| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2010-01-13 | Make HostBased authentication work with a ProxyCommand. bz #1569, patch | Darren Tucker | |
| from imorgan at nas nasa gov, ok djm@ | |||
| 2009-05-27 | Add clear_cached_addr(), needed for upcoming changes allowing the peer | Andreas Gunnarsson | |
| address to change. ok markus@ | |||
| 2009-02-12 | support remote port forwarding with a zero listen port (-R0:...) to | Damien Miller | |
| dyamically allocate a listen port at runtime (this is actually specified in rfc4254); bz#1003 ok markus@ | |||
| 2008-06-12 | Do not pass "0" strings as ports to getaddrinfo because the lookups | Darren Tucker | |
| can slow things down and we never use the service info anyway. bz #859, patch from YOSHIFUJI Hideaki and John Devitofranceschi. ok deraadt@ djm@ djm belives that the reason for the "0" strings is to ensure that it's not possible to call getaddrinfo with both host and port being NULL. In the case of canohost.c host is a local array. In the case of sshconnect.c, it's checked for null immediately before use. In dns.c it ultimately comes from ssh.c:main() and is guaranteed to be non-null but it's not obvious, so I added a warning message in case it is ever passed a null. | |||
| 2007-12-27 | Add a small helper function to consistently handle the EAI_SYSTEM error | Darren Tucker | |
| code of getaddrinfo. Prompted by vgiffin at apple com via bz #1417. ok markus@ stevesk@ | |||
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt | |
| ok djm, sort of ok stevesk makes the pain stop in one easy step | |||
| 2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves | |
| 2006-07-26 | move #include <stdlib.h> out of includes.h | Kevin Steves | |
| 2006-07-22 | move #include <string.h> out of includes.h | Kevin Steves | |
| 2006-07-12 | move #include <netdb.h> out of includes.h; ok djm@ | Kevin Steves | |
| 2006-07-11 | move #include <errno.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2006-07-08 | move #include <sys/socket.h> out of includes.h | Kevin Steves | |
| 2006-07-05 | move #include <netinet/in.h> out of includes.h; ok deraadt@ | Kevin Steves | |
| 2006-03-25 | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | Damien Miller | |
| Theo nuked - our scripts to sync -portable need them in the files | |||
| 2006-03-20 | be strict with tolower() casting | Theo de Raadt | |
| 2006-03-19 | RCSID() can die | Theo de Raadt | |
| 2006-03-14 | log the originating address and not just the name when a reverse | Damien Miller | |
| mapping check fails, requested by linux AT linuon.com | |||
| 2006-02-22 | move #include <ctype.h> out of includes.h; ok djm@ | Kevin Steves | |
| 2005-12-28 | use 'break-in' for consistency; ok deraadt@ ok and input jmc@ | Kevin Steves | |
| 2005-11-03 | Cache reverse lookups with and without DNS separately; ok markus@ | Darren Tucker | |
| 2005-10-30 | Check for connections with IP options earlier and drop silently. ok djm@ | Darren Tucker | |
| 2005-10-03 | Relocate check_ip_options call to prevent logging of garbage for connections | Darren Tucker | |
| with IP options set. bz#1092 from David Leonard, "looks good" deraadt@ | |||
| 2005-06-17 | make this -Wsign-compare clean; ok avsm@ markus@ | Damien Miller | |
| 2005-06-16 | don't exit if getpeername fails for forwarded ports; bugzilla #1054; ok djm | Markus Friedl | |
| 2005-02-18 | better error messages for getnameinfo failures; ok dtucker@ | Damien Miller | |
| 2004-07-21 | bz#902: cache remote port so we don't fatal() in auth_log when remote | Damien Miller | |
| connection goes away quickly. from peak AT argo.troja.mff.cuni.cz; ok markus@ | |||
| 2004-06-21 | make ssh -Wshadow clean, no functional changes | Anil Madhavapeddy | |
| markus@ ok | |||
| 2004-03-31 | don't skip ip options check when UseDNS=no; ok markus@ | Damien Miller | |
| 2003-09-23 | replace fatal_cleanup() and linked list of fatal callbacks with static | Markus Friedl | |
| cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@ | |||
| 2003-06-02 | deprecate VerifyReverseMapping since it's dangerous if combined | Markus Friedl | |
| with IP based access control as noted by Mike Harding; replace with a UseDNS option, UseDNS is on by default and includes the VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@ ok deraadt@, djm@ | |||
| 2003-04-08 | rename log() into logit() to avoid name conflict. markus ok, from netbsd | Jun-ichiro itojun Hagino | |
| 2002-11-26 | KNF, comment and error message repair; ok markus@ | Kevin Steves | |
| 2002-09-23 | change get_peer_ipaddr() and get_local_ipaddr() to not return NULL for | Kevin Steves | |
| non-sockets; fixes a problem passing NULL to snprintf(). ok markus@ | |||
| 2002-07-09 | suppress log on reverse lookup failiure, as there's no real value in doing so. | Jun-ichiro itojun Hagino | |
| markus ok | |||
| 2002-06-11 | use "ntop" only after initialized | Jun-ichiro itojun Hagino | |
| 2002-02-27 | remove unneeded casts in [gs]etsockopt(); ok markus@ | Kevin Steves | |
| 2002-01-29 | s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@ | Markus Friedl | |
| 2001-12-19 | basic KNF done while i was looking for something else | Theo de Raadt | |
| 2001-12-05 | make it compile with more strict prototype checking | Jun-ichiro itojun Hagino | |
| 2001-06-23 | more strict prototypes. raise warning level in Makefile.inc. markus ok'ed | Jun-ichiro itojun Hagino | |
| TODO; cleanup headers | |||
| 2001-04-18 | debug->debug3 | Markus Friedl | |
| 2001-04-12 | implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2) | Markus Friedl | |
| similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :) | |||
| 2001-04-05 | move get_remote_name_or_ip() to canohost.[ch]; for portable. ok markus@ | Kevin Steves | |
| 2001-02-10 | add debug message, since sshd blocks here if DNS is not available | Markus Friedl | |
| 2001-02-08 | remove last call to sprintf; ok deraadt@ | Markus Friedl | |
| 2001-02-08 | sync with netbsd tree changes. | Jun-ichiro itojun Hagino | |
| - more strict prototypes, include necessary headers - use paths.h/pathnames.h decls - size_t typecase to int -> u_long | |||
| 2001-02-03 | make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@ | Markus Friedl | |
| 2001-01-29 | add get_peer_ipaddr(socket), x11-fwd in ssh2 requires ipaddr, not DNS | Markus Friedl | |
| 2001-01-21 | split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. | Markus Friedl | |
| rename util.[ch] -> misc.[ch] | |||
| 2000-12-19 | replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned' | Markus Friedl | |
| with u_char. | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |