| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2007-02-21 | Clear alarm() before restarting sshd on SIGHUP. Without this, if there's | Darren Tucker | |
| a SIGALRM pending (for SSH1 key regeneration) when sshd is SIGHUP'ed, the newly exec'ed sshd will get the SIGALRM and not have a handler for it, and the default action will terminate the listening sshd. Analysis and patch from andrew at gaul.org. | |||
| 2007-02-20 | set maximum packet and window sizes the same for multiplexed clients | Damien Miller | |
| as normal connections; ok markus@ | |||
| 2007-02-19 | Teach Match how handle config directives that are used before authentication. | Darren Tucker | |
| This allows configurations such as permitting password authentication from the local net only while requiring pubkey from offsite. ok djm@, man page bits ok jmc@ | |||
| 2007-02-14 | typos in comments; ok jmc@ | Kevin Steves | |
| 2007-01-22 | fix detection of whether we should show progress meter or not: scp | Damien Miller | |
| tested isatty(stderr) but wrote the progress meter to stdout. This patch makes it test stdout. bz#1265 reported by junkmail AT bitsculpture.com; of dtucker@ | |||
| 2007-01-22 | return error from do_upload() when a write fails. fixes bz#1252: zero | Damien Miller | |
| exit status from sftp when uploading to a full device. report from jirkat AT atlas.cz; ok dtucker@ | |||
| 2007-01-21 | spaces | Kevin Steves | |
| 2007-01-21 | spaces | Kevin Steves | |
| 2007-01-17 | Honour activep for times (eg ServerAliveInterval) while parsing | Darren Tucker | |
| ssh_config and ~/.ssh/config so they work properly with Host directives. From mario.lorenz@wincor-nixdorf.com via bz #1275. ok markus@ | |||
| 2007-01-12 | more secsh -> rfc 4716 updates; | Jason McIntyre | |
| spotted by wiz@netbsd ok markus | |||
| 2007-01-10 | do not use a list for SYNOPSIS; | Jason McIntyre | |
| this is actually part of a larger report sent by eric s. raymond and forwarded by brad, but i only read half of it. spotted by brad. | |||
| 2007-01-03 | spaces | Kevin Steves | |
| 2007-01-03 | ARGSUSED for lint | Kevin Steves | |
| 2007-01-03 | spaces | Kevin Steves | |
| 2007-01-03 | remove small dead code; arnaud.lacombe.1@ulaval.ca via Coverity scan | Kevin Steves | |
| 2007-01-02 | do not use lists for SYNOPSIS; | Jason McIntyre | |
| from eric s. raymond via brad | |||
| 2006-12-14 | Make "PermitOpen all" first-match within a block to match the way other | Darren Tucker | |
| options work. ok markus@ djm@ | |||
| 2006-12-13 | Make PermitOpen work with multiple values like the man pages says. bz #1267 | Darren Tucker | |
| with details from peter at dmtz.com, with & ok djm@ | |||
| 2006-12-12 | bz #1019: some ssh.com versions apparently can't cope with the remote port | Damien Miller | |
| forwarding bind_address being a hostname, so send them an address for cases where they are not explicitly specified (wildcard or localhost bind). reported by daveroth AT acm.org; ok dtucker@ deraadt@ | |||
| 2006-12-11 | add rfc 4716 (public key format); ok jmc | Markus Friedl | |
| 2006-11-23 | Don't access buf[strlen(buf) - 1] for zero-length strings. | Ray Lai | |
| ``ok by me'' djm@. | |||
| 2006-11-14 | use argc and argv not some made up short form | Theo de Raadt | |
| 2006-11-07 | BN_hex2bn returns int; from dtucker@ | Markus Friedl | |
| 2006-11-07 | correctly check for bad signatures in the monitor, otherwise the monitor and | Markus Friedl | |
| the unpriv process can get out of sync. with dtucker@, ok djm@, dtucker@ | |||
| 2006-11-06 | add missing checks for openssl return codes; with & ok djm@ | Markus Friedl | |
| 2006-10-31 | check DH_compute_key() for -1 even if it should not happen because of | Markus Friedl | |
| earlier calls to dh_pub_is_valid(); report krahmer at suse.de; ok djm | |||
| 2006-10-28 | correct/expand example of usage of -w; ok jmc@ stevesk@ | Otto Moerbeek | |
| 2006-10-22 | cancel progress meter when upload write fails; ok deraadt@ | Damien Miller | |
| 2006-10-11 | exit instead of doing a blocking tcp send if we detect a client/server timeout, | Markus Friedl | |
| since the tcp sendqueue might be already full (of alive requests); ok dtucker, report mpf | |||
| 2006-10-10 | sleep before retrying (not after) since sleep changes errno; fixes | Markus Friedl | |
| pr 5250; rad@twig.com; ok dtucker djm | |||
| 2006-10-09 | xmalloc -> xcalloc that was missed previously, from portable | Damien Miller | |
| 2006-10-06 | sys/resource.h needs sys/time.h; prompted by brad@ | Damien Miller | |
| 2006-09-30 | Clear errno before calling the strtol functions. | Ray Lai | |
| From Paul Stoeber <x0001 at x dot de1 dot cc>. OK deraadt@. | |||
| 2006-09-25 | Change "a SSH" to "an SSH". Hurray, I'm not the only one who | Ray Lai | |
| pronounces "SSH" as "ess-ess-aich". OK jmc@ and stevesk@. | |||
| 2006-09-19 | client NULL deref on protocol error; Tavis Ormandy, Google Security Team | Markus Friedl | |
| 2006-09-19 | Use S_IS* macros insted of masking with S_IF* flags. The latter may | Otto Moerbeek | |
| have multiple bits set, which lead to surprising results. Spotted by Paul Stoeber, more to come. ok millert@ pedro@ jaredy@ djm@ | |||
| 2006-09-16 | limit maximum work performed by the CRC compensation attack detector, | Damien Miller | |
| problem reported by Tavis Ormandy, Google Security Team; ok markus@ deraadt@ | |||
| 2006-08-30 | crank to 4.4 | Damien Miller | |
| 2006-08-30 | Fix regression where SSH2 banner is printed at loglevels ERROR and FATAL | Darren Tucker | |
| where previously it weren't. bz #1221, found by Dean Kopesky, ok djm@ | |||
| 2006-08-29 | Work around a problem in Heimdal that occurs when KRB5CCNAME file is | Darren Tucker | |
| missing, by checking whether or not kerberos allocated us a context before attempting to free it. Patch from Simon Wilkinson, tested by biorn@, ok djm@ | |||
| 2006-08-29 | normalise some inconsistent (but harmless) NULL pointer checks | Damien Miller | |
| spotted by the Stanford SATURN tool, via Isil Dillig; ok markus@ deraadt@ | |||
| 2006-08-21 | Add more detail about what permissions are and aren't accepted for | Darren Tucker | |
| authorized_keys files. Corrections jmc@, ok djm@, "looks good" jmc@ | |||
| 2006-08-21 | Document HostbasedUsesNameFromPacketOnly. Corrections from jmc@, ok jmc@ djm@ | Darren Tucker | |
| 2006-08-18 | GSSAPI error code should be 0 and not -1; from simon@sxw.org.uk | Damien Miller | |
| 2006-08-18 | constify host argument to match the rest of the GSSAPI functions and | Damien Miller | |
| unbreak compilation with -Werror | |||
| 2006-08-18 | bz #1218 - disable SPNEGO as per RFC4462; diff from simon AT sxw.org.uk | Damien Miller | |
| ok markus@ | |||
| 2006-08-18 | reorder so prototypes are sorted by the files they refer to; no | Damien Miller | |
| binary change | |||
| 2006-08-18 | delay authentication related cleanups until we're authenticated and | Markus Friedl | |
| all alarms have been cancelled; ok deraadt | |||
| 2006-08-18 | make signal handler termination path shorter; risky code pointed out by | Theo de Raadt | |
| mark dowd; ok djm markus | |||
| 2006-08-16 | factor inetd connection, TCP listen and main TCP accept loop out of main() | Damien Miller | |
| into separate functions to improve readability; ok markus@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |