src - OpenBSD base system

Age	Commit message (Collapse)	Author
2004-07-28	more s/illegal/invalid/	Markus Friedl

2004-06-21	make ssh -Wshadow clean, no functional changes	Anil Madhavapeddy
	markus@ ok
2004-05-09	kill some more tiny files; ok deraadt@	Damien Miller

2004-05-08	kill a tiny header; ok deraadt@	Damien Miller

2003-08-28	remove kerberos support from ssh1, since it has been replaced with GSSAPI;	Markus Friedl
	but keep kerberos passwd auth for ssh1 and 2; ok djm, hin, henning, ...
2003-08-13	remove RhostsAuthentication; suggested by djm@ before; ok djm@, deraadt@,	Markus Friedl
	fgsch@, miod@, henning@, jakob@ and others
2003-07-22	remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1);	Markus Friedl
	test+ok henning@
2003-04-08	rename log() into logit() to avoid name conflict. markus ok, from netbsd	Jun-ichiro itojun Hagino

2002-08-08	Use & to test if bits are set, not &&; markus@ ok.	Aaron Campbell

2002-05-23	add /usr/libexec/ssh-keysign: a setuid helper program for hostbased ↵	Markus Friedl
	authentication in protocol v2 (needs to access the hostkeys).
2002-04-21	spelling in error message; ok markus@	Kevin Steves

2002-03-14	don't trust size sent by (rogue) server; noted by s.esser@e-matters.de	Markus Friedl

2002-02-11	include md5.h, not evp.h	Markus Friedl

2001-12-28	packet_read* no longer return the packet length, since it's not used.	Markus Friedl

2001-12-28	packet_get_bignum* no longer returns a size	Markus Friedl

2001-12-28	s/packet_done/packet_check_eom/ (end-of-message); ok djm@	Markus Friedl

2001-12-27	get rid of packet_integrity_check, use packet_done() instead.	Markus Friedl

2001-12-27	call fatal() for openssl allocation failures	Markus Friedl

2001-12-19	basic KNF done while i was looking for something else	Theo de Raadt

2001-10-06	unify hostkey check error messages, simplify prompt.	Markus Friedl

2001-09-27	typos; from solar	Markus Friedl

2001-07-05	statement after label; ok dugsong@	Kevin Steves

2001-06-26	add smartcard support to the client, too (now you can use both	Markus Friedl
	the agent and the client).
2001-06-26	Kerberos v5 support for SSH1, mostly from Assar Westerlund ↵	Dug Song
	<assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
2001-06-23	consistent with ssh2: skip key if empty passphrase is entered,	Markus Friedl
	retry num_of_passwd_prompt times if passphrase is wrong. ok fgsch@
2001-06-23	more strict prototypes. raise warning level in Makefile.inc. markus ok'ed	Jun-ichiro itojun Hagino
	TODO; cleanup headers
2001-06-23	get rid of known_hosts2, use it for hostkey lookup, but do not modify.	Markus Friedl

2001-06-07	use xxx_put_cstring()	Markus Friedl

2001-05-18	improved kbd-interactive support. work by per@appgate.com and me	Markus Friedl

2001-04-17	check for key!=NULL, thanks to costa	Markus Friedl

2001-04-12	implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2)	Markus Friedl
	similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :)
2001-03-26	simpler key load/save interface, see authfile.h	Markus Friedl

2001-03-08	implement client side of SSH2_MSG_USERAUTH_PK_OK (test public key ->	Markus Friedl
	no need to do enter passphrase or do expensive sign operations if the server does not accept key).
2001-02-15	genericize password padding function for SSH1 and SSH2.	Markus Friedl
	add stylized echo to 2, too.
2001-02-12	fix xmalloc(0), ok dugsong@	Markus Friedl

2001-02-08	mitigate SSH1 traffic analysis - from Solar Designer <solar@openwall.com>, ↵	Dug Song
	ok provos@
2001-02-08	sync with netbsd tree changes.	Jun-ichiro itojun Hagino
	- more strict prototypes, include necessary headers - use paths.h/pathnames.h decls - size_t typecase to int -> u_long
2001-02-08	%.30s is too short for IPv6 numeric address. use %.128s for now. markus ok	Jun-ichiro itojun Hagino

2001-02-03	make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@	Markus Friedl

2001-01-29	handle rsa_private_decrypt failures; helps against the Bleichenbacher pkcs#1 ↵	Markus Friedl
	attack
2001-01-22	rename skey -> challenge response.	Markus Friedl
	auto-enable kbd-interactive for ssh2 if challenge-reponse is enabled.
2001-01-22	only AFS needs radix.[ch]	Markus Friedl

2001-01-21	split ssh.h and try to cleanup the #include mess. remove unnecessary #includes.	Markus Friedl
	rename util.[ch] -> misc.[ch]
2001-01-19	move ssh1 definitions to ssh1.h, pathnames to pathnames.h	Markus Friedl

2001-01-18	1) removes fake skey from sshd, since this will be much	Markus Friedl
	harder with /usr/libexec/auth/login_XXX 2) share/unify code used in ssh-1 and ssh-2 authentication (server side) 3) make addition of BSD_AUTH and other challenge reponse methods easier.
2001-01-16	indent	Theo de Raadt

2001-01-08	more cleanups and fixes from stevesk@pobox.com:	Markus Friedl
	1) try_agent_authentication() for loop will overwrite key just allocated with key_new(); don't alloc 2) call ssh_close_authentication_connection() before exit try_agent_authentication() 3) free mem on bad passphrase in try_rsa_authentication()
2000-12-19	replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned'	Markus Friedl
	with u_char.
2000-12-10	always request new challenge for skey/tis-auth, fixes interop with	Markus Friedl
	other implementations; report from roth@feep.net
2000-11-25	reorder check for illegal ciphers, bugreport from espie@	Markus Friedl