summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Collapse)Author
2013-05-06Reference the version of the sftp draft we actually implement. ok djm@Darren Tucker
2013-04-24remove extra parens noticed by nicmTed Unangst
2013-04-23use xasprintf instead of a series of strlcats and strdup. ok djmTed Unangst
2013-04-22typo in debug output: evitval->exitvalDarren Tucker
2013-04-19remove duplicated list entry pointed out by naddy@Damien Miller
2013-04-19add -Q to usage; reminded by jmc@Damien Miller
2013-04-19add the ability to query supported ciphers, MACs, key type and KEXDamien Miller
algorithms to ssh. Includes some refactoring of KEX and key type handling to be table-driven; ok markus@
2013-04-19reintroduce 1.262 without the connection-killing bug:Damien Miller
fatal() when ChrootDirectory specified by running without root privileges; ok markus@
2013-04-19fix some memory leaks; bz#2088 ok dtucker@Damien Miller
2013-04-19document the requirment that the AuthorizedKeysCommand be owned by root;Damien Miller
ok dtucker@ markus@
2013-04-18make "sftp -q" do what it says on the sticker: hush everything but errors;Damien Miller
ok dtucker@
2013-04-17revert rev 1.262; it fails because uid is already set here. ok djm@Darren Tucker
2013-04-11quiet disconnect notifications on the server from error() back to logit()Damien Miller
if it is a normal client closure; bz#2057 ok+feedback dtucker@
2013-04-07clarify -e text. suggested by & ok jmc@Darren Tucker
2013-04-07Add -E option to ssh and sshd to append debugging logs to a specified fileDarren Tucker
instead of stderr or syslog. ok markus@, man page help jmc@
2013-04-06handle ECONNABORTED for accept(); ok deraadt some time ago...Markus Friedl
2013-04-05cleanup mux-created channels that are in SSH_CHANNEL_OPENING state tooDamien Miller
(in addition to ones already in OPEN); bz#2079, ok dtucker@
2013-04-05use the existing _PATH_SSH_USER_RC define to construct the otherDamien Miller
pathnames; bz#2077, ok dtucker@ (no binary change)
2013-04-05hush some {unused, printf type} warningsDamien Miller
2013-03-08allow "ssh -f none ..." ok markus@Damien Miller
2013-03-07add submethod support to AuthenticationMethods; ok and freedback djm@Markus Friedl
2013-03-07reconstruct the original username that was sent by the client, which mayDamien Miller
have included a style (e.g. "root:skey") when checking public key signatures. Fixes public key and hostbased auth when the client specified a style; ok markus@
2013-03-06g/c unused variable (-Wunused)Damien Miller
2013-03-06fatal() when ChrootDirectory specified by running without root privileges;Damien Miller
ok markus@
2013-03-05reset pubkey order on partial success; ok djm@Markus Friedl
2013-02-22Allow IdenityFile=none; ok markus deraadt (and dtucker for an earlierDamien Miller
version)
2013-02-22support ProxyCommand=- (stdin/out already point to the proxy); ok djm@Markus Friedl
2013-02-22Don't complain if IdentityFiles specified in system-wide configs are missing.Darren Tucker
ok djm, deraadt.
2013-02-19Remove bogus include. ok djmDarren Tucker
2013-02-17Keep track of which IndentityFile options were manually supplied and whichDarren Tucker
were default options, and don't warn if the latter are missing. ok markus@
2013-02-15Warn more loudly if an IdentityFile provided by the user cannot be read.Darren Tucker
bz #1981, ok djm@
2013-02-14Correct error message that had a typo and was logging the wrong thing;Damien Miller
patch from Petr Lautrbach
2013-02-11Add openssl version to debug output similar to the client. ok markus@Darren Tucker
2013-02-10record "Received disconnect" messages at ERROR rather than INFO priority,Damien Miller
since they are abnormal and result in a non-zero ssh exit status; patch from Iain Morgan in bz#2057; ok dtucker@
2013-02-10append to moduli file when screening candidates rather than overwriting.Damien Miller
allows resumption of interrupted screen; patch from Christophe Garault in bz#1957; ok dtucker@
2013-02-10openssh 6.2Markus Friedl
2013-02-08fix NULL deref when built without libedit and control charactersDamien Miller
entered as command; debugging and patch from Iain Morgan an Loganaden Velvindron in bz#1956
2013-02-06Fix comment, from jfree.e1 at gmailDarren Tucker
2013-02-06Change default of MaxStartups to 10:30:100 to start doing random earlyDarren Tucker
drop at 10 connections up to 100 connections. This will make it harder to DoS as CPUs have come a long way since the original value was set back in 2000. Prompted by nion at debian org, ok markus@
2013-01-27actually use the xrealloc() return value; spotted by xi.wang AT gmail.comDamien Miller
2013-01-26remove ACSS, now that it is gone from libcrypto tooDamien Miller
2013-01-25redo last commit without the vi-vomit that snuck in:Damien Miller
skip serial lookup when cert's serial number is zero (now with 100% better comment)
2013-01-25Revert last. Breaks due to likely typo. Let djm@ fix later.Kenneth R Westerback
ok djm@ via dlg@
2013-01-24skip serial lookup when cert's serial number is zeroDamien Miller
2013-01-24fix handling of (unused) KRL signatures; skip string in correct bufferDamien Miller
2013-01-19RB_INSERT does not remove existing elments; ok djm@Markus Friedl
2013-01-19fix some formatting; ok djmJason McIntyre
2013-01-18command-line (adj.) -> command line (n.);Jason McIntyre
2013-01-18add -Q to the options list; ok djmJason McIntyre
2013-01-18tweak previous;Jason McIntyre
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-28 08:28:58 +0000