.troja.mff.cuni.cz; ok markus@
2004-06-21make ssh -Wshadow clean, no functional changesAnil Madhavapeddy
markus@ ok
2004-03-31don't skip ip options check when UseDNS=no; ok markus@Damien Miller
2003-09-23replace fatal_cleanup() and linked list of fatal callbacks with staticMarkus Friedl
cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@
2003-06-02deprecate VerifyReverseMapping since it's dangerous if combinedMarkus Friedl
with IP based access control as noted by Mike Harding; replace with a UseDNS option, UseDNS is on by default and includes the VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@ ok deraadt@, djm@
2003-04-08rename log() into logit() to avoid name conflict. markus ok, from netbsdJun-ichiro itojun Hagino
2002-11-26KNF, comment and error message repair; ok markus@Kevin Steves
2002-09-23change get_peer_ipaddr() and get_local_ipaddr() to not return NULL forKevin Steves
non-sockets; fixes a problem passing NULL to snprintf(). ok markus@
2002-07-09suppress log on reverse lookup failiure, as there's no real value in doing so.Jun-ichiro itojun Hagino
markus ok
2002-06-11use "ntop" only after initializedJun-ichiro itojun Hagino
2002-02-27remove unneeded casts in [gs]etsockopt(); ok markus@Kevin Steves
2002-01-29s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@Markus Friedl
2001-12-19basic KNF done while i was looking for something elseTheo de Raadt
2001-12-05make it compile with more strict prototype checkingJun-ichiro itojun Hagino
2001-06-23more strict prototypes. raise warning level in Makefile.inc. markus ok'edJun-ichiro itojun Hagino
TODO; cleanup headers
2001-04-18debug->debug3Markus Friedl
2001-04-12implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2)Markus Friedl
similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :)
2001-04-05move get_remote_name_or_ip() to canohost.[ch]; for portable. ok markus@Kevin Steves
2001-02-10add debug message, since sshd blocks here if DNS is not availableMarkus Friedl
2001-02-08remove last call to sprintf; ok deraadt@Markus Friedl
2001-02-08sync with netbsd tree changes.Jun-ichiro itojun Hagino
- more strict prototypes, include necessary headers - use paths.h/pathnames.h decls - size_t typecase to int -> u_long
2001-02-03make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@Markus Friedl
2001-01-29add get_peer_ipaddr(socket), x11-fwd in ssh2 requires ipaddr, not DNSMarkus Friedl
2001-01-21split ssh.h and try to cleanup the #include mess. remove unnecessary #includes.Markus Friedl
rename util.[ch] -> misc.[ch]
2000-12-19replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned'Markus Friedl
with u_char.
2000-10-21typo, eramore@era-t.ericsson.se; ok niels@Markus Friedl
2000-09-07some more Copyright fixesMarkus Friedl
2000-09-07cleanup copyright notices on all files. I have attempted to be accurate withTheo de Raadt
the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate.
2000-06-20OpenBSD tagMarkus Friedl
2000-04-14whitespace cleanupMarkus Friedl
2000-01-04more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo, from itojun@Markus Friedl
2000-01-04ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new features:Markus Friedl
sshd allows multiple ListenAddress and Port options. note that libwrap is not IPv6-ready. (based on patches from <kick@kyoto.wide.ad.jp> and fujiwara@rcac.tdi.co.jp)
1999-12-09fix get_remote_port() and friends for sshd -i; ↵Markus Friedl
Holger.Trapp@Informatik.TU-Chemnitz.DE
1999-11-24KNF, final part 3Markus Friedl
1999-11-24much more KNFTheo de Raadt
1999-11-23KNF part 1Markus Friedl
1999-11-15disconnect if getpeername() failsMarkus Friedl
1999-11-14fix comment: we _do_ disconnect if ip-options are setMarkus Friedl
1999-09-30"ssh is a very large program" -- anonymousTheo de Raadt
1999-09-29numerous sprintf, strncpy, strcpy cleanupsTheo de Raadt
1999-09-26i bet a lot of people didn't know what ssh 1.2.16 had a nice license.Theo de Raadt
well, except for the patent issues. someone in sweden (forget their name at the moment) cleaned out most of the patented code, and now this code removes rsa code. when this is done, it will link against libssl, but the work isn't completely done yet. then we need to bring this up to modern days, featurewise.