| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2007-05-22 | zap double include; from p_nowaczyk AT o2.pl | Damien Miller | |
| 2007-03-09 | Move C/R -> kbdint special case to after the defaults have been | Darren Tucker | |
| loaded, which makes ChallengeResponse default to yes again. This was broken by the Match changes and not fixed properly subsequently. Found by okan at demirmen.com, ok djm@ "please do it" deraadt@ | |||
| 2007-02-21 | Clear alarm() before restarting sshd on SIGHUP. Without this, if there's | Darren Tucker | |
| a SIGALRM pending (for SSH1 key regeneration) when sshd is SIGHUP'ed, the newly exec'ed sshd will get the SIGALRM and not have a handler for it, and the default action will terminate the listening sshd. Analysis and patch from andrew at gaul.org. | |||
| 2006-11-06 | add missing checks for openssl return codes; with & ok djm@ | Markus Friedl | |
| 2006-08-18 | delay authentication related cleanups until we're authenticated and | Markus Friedl | |
| all alarms have been cancelled; ok deraadt | |||
| 2006-08-18 | make signal handler termination path shorter; risky code pointed out by | Theo de Raadt | |
| mark dowd; ok djm markus | |||
| 2006-08-16 | factor inetd connection, TCP listen and main TCP accept loop out of main() | Damien Miller | |
| into separate functions to improve readability; ok markus@ | |||
| 2006-08-05 | Add headers required to build with KERBEROS5=no. ok djm@ | Darren Tucker | |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt | |
| ok djm, sort of ok stevesk makes the pain stop in one easy step | |||
| 2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves | |
| 2006-07-26 | move #include <stdlib.h> out of includes.h | Kevin Steves | |
| 2006-07-25 | move #include <sys/time.h> out of includes.h | Kevin Steves | |
| 2006-07-22 | move #include <string.h> out of includes.h | Kevin Steves | |
| 2006-07-12 | move #include <netdb.h> out of includes.h; ok djm@ | Kevin Steves | |
| 2006-07-12 | Add support for conditional directives to sshd_config via a "Match" keyword, | Darren Tucker | |
| which works similarly to the "Host" directive in ssh_config. Lines after a Match line override the default set in the main section if the condition on the Match line is true, eg AllowTcpForwarding yes Match User anoncvs AllowTcpForwarding no will allow port forwarding by all users except "anoncvs". Currently only a very small subset of directives are supported. ok djm@ | |||
| 2006-07-11 | move #include <errno.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2006-07-09 | move #include <fcntl.h> out of includes.h | Kevin Steves | |
| 2006-07-08 | move #include <sys/socket.h> out of includes.h | Kevin Steves | |
| 2006-07-06 | move #include <pwd.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2006-07-03 | move #include "version.h" out of includes.h; ok markus@ | Kevin Steves | |
| 2006-06-01 | call get_remote_ipaddr() early; fixes logging after client disconnects; | Markus Friedl | |
| report mpf@; ok dtucker@ | |||
| 2006-03-25 | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | Damien Miller | |
| Theo nuked - our scripts to sync -portable need them in the files | |||
| 2006-03-25 | introduce xcalloc() and xasprintf() failure-checked allocations functions | Damien Miller | |
| and use them throughout openssh xcalloc is particularly important because malloc(nmemb * size) is a dangerous idiom (subject to integer overflow) and it is time for it to die feedback and ok deraadt@ | |||
| 2006-03-20 | sprinkle some ARGSUSED for table driven functions (which sometimes must ↵ | Theo de Raadt | |
| ignore their args) | |||
| 2006-03-19 | ARGSUSED for signal handlers | Theo de Raadt | |
| 2006-03-19 | RCSID() can die | Theo de Raadt | |
| 2006-03-13 | don't log that we are listening on a socket before the listen() call | Damien Miller | |
| actually succeeds, bz #1162 reported by Senthil Kumar; ok dtucker@ | |||
| 2006-03-07 | Implement the diffie-hellman-group-exchange-sha256 key exchange method | Damien Miller | |
| using the SHA256 code in libc (and wrapper to make it into an OpenSSL EVP), interop tested against CVS PuTTY | |||
| 2006-02-20 | move #include <sys/stat.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2006-02-20 | move #include <signal.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2006-02-10 | move #include <sys/wait.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2006-02-10 | move #include <sys/ioctl.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2006-02-08 | move #include <paths.h> out of includes.h; ok markus@ | Kevin Steves | |
| 2005-12-24 | eliminate some code duplicated in privsep and non-privsep paths, and | Damien Miller | |
| explicitly clear SIGALRM handler; "groovy" deraadt@ | |||
| 2005-10-30 | no need to escape single quotes in comments, no binary change | Damien Miller | |
| 2005-10-30 | Check for connections with IP options earlier and drop silently. ok djm@ | Darren Tucker | |
| 2005-09-21 | change label at markus@'s request | Damien Miller | |
| 2005-09-19 | stop connection abort on rekey with delayed compression enabled when | Damien Miller | |
| post-auth privsep is disabled (e.g. when root is logged in); ok dtucker@ | |||
| 2005-09-13 | ensure that stdio fds are attached; ok deraadt@ | Damien Miller | |
| 2005-07-25 | add a new compression method that delays compression until the user | Markus Friedl | |
| has been authenticated successfully and set compression to 'delayed' for sshd. this breaks older openssh clients (< 3.5) if they insist on compression, so you have to re-enable compression in sshd_config. ok djm@ | |||
| 2005-06-17 | make this -Wsign-compare clean; ok avsm@ markus@ | Damien Miller | |
| 2005-06-16 | don't exit if getpeername fails for forwarded ports; bugzilla #1054; ok djm | Markus Friedl | |
| 2005-04-06 | avoid harmless logspam by not performing setsockopt() on non-socket; ok markus@ | Damien Miller | |
| 2005-02-08 | Provide reason in error message if getnameinfo fails; ok markus@ | Darren Tucker | |
| 2005-01-21 | Warn in advance for password and account expiry; initialize loginmsg | Otto Moerbeek | |
| buffer earlier and clear it after privsep fork. ok and help dtucker@ markus@ | |||
| 2005-01-17 | Make debugging output continue after reexec; ok djm@ | Darren Tucker | |
| 2004-12-23 | bz #898: support AddressFamily in sshd_config. from peak@argo.troja.mff.cuni.cz | Damien Miller | |
| ok deraadt@ | |||
| 2004-09-25 | these printf args are no longer double; ok deraadt@ markus@ | Damien Miller | |
| 2004-09-15 | use less doubles in daemons; markus@ ok | Michael Shalayeff | |
| 2004-08-28 | don't erroneously close stdin for !reexec case, from Dave Johnson; ok markus@ | Damien Miller | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |