summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/servconf.c
AgeCommit message (Collapse)Author
2002-05-15re-enable privsep and disable setuid for post-3.2.2Markus Friedl
2002-05-15disable privsep and enable setuid for the 3.2.2 releaseMarkus Friedl
2002-05-04enable privsep by default; provos okTheo de Raadt
2002-04-22do not auto-enable KerberosAuthentication; ok djm@, provos@, deraadt@Markus Friedl
2002-04-20No, afs requires explicit enablingTheo de Raadt
2002-03-20for unprivileged user, group do:Kevin Steves
pw=getpwnam(SSH_PRIVSEP_USER); do_setusercontext(pw). ok provos@
2002-03-19_PATH_PRIVSEP_CHROOT_DIR; ok provos@Kevin Steves
2002-03-18UnprivUser/UnprivGroup usable now--specify numeric user/group; okKevin Steves
provos@
2002-03-18integrate privilege separated openssh; its turned off by default for now.Niels Provos
work done by me and markus@
2002-02-04add SYSLOG_FACILITY_NOT_SET = -1, SYSLOG_LEVEL_NOT_SET = -1,Markus Friedl
fixes arm/netbsd; based on patch from bjh21@netbsd.org; ok djm@
2002-01-29s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@Markus Friedl
2002-01-27add X11UseLocalhost; ok markus@Kevin Steves
2002-01-22typo in error message; from djast@cs.toronto.eduKevin Steves
2002-01-04protocol 2 HostKey code default is now /etc/ssh_host_rsa_key andKevin Steves
/etc/ssh_host_dsa_key like we have in sshd_config. ok markus@
2002-01-04remove #ifdef _PATH_XAUTH/#endif; ok markus@Kevin Steves
2001-12-19basic KNF done while i was looking for something elseTheo de Raadt
2001-12-06add -o to sshd, too. ok deraadt@Markus Friedl
2001-12-05minor KNFTheo de Raadt
2001-11-17enum/int type cleanup where it made sense to do so; ok markus@Kevin Steves
2001-11-12enable authorized_keys2 again. tested by fries@Markus Friedl
2001-11-11make AuthorizedKeysFile2 fallback to AuthorizedKeysFile if ↵Markus Friedl
AuthorizedKeysFile is specified.
2001-08-16deprecate CheckMail. ok markus@Jakob Schlyter
----------------------------------------------------------------------
2001-07-11make it compilable in all 4 combination of KRB4/KRB5 settings. dugsong okJun-ichiro itojun Hagino
XXX isn't it sensitive to the order of -I/usr/include/kerberosIV and -I/usr/include/kerberosV?
2001-07-08fix ``MaxStartups max''; ok markus@Kevin Steves
2001-06-26#include <kafs.h>Dug Song
2001-06-26Kerberos v5 support for SSH1, mostly from Assar Westerlund ↵Dug Song
<assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
2001-06-23more strict prototypes. raise warning level in Makefile.inc. markus ok'edJun-ichiro itojun Hagino
TODO; cleanup headers
2001-06-08move the path for xauth to pathnames.hMarkus Friedl
2001-05-20configurable authorized_keys{,2} location; originally from peter@; ok djm@Markus Friedl
2001-05-19sshd command-line arguments and configuration file options thatKevin Steves
specify time may be expressed using a sequence of the form: time[qualifier], where time is a positive integer value and qualifier is one of the following: <none>,s,m,h,d,w Examples: 600 600 seconds (10 minutes) 10m 10 minutes 1h30m 1 hour 30 minutes (90 minutes) ok markus@
2001-05-18improved kbd-interactive support. work by per@appgate.com and meMarkus Friedl
2001-05-03remove "\n" from fatal()Kevin Steves
2001-04-15use fatal() or error() vs. fprintf(); ok markus@Kevin Steves
2001-04-13Add options ClientAliveInterval and ClientAliveCountMax to sshd.Bob Beck
This gives the ability to do a "keepalive" via the encrypted channel which can't be spoofed (unlike TCP keepalives). Useful for when you want to use ssh connections to authenticate people for something, and know relatively quickly when they are no longer authenticated. Disabled by default (of course). ok markus@
2001-04-12robust port validation; ok markus@ jakob@Kevin Steves
2001-04-12implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2)Markus Friedl
similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :)
2001-04-06in addition to:Kevin Steves
ListenAddress host|ipv4_addr|ipv6_addr permit: ListenAddress [host|ipv4_addr|ipv6_addr]:port ListenAddress host|ipv4_addr:port sshd.8 updates coming. ok markus@
2001-04-02correct comment; ok markus@Kevin Steves
2001-03-25PrintLastLog option; from chip@valinux.com with some minorKevin Steves
changes by me. ok markus@
2001-03-05sync error message; ok markus@Kevin Steves
2001-03-04log functions should not be passed strings that end in newline as theyTodd C. Miller
get passed on to syslog() and when logging to stderr, do_log() appends its own newline.
2001-03-04kill obsolete RandomSeed; ok markus@ deraadt@Kevin Steves
2001-02-22grammar; slade@shore.netTheo de Raadt
2001-02-12PermitRootLogin={yes,without-password,forced-commands-only,no}Markus Friedl
(before this change, root could login even if PermitRootLogin==no)
2001-02-111) clean up the MAC support for SSH-2Markus Friedl
2) allow you to specify the MAC with 'ssh -m' 3) or the 'MACs' keyword in ssh(d)_config 4) add hmac-{md5,sha1}-96 ok stevesk@, provos@
2001-02-04unexpand and remove end-of-line whitespace; ok markus@Kevin Steves
2001-02-03make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@Markus Friedl
2001-01-22rename skey -> challenge response.Markus Friedl
auto-enable kbd-interactive for ssh2 if challenge-reponse is enabled.
2001-01-21split ssh.h and try to cleanup the #include mess. remove unnecessary #includes.Markus Friedl
rename util.[ch] -> misc.[ch]
2001-01-20Check for NULL return from strdelim; ok markusDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-30 10:18:10 +0000