| Age | Commit message (Collapse) | Author |
|---|
|
ok millert@
|
|
empty bodies. useful for sending mails from crontabs.
from rivo nurges <rix at estpak dot ee>, with missing 'skipempty'
documentation and usage update from me
ok millert@
|
|
|
|
- for argument of -f flag, name -> file
- document TMPDIR, better description from millert@
ok millert@
|
|
- simplify istrlcpy, no need to check for isupper
- line[0] is redundant, because strcasecmp will take care of it
ok millert@
|
|
- use tmpdir instead of /tmp
ok millert@
|
|
|
|
in the list).
|
|
Pointed out by mcbride@, makes sense henning@
|
|
- remove quite some code, use strcasestr instead of reimplementing
it each time
- use strncasecmp, instead of comparing through each character
"looks fine" millert@
|
|
uninitialized (page=1), or use wrong previously-set value of crt
(page=0). ok millert@
|
|
|
|
with ChrootDirectory
|
|
(recently increased) channel window. prompted by rapier AT psc.edu;
ok markus@
|
|
address argument. from visibilis AT yahoo.com in bz#1485; ok markus@
|
|
-v is also specified, making it consistent with the manual and other
uses of -l.
ok grunk@
|
|
from dlg@, this is a simpler version.
|
|
s/RSA authentication/public key authentication/
|
|
reported by dkrause@
|
|
|
|
|
|
|
|
|
|
|
|
'mget -cr 4.*' would recursively fetch (-r), and resume the previous
transfers (-c) of 4.X release directories
uses local matching (fnmatch), but only for recursive transfers.
current behavior is not changed in any way.
- while here, ifndef SMALL debugging stuff, this saves some space,
for floppies
- some debugging code was enabled for non-debugging mode, checks
assume debug is set to zero, but it's not initially set
- all "Confirm with" prompts are forced, remove redundant argument
- fix usage: -C and -c are not available for SMALL
discussed a year ago w/ pyr@
looks good to millert@
previous version looked good to pyr@
man page tweaks & ok jmc@
|
|
right hand side and the yacc stackpointer is pointing at the very
end of the allocated stack, we end up accessing the stack out of
bounds by the implicit $$ = $1 action. Detected by my new malloc,
experienced by sturm@ on sparc64; ok deraadt@
|
|
|
|
|
|
variable that is only used once, which is in this case.
|
|
|
|
warning: function key_equal falls off bottom without returning value
ok djm@
|
|
munging systat to handle the field with;
pointed out by mickey
ok canacar@
|
|
ok djm@
|
|
|
|
|
|
|
|
diff written by millert based on a previous one by me;
millert's diff has a much better style and adds support for different
sets of options for each utility.
ok millert@
|
|
b64encode and b64decode are equivalent to running uuencode and uudecode
respectively with the -m flag specified, so this flag should not be
available in these utilities; while here, fix synopsis.
based on millert's diff for compress/gzip.
ok millert@
|
|
|
|
Do not treat the first protocol 2 authentication attempt as
a failure IFF it is for method "none".
Makes MaxAuthTries' user-visible behaviour identical for
protocol 1 vs 2.
ok dtucker@
|
|
|
|
|
|
|
|
|
|
|
|
enabled, delay the fork until after replies for any -R forwards have
been seen. Allows for robust detection of -R forward failure when
using -f (similar to bz#92); ok dtucker@
|
|
|
|
Check whether client has exceeded MaxAuthTries before running
an authentication method and skip it if they have, previously it
would always allow one try (for "none" auth).
Preincrement failure count before post-auth test - previously this
checked and postincremented, also to allow one "none" try.
Together, these two changes always count the "none" auth method
which could be skipped by a malicious client (e.g. an SSH worm)
to get an extra attempt at a real auth method. They also make
MaxAuthTries=0 a useful way to block users entirely (esp. in a
sshd_config Match block).
Also, move sending of any preauth banner from "none" auth method
to the first call to input_userauth_request(), so worms that skip
the "none" method get to see it too.
|
|
Holland via bz #1348 . Also checks for non-regular files during protocol
1 RSA auth. ok djm@
|
|
bits; prodded by & ok dtucker@ ok deraadt@
|
