| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2007-09-16 | use off_t instead of u_int64_t for file offsets, matching what the | Damien Miller | |
| progressmeter code expects; bz #842 | |||
| 2007-09-13 | fix incorrect test when setting syslog facility; from Jan Pechanec | Damien Miller | |
| 2007-09-12 | use xmalloc() and xfree(); ok markus@ pvalchev@ | Kevin Steves | |
| 2007-09-11 | remove #if defined block not needed; ok markus@ dtucker@ | Kevin Steves | |
| 2007-09-11 | use strcspn to properly overwrite '\n' in fgets returned buffer | Gilles Chehade | |
| ok pyr@, ray@, millert@, moritz@, chl@ | |||
| 2007-09-11 | sort #include | Kevin Steves | |
| 2007-09-09 | sort synopsis and options in ssh-agent(1); usage is lowercase | Igor Sobrado | |
| ok jmc@ | |||
| 2007-09-04 | make ssh(1)'s ConnectTimeout option apply to both the TCP connection and | Damien Miller | |
| SSH banner exchange (previously it just covered the TCP connection). This allows callers of ssh(1) to better detect and deal with stuck servers that accept a TCP connection but don't progress the protocol, and also makes ConnectTimeout useful for connections via a ProxyCommand; feedback and "looks ok" markus@ | |||
| 2007-09-04 | make file descriptor passing code return an error rather than call fatal() | Damien Miller | |
| when it encounters problems, and use this to make session multiplexing masters survive slaves failing to pass all stdio FDs; ok markus@ | |||
| 2007-08-23 | Execute ProxyCommands with $SHELL rather than /bin/sh unconditionally | Damien Miller | |
| 2007-08-23 | Support "Banner=none" to disable displaying of the pre-login banner; | Damien Miller | |
| ok dtucker@ deraadt@ | |||
| 2007-08-23 | login_cap.h doesn't belong here | Damien Miller | |
| 2007-08-23 | missed include bits from last commit | Damien Miller | |
| 2007-08-23 | unifdef HAVE_LOGIN_CAP; ok deraadt@ millert@ | Damien Miller | |
| 2007-08-15 | tun device forwarding now honours ExitOnForwardFailure; ok markus@ | Kevin Steves | |
| 2007-08-15 | openssh 4.7 | Markus Friedl | |
| 2007-08-15 | do NOT fall back to the trused x11 cookie if generation of an untrusted | Markus Friedl | |
| cookie fails; from security-alert at sun.com; ok dtucker | |||
| 2007-08-07 | bz#1232: ensure that any specified LocalCommand is executed after the | Damien Miller | |
| tunnel device is opened. Also, make failures to open a tunnel device fatal when ExitOnForwardFailure is active. Reported by h.goebel AT goebel-consult.de; ok dtucker markus reyk deraadt | |||
| 2007-08-06 | the ellipsis is not an optional argument; while here, sync the usage | Igor Sobrado | |
| and synopsis of commands lots of good ideas by jmc@ ok jmc@ | |||
| 2007-07-12 | Delint: remove some unreachable statements, from Bret Lambert. | Ray Lai | |
| OK markus@ and dtucker@. | |||
| 2007-06-25 | Include <poll.h> like the man page says rather than <sys/poll.h>. ok djm@ | Darren Tucker | |
| 2007-06-25 | Correct test for window updates every three packets; prevents sending | Darren Tucker | |
| window updates for every single packet. ok markus@ | |||
| 2007-06-19 | if the fd passed to atomicio/atomiciov() is non blocking, then poll() to | Damien Miller | |
| avoid a spin if it is not yet ready for reading/writing; ok dtucker@ | |||
| 2007-06-14 | when waiting for the multiplex exit status, read until the master end | Damien Miller | |
| writes an entire int of data *and* closes the client_fd; fixes mux regression spotted by dtucker, ok dtucker@ | |||
| 2007-06-14 | handle EINTR when waiting for mux exit status properly | Damien Miller | |
| 2007-06-13 | don't ftruncate() non-regular files; bz#1236 reported by wood AT xmission.com; | Damien Miller | |
| ok dtucker@ | |||
| 2007-06-12 | Encode filename with strnvis if the name contains a newline (which can't | Darren Tucker | |
| be represented in the scp protocol), from bz #891. ok markus@ | |||
| 2007-06-12 | add -K to SYNOPSIS; | Jason McIntyre | |
| 2007-06-12 | identies -> identities; | Jason McIntyre | |
| 2007-06-12 | Pass GSS OID to gss_display_status to provide better information in | Darren Tucker | |
| error messages. Patch from Simon Wilkinson via bz 1220. ok djm@ | |||
| 2007-06-12 | improved exit message from multiplex slave sessions; bz #1262 | Damien Miller | |
| reported by alexandre.nunes AT gmail.com; ok dtucker@ | |||
| 2007-06-12 | Add "-K" flag for ssh to set GSSAPIAuthentication=yes and | Damien Miller | |
| GSSAPIDelegateCredentials=yes. This is symmetric with -k (disable GSSAPI) and is useful for hosts with /home on Kerberised NFS; bz #1312 patch from Markus.Kuhn AT cl.cam.ac.uk; ok dtucker@ markus@ | |||
| 2007-06-12 | fix slave exit value when a control master goes away without passing the | Damien Miller | |
| full exit status by ensuring that the slave reads a full int. bz#1261 reported by frekko AT gmail.com; ok markus@ dtucker@ | |||
| 2007-06-12 | make scp try to skip FIFOs rather than blocking when nothing is listening. | Damien Miller | |
| depends on the platform supporting sane O_NONBLOCK semantics for open on FIFOs (apparently POSIX does not mandate this), which OpenBSD does. bz #856; report by cjwatson AT debian.org; ok markus@ | |||
| 2007-06-12 | relocate server-only GSSAPI code from libssh to server; bz #1225 | Damien Miller | |
| patch from simon AT sxw.org.uk; ok markus@ dtucker@ | |||
| 2007-06-12 | better document ssh-add's -d option (delete identies from agent), bz#1224 | Damien Miller | |
| new text based on some provided by andrewmc-debian AT celt.dias.ie; ok dtucker@ | |||
| 2007-06-11 | increase default channel windows; ok djm | Markus Friedl | |
| 2007-06-11 | send 'window adjust' messages every tree packets and do not wait | Markus Friedl | |
| until 50% of the window is consumed. ok djm dtucker | |||
| 2007-06-08 | oops, here too: put the MAC list into a display, like we do for | Jason McIntyre | |
| ciphers, since groff has trouble with wide lines; | |||
| 2007-06-08 | put the MAC list into a display, like we do for ciphers, | Jason McIntyre | |
| since groff has trouble handling wide lines; | |||
| 2007-06-08 | Add a "MACs" line after "Ciphers" with the default MAC algorithms, | Peter Valchev | |
| to ease people who want to tweak both (eg. for performance reasons). ok deraadt@ djm@ dtucker@ | |||
| 2007-06-07 | Add a new MAC algorithm for data integrity, UMAC-64 (not default yet, must | Peter Valchev | |
| specify umac-64@openssh.com). Provides about 20% end-to-end speedup compared to hmac-md5. Represents a different approach to message authentication to that of HMAC that may be beneficial if HMAC based on one of its underlying hash algorithms is found to be vulnerable to a new attack. http://www.ietf.org/rfc/rfc4418.txt in conjunction with and OK djm@ | |||
| 2007-06-05 | Preserve MAC ctx between packets, saving 2xhash calls per-packet. | Damien Miller | |
| Yields around a 12-16% end-to-end speedup for arcfour256/hmac-md5 patch from markus@ tested dtucker@ and myself, ok markus@ and me (I'm committing at his request) | |||
| 2007-06-02 | memory leak on error path; from arnaud.lacombe.1 AT ulaval.ca | Damien Miller | |
| 2007-05-31 | gc unreachable code; spotted by Tavis Ormandy | Damien Miller | |
| 2007-05-31 | convert to new .Dd format; | Jason McIntyre | |
| 2007-05-30 | tidy: KNF, ARGSUSED and u_int | Damien Miller | |
| 2007-05-22 | zap double include; from p_nowaczyk AT o2.pl | Damien Miller | |
| 2007-05-17 | djm owes me a vb and a tism cd for breaking ssh compilation | Jolan Luff | |
| 2007-05-17 | pass received SIGINT from monitor to postauth child so it can clean | Damien Miller | |
| up properly. bz#1196, patch from senthilkumar_sen AT hotpop.com; ok markus@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |