| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2009-03-23 | My previous commit didn't fix the problem at all, so stick at my first | Tobias Stoeckmann | |
| version of the fix presented to dtucker. Issue notified by Matthias Barkhoff (matthias dot barkhoff at gmx dot de). ok dtucker | |||
| 2009-03-23 | Fixed a possible out-of-bounds memory access if the environment variable | Tobias Stoeckmann | |
| SHELL is shorter than 3 characters. with input by and ok dtucker | |||
| 2009-03-19 | for "Ciphers", just point the reader to the keyword in ssh_config(5), just | Jason McIntyre | |
| as we do for "MACs": this stops us getting out of sync when the lists change; fixes documentation/6102, submitted by Peter J. Philipp alternative fix proposed by djm ok markus | |||
| 2009-03-17 | pass correct argv[0] to openlog(); ok djm@ | Markus Friedl | |
| 2009-03-05 | document what these functions do so I don't ever have to recuse into | Damien Miller | |
| b64_pton/ntop to remember their return values | |||
| 2009-03-05 | refactor the (disabled) Schnorr proof code to make it a little more | Damien Miller | |
| generally useful | |||
| 2009-02-23 | openssh-5.2 | Damien Miller | |
| 2009-02-22 | missing period | Damien Miller | |
| 2009-02-22 | don't advertise experimental options | Damien Miller | |
| 2009-02-21 | Added missing newlines in error messages. | Tobias Stoeckmann | |
| ok dtucker | |||
| 2009-02-18 | signature should hash over the entire group, not just the generator | Damien Miller | |
| (this is still disabled code) | |||
| 2009-02-17 | sync with revised default ciphers; pointed out by dkrause@ | Damien Miller | |
| 2009-02-14 | mention that eow and no-more-sessions extensions are sent only to | Damien Miller | |
| OpenSSH peers | |||
| 2009-02-13 | check for enc !=NULL in packet_start_discard | Markus Friedl | |
| 2009-02-12 | kill trailing whitespace; | Jason McIntyre | |
| 2009-02-12 | document RemoteForward usage with 0 listen port | Damien Miller | |
| 2009-02-12 | consistency: Dq => Ql | Damien Miller | |
| 2009-02-12 | document -R0:... usage | Damien Miller | |
| 2009-02-12 | some paranoia: check that the serialised key is really KEY_RSA before | Damien Miller | |
| diddling its internals | |||
| 2009-02-12 | tighten check for -R0:... forwarding: only allow dynamic allocation if | Damien Miller | |
| want_reply is set in the packet | |||
| 2009-02-12 | support remote port forwarding with a zero listen port (-R0:...) to | Damien Miller | |
| dyamically allocate a listen port at runtime (this is actually specified in rfc4254); bz#1003 ok markus@ | |||
| 2009-02-02 | Initialize a few variables to prevent spurious "may be used uninitialized" | Darren Tucker | |
| warnings from newer gcc's. ok djm@ | |||
| 2009-01-26 | Work around the CPNI-957037 Plaintext Recovery Attack by always | Markus Friedl | |
| reading 256K of data on packet size or HMAC errors (in CBC mode only). Help, feedback and ok djm@ Feedback from Martin Albrecht and Paterson Kenny | |||
| 2009-01-24 | sync list of preferred ciphers; ok djm@ | Christian Weisgerber | |
| 2009-01-23 | prefer CTR modes and revised arcfour (i.e w/ discard) modes to CBC | Damien Miller | |
| modes; ok markus@ | |||
| 2009-01-22 | another chunk of a2port() diff that got away. wtfdjm?? | Damien Miller | |
| 2009-01-22 | make a2port() return -1 when it encounters an invalid port number | Damien Miller | |
| rather than 0, which it will now treat as valid (needed for future work) adjust current consumers of a2port() to check its return value is <= 0, which in turn required some things to be converted from u_short => int make use of int vs. u_short consistent in some other places too feedback & ok markus@ | |||
| 2009-01-22 | oops! I committed the wrong version of the Channel->path diff, | Damien Miller | |
| it was missing some tweaks suggested by stevesk@ | |||
| 2009-01-22 | make Channel->path an allocated string, saving a few bytes here and | Damien Miller | |
| there and fixing bz#1380 in the process; ok markus@ | |||
| 2009-01-15 | 1) use obsolete instead of alias for consistency | Kevin Steves | |
| 2) oUserKnownHostsFile not obsolete but oGlobalKnownHostsFile2 is so move the comment. 3) reorder so like options are together ok djm@ | |||
| 2009-01-14 | support SOCKS4A protocol, from dwmw2 AT infradead.org via bz#1482; | Damien Miller | |
| "looks ok" markus@ | |||
| 2009-01-01 | fix hash calculation for KEXGEX: hash over the original client-supplied | Damien Miller | |
| values and not the sanity checked versions that we acutally use; bz#1540 reported by john.smith AT arrows.demon.co.uk ok markus@ | |||
| 2009-01-01 | call channel destroy callbacks on receipt of open failure messages. | Damien Miller | |
| fixes client hangs when connecting to a server that has MaxSessions=0 set spotted by imorgan AT nas.nasa.gov; ok markus@ | |||
| 2008-12-30 | add AllowAgentForwarding to available Match keywords list | Okan Demirmen | |
| ok djm | |||
| 2008-12-29 | no need to escape single quotes in comments | Kevin Steves | |
| 2008-12-29 | fix example, default key type is rsa for 3+ years; from | Kevin Steves | |
| frederic.perrin@resel.fr | |||
| 2008-12-10 | o cannot be NULL here but use xfree() to be consistent; ok djm@ | Kevin Steves | |
| 2008-12-09 | fix typo in error message | Kevin Steves | |
| 2008-12-09 | update for the synopses displayed by the 'help' command, there are a | Igor Sobrado | |
| few missing flags; add 'bye' to the output of 'help'; sorting and spacing. jmc@ suggested replacing .Oo/.Oc with a single .Op macro. ok jmc@ | |||
| 2008-12-09 | replace by-hand string building with xasprinf(); ok deraadt@ | Damien Miller | |
| 2008-12-09 | channel_print_adm_permitted_opens() should deal with all the printing | Kevin Steves | |
| for that config option. suggested by markus@; ok markus@ djm@ dtucker@ | |||
| 2008-12-09 | correct sftp(1) and corresponding usage syntax; | Damien Miller | |
| bz#1518 patch from imorgan AT nas.nasa.gov; ok deraadt@ improved diff jmc@ | |||
| 2008-12-09 | correct sftp(1) and corresponding usage syntax; | Damien Miller | |
| bz#1518 patch from imorgan AT nas.nasa.gov; ok deraadt@ improved diff jmc@ | |||
| 2008-12-09 | don't leave junk (free'd) pointers around in Forward *fwd argument on | Damien Miller | |
| failure; avoids double-free in ~C -L handler when given an invalid forwarding specification; bz#1539 report from adejong AT debian.org via Colin Watson; ok markus@ dtucker@ | |||
| 2008-12-09 | Deal correctly with failures in remote stat() operation in sftp, | Damien Miller | |
| correcting fail-on-error behaviour in batchmode. bz#1541 report and fix from anedvedicky AT gmail.com; ok markus@ | |||
| 2008-12-09 | The ~C escape handler does not work correctly for multiplexed sessions - | Damien Miller | |
| it opens a commandline on the master session, instead of on the slave that requested it. Disable it on slave sessions until such time as it is fixed; bz#1543 report from Adrian Bridgett via Colin Watson ok markus@ | |||
| 2008-12-02 | s/remote_id/id/ to be more consistent with other code; ok djm@ | Markus Friedl | |
| 2008-12-02 | backout 1.149, since it's not necessary and openssh clients send | Markus Friedl | |
| broken CHANNEL_FAILURE/SUCCESS messages since about 2004; ok djm@ | |||
| 2008-12-02 | we have to use the recipient's channel number (RFC 4254) for | Markus Friedl | |
| SSH2_MSG_CHANNEL_SUCCESS/SSH2_MSG_CHANNEL_FAILURE messages, otherwise we trigger 'Non-public channel' error messages on sshd systems with clientkeepalive enabled; noticed by sturm; ok djm; | |||
| 2008-11-30 | Retry sendmsg/recvmsg on EAGAIN and EINTR; ok djm@ | Darren Tucker | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |