]>
Commit | Line | Data |
---|---|---|
d45317d8 | 1 | 20000123 |
2 | - OpenBSD CVS: | |
3 | - [packet.c] | |
4 | getsockname() requires initialized tolen; andy@guildsoftware.com | |
5 | ||
e844f761 | 6 | 20000122 |
7 | - Fix compilation of bsd-snprintf.c on Solaris, fix from Ben Taylor | |
8 | <bent@clark.net> | |
c54a6257 | 9 | - Merge preformatted manpage patch from Andre Lucas |
10 | <andre.lucas@dial.pipex.com> | |
8eb34e02 | 11 | - Make IPv4 use the default in RPM packages |
12 | - Irix uses preformatted manpages | |
1e64903d | 13 | - Missing htons() in bsd-bindresvport.c, fix from Holger Trapp |
14 | <Holger.Trapp@Informatik.TU-Chemnitz.DE> | |
9bc5ddfe | 15 | - OpenBSD CVS updates: |
16 | - [packet.c] | |
17 | use getpeername() in packet_connection_is_on_socket(), fixes sshd -i; | |
18 | from Holger.Trapp@Informatik.TU-Chemnitz.DE | |
19 | - [sshd.c] | |
20 | log with level log() not fatal() if peer behaves badly. | |
21 | - [readpass.c] | |
22 | instead of blocking SIGINT, catch it ourselves, so that we can clean | |
23 | the tty modes up and kill ourselves -- instead of our process group | |
24 | leader (scp, cvs, ...) going away and leaving us in noecho mode. | |
25 | people with cbreak shells never even noticed.. | |
399d9d44 | 26 | - [ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8] |
27 | ie. -> i.e., | |
e844f761 | 28 | |
4c8ef3fb | 29 | 20000120 |
30 | - Don't use getaddrinfo on AIX | |
7b2ea3a1 | 31 | - Update to latest OpenBSD CVS: |
32 | - [auth-rsa.c] | |
33 | - fix user/1056, sshd keeps restrictions; dbt@meat.net | |
34 | - [sshconnect.c] | |
35 | - disable agent fwding for proto 1.3, remove abuse of auth-rsa flags. | |
36 | - destroy keys earlier | |
d468fc76 | 37 | - split key exchange (kex) and user authentication (user-auth), |
38 | ok: provos@ | |
7b2ea3a1 | 39 | - [sshd.c] |
40 | - no need for poll.h; from bright@wintelcom.net | |
41 | - disable agent fwding for proto 1.3, remove abuse of auth-rsa flags. | |
d468fc76 | 42 | - split key exchange (kex) and user authentication (user-auth), |
43 | ok: provos@ | |
f3bba493 | 44 | - Big manpage and config file cleanup from Andre Lucas |
45 | <andre.lucas@dial.pipex.com> | |
5f4fdfae | 46 | - Re-added latest (unmodified) OpenBSD manpages |
47f9a56a | 47 | - Doc updates |
d468fc76 | 48 | - NetBSD patch from David Rankin <drankin@bohemians.lexington.ky.us> and |
49 | Christos Zoulas <christos@netbsd.org> | |
4c8ef3fb | 50 | |
082bbfb3 | 51 | 20000119 |
20af321f | 52 | - SCO compile fixes from Gary E. Miller <gem@rellim.com> |
082bbfb3 | 53 | - Compile fix from Darren_Hall@progressive.com |
59e76f33 | 54 | - Linux/glibc-2.1.2 takes a *long* time to look up names for AF_UNSPEC |
55 | addresses using getaddrinfo(). Added a configure switch to make the | |
56 | default lookup mode AF_INET | |
082bbfb3 | 57 | |
a63a7f37 | 58 | 20000118 |
59 | - Fixed --with-pid-dir option | |
51a6baf8 | 60 | - Makefile fix from Gary E. Miller <gem@rellim.com> |
976f7e19 | 61 | - Compile fix for HPUX and Solaris from Andre Lucas |
62 | <andre.lucas@dial.pipex.com> | |
a63a7f37 | 63 | |
f914c7fb | 64 | 20000117 |
65 | - Clean up bsd-bindresvport.c. Use arc4random() for picking initial | |
66 | port, ignore EINVAL errors (Linux) when searching for free port. | |
de93b046 | 67 | - Revert __snprintf -> snprintf aliasing. Apparently Solaris |
68 | __snprintf isn't. Report from Theo de Raadt <theo@cvs.openbsd.org> | |
9b363e1c | 69 | - Document location of Redhat PAM file in INSTALL. |
80a44451 | 70 | - Fixed X11 forwarding bug on Linux. libc advertises AF_INET6 |
71 | INADDR_ANY_INIT addresses via getaddrinfo, but may not be able to | |
f4a7cf29 | 72 | deliver (no IPv6 kernel support) |
80a44451 | 73 | - Released 1.2.1pre27 |
f914c7fb | 74 | |
f4a7cf29 | 75 | - Fix rresvport_af failure errors (logic error in bsd-bindresvport.c) |
cf8ad170 | 76 | - Fix --with-ipaddr-display option test. Fix from Jarno Huuskonen |
77 | <jhuuskon@hytti.uku.fi> | |
691a8a9f | 78 | - Fix hang on logout if processes are still using the pty. Needs |
79 | further testing. | |
5957fd29 | 80 | - Patch from Christos Zoulas <christos@zoulas.com> |
81 | - Try $prefix first when looking for OpenSSL. | |
82 | - Include sys/types.h when including sys/socket.h in test programs | |
19d9ac2a | 83 | - Substitute PID directory in sshd.8. Suggestion from Andrew |
84 | Stribblehill <a.d.stribblehill@durham.ac.uk> | |
f4a7cf29 | 85 | |
47e45e44 | 86 | 20000116 |
87 | - Renamed --with-xauth-path to --with-xauth | |
88 | - Added --with-pid-dir option | |
89 | - Released 1.2.1pre26 | |
90 | ||
a82ef8ae | 91 | - Compilation fix from Kiyokazu SUTO <suto@ks-and-ks.ne.jp> |
66be05a1 | 92 | - Fixed broken bugfix for /dev/ptmx on Linux systems which lack |
93 | openpty(). Report from Kiyokazu SUTO <suto@ks-and-ks.ne.jp> | |
a82ef8ae | 94 | |
5cdfe03f | 95 | 20000115 |
96 | - Add --with-xauth-path configure directive and explicit test for | |
97 | /usr/openwin/bin/xauth for Solaris systems. Report from Anders | |
98 | Nordby <anders@fix.no> | |
99 | - Fix incorrect detection of /dev/ptmx on Linux systems that lack | |
100 | openpty. Report from John Seifarth <john@waw.be> | |
101 | - Look for intXX_t and u_intXX_t in sys/bitypes.h if they are not in | |
102 | sys/types.h. Fixes problems on SCO, report from Gary E. Miller | |
103 | <gem@rellim.com> | |
104 | - Use __snprintf and __vnsprintf if they are found where snprintf and | |
105 | vnsprintf are lacking. Suggested by Ben Taylor <bent@shell.clark.net> | |
106 | and others. | |
107 | ||
48e671d5 | 108 | 20000114 |
109 | - Merged OpenBSD IPv6 patch: | |
110 | - [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1] | |
111 | [scp.c packet.h packet.c login.c log.c canohost.c channels.c] | |
112 | [hostfile.c sshd_config] | |
113 | ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new | |
114 | features: sshd allows multiple ListenAddress and Port options. note | |
115 | that libwrap is not IPv6-ready. (based on patches from | |
116 | fujiwara@rcac.tdi.co.jp) | |
117 | - [ssh.c canohost.c] | |
118 | more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo, | |
119 | from itojun@ | |
120 | - [channels.c] | |
121 | listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE) | |
122 | - [packet.h] | |
123 | allow auth-kerberos for IPv4 only | |
124 | - [scp.1 sshd.8 servconf.h scp.c] | |
125 | document -4, -6, and 'ssh -L 2022/::1/22' | |
126 | - [ssh.c] | |
127 | 'ssh @host' is illegal (null user name), from | |
128 | karsten@gedankenpolizei.de | |
129 | - [sshconnect.c] | |
130 | better error message | |
131 | - [sshd.c] | |
132 | allow auth-kerberos for IPv4 only | |
133 | - Big IPv6 merge: | |
134 | - Cleanup overrun in sockaddr copying on RHL 6.1 | |
135 | - Replacements for getaddrinfo, getnameinfo, etc based on versions | |
136 | from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp> | |
137 | - Replacement for missing structures on systems that lack IPv6 | |
138 | - record_login needed to know about AF_INET6 addresses | |
139 | - Borrowed more code from OpenBSD: rresvport_af and requisites | |
140 | ||
2598df62 | 141 | 20000110 |
142 | - Fixes to auth-skey to enable it to use the standard OpenSSL libraries | |
143 | ||
b8a0310d | 144 | 20000107 |
145 | - New config.sub and config.guess to fix problems on SCO. Supplied | |
146 | by Gary E. Miller <gem@rellim.com> | |
b6a98a85 | 147 | - SCO build fix from Gary E. Miller <gem@rellim.com> |
2598df62 | 148 | - Released 1.2.1pre25 |
b8a0310d | 149 | |
dfb95100 | 150 | 20000106 |
151 | - Documentation update & cleanup | |
152 | - Better KrbIV / AFS detection, based on patch from: | |
153 | Holger Trapp <Holger.Trapp@Informatik.TU-Chemnitz.DE> | |
154 | ||
b9795b89 | 155 | 20000105 |
156 | - Fixed annoying DES corruption problem. libcrypt has been | |
157 | overriding symbols in libcrypto. Removed libcrypt and crypt.h | |
158 | altogether (libcrypto includes its own crypt(1) replacement) | |
159 | - Added platform-specific rules for Irix 6.x. Included warning that | |
160 | they are untested. | |
161 | ||
a1ec4d79 | 162 | 20000103 |
163 | - Add explicit make rules for files proccessed by fixpaths. | |
164 | - Fix "make install" in RPM spec files. Report from Tenkou N. Hattori | |
165 | <tnh@kondara.org> | |
607d73e6 | 166 | - Removed "nullok" directive from default PAM configuration files. |
167 | Added information on enabling EmptyPasswords on openssh+PAM in | |
168 | UPGRADING file. | |
e02735bb | 169 | - OpenBSD CVS updates |
170 | - [ssh-agent.c] | |
171 | cleanup_exit() for SIGTERM/SIGHUP, too. from fgsch@ and | |
172 | dgaudet@arctic.org | |
173 | - [sshconnect.c] | |
174 | compare correct version for 1.3 compat mode | |
a1ec4d79 | 175 | |
93c7f644 | 176 | 20000102 |
177 | - Prevent multiple inclusion of config.h and defines.h. Suggested | |
178 | by Andre Lucas <andre.lucas@dial.pipex.com> | |
179 | - Properly clean up on exit of ssh-agent. Patch from Dean Gaudet | |
180 | <dgaudet@arctic.org> | |
181 | ||
76b8607f | 182 | 19991231 |
183 | - Fix password support on systems with a mixture of shadowed and | |
184 | non-shadowed passwords (e.g. NIS). Report and fix from | |
185 | HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp> | |
723221b5 | 186 | - Fix broken autoconf typedef detection. Report from Marc G. |
187 | Fournier <marc.fournier@acadiau.ca> | |
b92964b7 | 188 | - Fix occasional crash on LinuxPPC. Patch from Franz Sirl |
189 | <Franz.Sirl-kernel@lauterbach.com> | |
a6ddc88b | 190 | - Prevent typedefs from being compiled more than once. Report from |
191 | Marc G. Fournier <marc.fournier@acadiau.ca> | |
4811cc0b | 192 | - Fill in ut_utaddr utmp field. Report from Benjamin Charron |
193 | <iretd@bigfoot.com> | |
c43d69a9 | 194 | - Really fix broken default path. Fix from Jim Knoble |
195 | <jmknoble@pobox.com> | |
ae3a3d31 | 196 | - Remove test for quad_t. No longer needed. |
76a8e733 | 197 | - Released 1.2.1pre24 |
198 | ||
199 | - Added support for directory-based lastlogs | |
200 | - Really fix typedefs, patch from Ben Taylor <bent@clark.net> | |
76b8607f | 201 | |
13f825f4 | 202 | 19991230 |
203 | - OpenBSD CVS updates: | |
204 | - [auth-passwd.c] | |
205 | check for NULL 1st | |
a5c9cd31 | 206 | - Removed most of the pam code into its own file auth-pam.[ch]. This |
207 | cleaned up sshd.c up significantly. | |
76b8607f | 208 | - PAM authentication was incorrectly interpreting |
209 | "PermitRootLogin without-password". Report from Matthias Andree | |
210 | <ma@dt.e-technik.uni-dortmund.de | |
a5c9cd31 | 211 | - Several other cleanups |
0bc5b6fb | 212 | - Merged Dante SOCKS support patch from David Rankin |
213 | <drankin@bohemians.lexington.ky.us> | |
214 | - Updated documentation with ./configure options | |
76b8607f | 215 | - Released 1.2.1pre23 |
13f825f4 | 216 | |
c73a0cb5 | 217 | 19991229 |
218 | - Applied another NetBSD portability patch from David Rankin | |
219 | <drankin@bohemians.lexington.ky.us> | |
220 | - Fix --with-default-path option. | |
a0f84251 | 221 | - Autodetect perl, patch from David Rankin |
222 | <drankin@bohemians.lexington.ky.us> | |
0a2ff95d | 223 | - Print whether OpenSSH was compiled with RSARef, patch from |
224 | Nalin Dahyabhai <nalin@thermo.stat.ncsu.edu> | |
f91bacbd | 225 | - Calls to pam_setcred, patch from Nalin Dahyabhai |
226 | <nalin@thermo.stat.ncsu.edu> | |
e3a93db0 | 227 | - Detect missing size_t and typedef it. |
5ab44a92 | 228 | - Rename helper.[ch] to (more appropriate) bsd-misc.[ch] |
229 | - Minor Makefile cleaning | |
c73a0cb5 | 230 | |
b6019d68 | 231 | 19991228 |
232 | - Replacement for getpagesize() for systems which lack it | |
70e0115b | 233 | - NetBSD login.c compile fix from David Rankin |
234 | <drankin@bohemians.lexington.ky.us> | |
235 | - Fully set ut_tv if present in utmp or utmpx | |
d94aa2ae | 236 | - Portability fixes for Irix 5.3 (now compiles OK!) |
237 | - autoconf and other misc cleanups | |
ea1970a3 | 238 | - Merged AIX patch from Darren Hall <dhall@virage.org> |
239 | - Cleaned up defines.h | |
fa9a2dd6 | 240 | - Released 1.2.1pre22 |
b6019d68 | 241 | |
d2dcff5f | 242 | 19991227 |
243 | - Automatically correct paths in manpages and configuration files. Patch | |
244 | and script from Andre Lucas <andre.lucas@dial.pipex.com> | |
245 | - Removed credits from README to CREDITS file, updated. | |
cb807f40 | 246 | - Added --with-default-path to specify custom path for server |
247 | - Removed #ifdef trickery from acconfig.h into defines.h | |
36a5b38e | 248 | - PAM bugfix. PermitEmptyPassword was being ignored. |
249 | - Fixed PAM config files to allow empty passwords if server does. | |
250 | - Explained spurious PAM auth warning workaround in UPGRADING | |
21feb5fa | 251 | - Use last few chars of tty line as ut_id |
5a7794be | 252 | - New SuSE RPM spec file from Chris Saia <csaia@wtower.com> |
00e6dd70 | 253 | - OpenBSD CVS updates: |
254 | - [packet.h auth-rhosts.c] | |
255 | check format string for packet_disconnect and packet_send_debug, too | |
256 | - [channels.c] | |
257 | use packet_get_maxsize for channels. consistence. | |
d2dcff5f | 258 | |
f74efc8d | 259 | 19991226 |
260 | - Enabled utmpx support by default for Solaris | |
261 | - Cleanup sshd.c PAM a little more | |
bc7ea646 | 262 | - Revised RPM package to include Jim Knoble's <jmknoble@pobox.com> |
263 | X11 ssh-askpass program. | |
20c43d8c | 264 | - Disable logging of PAM success and failures, PAM is verbose enough. |
265 | Unfortunatly there is currently no way to disable auth failure | |
266 | messages. Mention this in UPGRADING file and sent message to PAM | |
267 | developers | |
83b7f649 | 268 | - OpenBSD CVS update: |
269 | - [ssh-keygen.1 ssh.1] | |
270 | remove ref to .ssh/random_seed, mention .ssh/environment in | |
271 | .Sh FILES, too | |
72251cb6 | 272 | - Released 1.2.1pre21 |
273 | - Fixed implicit '.' in default path, report from Jim Knoble | |
274 | <jmknoble@pobox.com> | |
30a39691 | 275 | - Redhat RPM spec fixes from Jim Knoble <jmknoble@pobox.com> |
f74efc8d | 276 | |
f498ed15 | 277 | 19991225 |
278 | - More fixes from Andre Lucas <andre.lucas@dial.pipex.com> | |
279 | - Cleanup of auth-passwd.c for shadow and MD5 passwords | |
280 | - Cleanup and bugfix of PAM authentication code | |
f74efc8d | 281 | - Released 1.2.1pre20 |
282 | ||
283 | - Merged fixes from Ben Taylor <bent@clark.net> | |
284 | - Fixed configure support for PAM. Reported by Naz <96na@eng.cam.ac.uk> | |
285 | - Disabled logging of PAM password authentication failures when password | |
286 | is empty. (e.g start of authentication loop). Reported by Naz | |
287 | <96na@eng.cam.ac.uk>) | |
f498ed15 | 288 | |
289 | 19991223 | |
290 | - Merged later HPUX patch from Andre Lucas | |
291 | <andre.lucas@dial.pipex.com> | |
292 | - Above patch included better utmpx support from Ben Taylor | |
f74efc8d | 293 | <bent@clark.net> |
f498ed15 | 294 | |
eef6f7e9 | 295 | 19991222 |
296 | - Fix undefined fd_set type in ssh.h from Povl H. Pedersen | |
297 | <pope@netguide.dk> | |
ae28776a | 298 | - Fix login.c breakage on systems which lack ut_host in struct |
299 | utmp. Reported by Willard Dawson <willard.dawson@sbs.siemens.com> | |
eef6f7e9 | 300 | |
a7effaac | 301 | 19991221 |
302 | - Integration of large HPUX patch from Andre Lucas | |
303 | <andre.lucas@dial.pipex.com>. Integrating it had a few other | |
304 | benefits: | |
305 | - Ability to disable shadow passwords at configure time | |
306 | - Ability to disable lastlog support at configure time | |
307 | - Support for IP address in $DISPLAY | |
ae2f7af7 | 308 | - OpenBSD CVS update: |
309 | - [sshconnect.c] | |
310 | say "REMOTE HOST IDENTIFICATION HAS CHANGED" | |
59dd7a31 | 311 | - Fix DISABLE_SHADOW support |
312 | - Allow MD5 passwords even if shadow passwords are disabled | |
16034de9 | 313 | - Release 1.2.1pre19 |
a7effaac | 314 | |
3f1d9bcd | 315 | 19991218 |
316 | - Redhat init script patch from Chun-Chung Chen | |
317 | <cjj@u.washington.edu> | |
7e1c2490 | 318 | - Avoid breakage on systems without IPv6 headers |
3f1d9bcd | 319 | |
60d804c8 | 320 | 19991216 |
321 | - Makefile changes for Solaris from Peter Kocks | |
322 | <peter.kocks@baygate.com> | |
89cafde6 | 323 | - Minor updates to docs |
324 | - Merged OpenBSD CVS changes: | |
325 | - [authfd.c ssh-agent.c] | |
326 | keysize warnings talk about identity files | |
327 | - [packet.c] | |
328 | "Connection closed by x.x.x.x": fatal() -> log() | |
c9d323f0 | 329 | - Correctly handle empty passwords in shadow file. Patch from: |
330 | "Chris, the Young One" <cky@pobox.com> | |
331 | - Released 1.2.1pre18 | |
60d804c8 | 332 | |
7dc6fc6d | 333 | 19991215 |
334 | - Integrated patchs from Juergen Keil <jk@tools.de> | |
335 | - Avoid void* pointer arithmatic | |
336 | - Use LDFLAGS correctly | |
68227e6d | 337 | - Fix SIGIO error in scp |
338 | - Simplify status line printing in scp | |
906a2515 | 339 | - Added better test for inline functions compiler support from |
340 | Darren_Hall@progressive.com | |
7dc6fc6d | 341 | |
95f1eccc | 342 | 19991214 |
343 | - OpenBSD CVS Changes | |
344 | - [canohost.c] | |
345 | fix get_remote_port() and friends for sshd -i; | |
346 | Holger.Trapp@Informatik.TU-Chemnitz.DE | |
347 | - [mpaux.c] | |
348 | make code simpler. no need for memcpy. niels@ ok | |
349 | - [pty.c] | |
350 | namebuflen not sizeof namebuflen; bnd@ep-ag.com via djm@mindrot.org | |
351 | fix proto; markus | |
352 | - [ssh.1] | |
353 | typo; mark.baushke@solipsa.com | |
354 | - [channels.c ssh.c ssh.h sshd.c] | |
355 | type conflict for 'extern Type *options' in channels.c; dot@dotat.at | |
356 | - [sshconnect.c] | |
357 | move checking of hostkey into own function. | |
358 | - [version.h] | |
359 | OpenSSH-1.2.1 | |
884bcb37 | 360 | - Clean up broken includes in pty.c |
7303768f | 361 | - Some older systems don't have poll.h, they use sys/poll.h instead |
362 | - Doc updates | |
95f1eccc | 363 | |
847e8865 | 364 | 19991211 |
365 | - Fix compilation on systems with AFS. Reported by | |
366 | aloomis@glue.umd.edu | |
367 | - Fix installation on Solaris. Reported by | |
368 | Gordon Rowell <gordonr@gormand.com.au> | |
369 | - Fix gccisms (__attribute__ and inline). Report by edgy@us.ibm.com, | |
370 | patch from Markus Friedl <markus.friedl@informatik.uni-erlangen.de> | |
371 | - Auto-locate xauth. Patch from David Agraz <dagraz@jahoopa.com> | |
372 | - Compile fix from David Agraz <dagraz@jahoopa.com> | |
373 | - Avoid compiler warning in bsd-snprintf.c | |
374 | - Added pam_limits.so to default PAM config. Suggested by | |
375 | Jim Knoble <jmknoble@pobox.com> | |
376 | ||
8946db53 | 377 | 19991209 |
378 | - Import of patch from Ben Taylor <bent@clark.net>: | |
379 | - Improved PAM support | |
380 | - "uninstall" rule for Makefile | |
381 | - utmpx support | |
382 | - Should fix PAM problems on Solaris | |
2d86a6cc | 383 | - OpenBSD CVS updates: |
384 | - [readpass.c] | |
385 | avoid stdio; based on work by markus, millert, and I | |
386 | - [sshd.c] | |
387 | make sure the client selects a supported cipher | |
388 | - [sshd.c] | |
389 | fix sighup handling. accept would just restart and daemon handled | |
390 | sighup only after the next connection was accepted. use poll on | |
391 | listen sock now. | |
392 | - [sshd.c] | |
393 | make that a fatal | |
87e91331 | 394 | - Applied patch from David Rankin <drankin@bohemians.lexington.ky.us> |
395 | to fix libwrap support on NetBSD | |
5001b9e4 | 396 | - Released 1.2pre17 |
8946db53 | 397 | |
6d8c4ea4 | 398 | 19991208 |
399 | - Compile fix for Solaris with /dev/ptmx from | |
400 | David Agraz <dagraz@jahoopa.com> | |
401 | ||
4285816a | 402 | 19991207 |
403 | - sshd Redhat init script patch from Jim Knoble <jmknoble@pobox.com> | |
404 | fixes compatability with 4.x and 5.x | |
db28aeb5 | 405 | - Fixed default SSH_ASKPASS |
d465f2ca | 406 | - Fix PAM account and session being called multiple times. Problem |
407 | reported by Adrian Baugh <adrian@merlin.keble.ox.ac.uk> | |
a408af76 | 408 | - Merged more OpenBSD changes: |
409 | - [atomicio.c authfd.c scp.c serverloop.c ssh.h sshconnect.c sshd.c] | |
410 | move atomicio into it's own file. wrap all socket write()s which | |
411 | were doing write(sock, buf, len) != len, with atomicio() calls. | |
412 | - [auth-skey.c] | |
413 | fd leak | |
414 | - [authfile.c] | |
415 | properly name fd variable | |
416 | - [channels.c] | |
417 | display great hatred towards strcpy | |
418 | - [pty.c pty.h sshd.c] | |
419 | use openpty() if it exists (it does on BSD4_4) | |
420 | - [tildexpand.c] | |
421 | check for ~ expansion past MAXPATHLEN | |
422 | - Modified helper.c to use new atomicio function. | |
423 | - Reformat Makefile a little | |
424 | - Moved RC4 routines from rc4.[ch] into helper.c | |
425 | - Added autoconf code to detect /dev/ptmx (Solaris) and /dev/ptc (AIX) | |
9983a8ca | 426 | - Updated SuSE spec from Chris Saia <csaia@wtower.com> |
427 | - Tweaked Redhat spec | |
9158d92f | 428 | - Clean up bad imports of a few files (forgot -kb) |
429 | - Released 1.2pre16 | |
4285816a | 430 | |
9c7b6dfd | 431 | 19991204 |
432 | - Small cleanup of PAM code in sshd.c | |
57112b5a | 433 | - Merged OpenBSD CVS changes: |
434 | - [auth-krb4.c auth-passwd.c auth-skey.c ssh.h] | |
435 | move skey-auth from auth-passwd.c to auth-skey.c, same for krb4 | |
436 | - [auth-rsa.c] | |
437 | warn only about mismatch if key is _used_ | |
438 | warn about keysize-mismatch with log() not error() | |
439 | channels.c readconf.c readconf.h ssh.c ssh.h sshconnect.c | |
440 | ports are u_short | |
441 | - [hostfile.c] | |
442 | indent, shorter warning | |
443 | - [nchan.c] | |
444 | use error() for internal errors | |
445 | - [packet.c] | |
446 | set loglevel for SSH_MSG_DISCONNECT to log(), not fatal() | |
447 | serverloop.c | |
448 | indent | |
449 | - [ssh-add.1 ssh-add.c ssh.h] | |
450 | document $SSH_ASKPASS, reasonable default | |
451 | - [ssh.1] | |
452 | CheckHostIP is not available for connects via proxy command | |
453 | - [sshconnect.c] | |
454 | typo | |
455 | easier to read client code for passwd and skey auth | |
456 | turn of checkhostip for proxy connects, since we don't know the remote ip | |
9c7b6dfd | 457 | |
dad3b556 | 458 | 19991126 |
459 | - Add definition for __P() | |
460 | - Added [v]snprintf() replacement for systems that lack it | |
461 | ||
0ce43ae4 | 462 | 19991125 |
463 | - More reformatting merged from OpenBSD CVS | |
464 | - Merged OpenBSD CVS changes: | |
465 | - [channels.c] | |
466 | fix packet_integrity_check() for !have_hostname_in_open. | |
467 | report from mrwizard@psu.edu via djm@ibs.com.au | |
468 | - [channels.c] | |
469 | set SO_REUSEADDR and SO_LINGER for forwarded ports. | |
470 | chip@valinux.com via damien@ibs.com.au | |
471 | - [nchan.c] | |
472 | it's not an error() if shutdown_write failes in nchan. | |
473 | - [readconf.c] | |
474 | remove dead #ifdef-0-code | |
475 | - [readconf.c servconf.c] | |
476 | strcasecmp instead of tolower | |
477 | - [scp.c] | |
478 | progress meter overflow fix from damien@ibs.com.au | |
479 | - [ssh-add.1 ssh-add.c] | |
480 | SSH_ASKPASS support | |
481 | - [ssh.1 ssh.c] | |
482 | postpone fork_after_authentication until command execution, | |
483 | request/patch from jahakala@cc.jyu.fi via damien@ibs.com.au | |
484 | plus: use daemon() for backgrounding | |
cf8dd513 | 485 | - Added BSD compatible install program and autoconf test, thanks to |
486 | Niels Kristian Bech Jensen <nkbj@image.dk> | |
487 | - Solaris fixing, thanks to Ben Taylor <bent@clark.net> | |
09041313 | 488 | - Merged beginnings of AIX support from Tor-Ake Fransson <torake@hotmail.com> |
3dbefdb8 | 489 | - Release 1.2pre15 |
0ce43ae4 | 490 | |
5260325f | 491 | 19991124 |
492 | - Merged very large OpenBSD source code reformat | |
493 | - OpenBSD CVS updates | |
494 | - [channels.c cipher.c compat.c log-client.c scp.c serverloop.c] | |
495 | [ssh.h sshd.8 sshd.c] | |
496 | syslog changes: | |
497 | * Unified Logmessage for all auth-types, for success and for failed | |
498 | * Standard connections get only ONE line in the LOG when level==LOG: | |
499 | Auth-attempts are logged only, if authentication is: | |
500 | a) successfull or | |
501 | b) with passwd or | |
502 | c) we had more than AUTH_FAIL_LOG failues | |
503 | * many log() became verbose() | |
504 | * old behaviour with level=VERBOSE | |
505 | - [readconf.c readconf.h ssh.1 ssh.h sshconnect.c sshd.c] | |
506 | tranfer s/key challenge/response data in SSH_SMSG_AUTH_TIS_CHALLENGE | |
507 | messages. allows use of s/key in windows (ttssh, securecrt) and | |
508 | ssh-1.2.27 clients without 'ssh -v', ok: niels@ | |
509 | - [sshd.8] | |
510 | -V, for fallback to openssh in SSH2 compatibility mode | |
511 | - [sshd.c] | |
512 | fix sigchld race; cjc5@po.cwru.edu | |
513 | ||
4655fe80 | 514 | 19991123 |
515 | - Added SuSE package files from Chris Saia <csaia@wtower.com> | |
8b241e50 | 516 | - Restructured package-related files under packages/* |
4655fe80 | 517 | - Added generic PAM config |
8b241e50 | 518 | - Numerous little Solaris fixes |
9c08d6ce | 519 | - Add recommendation to use GNU make to INSTALL document |
4655fe80 | 520 | |
60bed5fd | 521 | 19991122 |
522 | - Make <enter> close gnome-ssh-askpass (Debian bug #50299) | |
2f2cc3f9 | 523 | - OpenBSD CVS Changes |
524 | - [ssh-keygen.c] | |
525 | don't create ~/.ssh only if the user wants to store the private | |
526 | key there. show fingerprint instead of public-key after | |
527 | keygeneration. ok niels@ | |
b09a984b | 528 | - Added OpenBSD bsd-strlcat.c, created bsd-strlcat.h |
96ad4350 | 529 | - Added timersub() macro |
b09a984b | 530 | - Tidy RCSIDs of bsd-*.c |
96ad4350 | 531 | - Added autoconf test and macro to deal with old PAM libraries |
532 | pam_strerror definition (one arg vs two). | |
530f1889 | 533 | - Fix EGD problems (Thanks to Ben Taylor <bent@clark.net>) |
534 | - Retry /dev/urandom reads interrupted by signal (report from | |
535 | Robert Hardy <rhardy@webcon.net>) | |
1647c2b5 | 536 | - Added a setenv replacement for systems which lack it |
d84a9a44 | 537 | - Only display public key comment when presenting ssh-askpass dialog |
538 | - Released 1.2pre14 | |
60bed5fd | 539 | |
2ddcfdf3 | 540 | - Configure, Make and changelog corrections from Tudor Bosman |
541 | <tudorb@jm.nu> and Niels Kristian Bech Jensen <nkbj@image.dk> | |
542 | ||
9d6b7add | 543 | 19991121 |
2f2cc3f9 | 544 | - OpenBSD CVS Changes: |
60bed5fd | 545 | - [channels.c] |
546 | make this compile, bad markus | |
547 | - [log.c readconf.c servconf.c ssh.h] | |
548 | bugfix: loglevels are per host in clientconfig, | |
549 | factor out common log-level parsing code. | |
550 | - [servconf.c] | |
551 | remove unused index (-Wall) | |
552 | - [ssh-agent.c] | |
553 | only one 'extern char *__progname' | |
554 | - [sshd.8] | |
555 | document SIGHUP, -Q to synopsis | |
556 | - [sshconnect.c serverloop.c sshd.c packet.c packet.h] | |
557 | [channels.c clientloop.c] | |
558 | SSH_CMSG_MAX_PACKET_SIZE, some clients use this, some need this, niels@ | |
559 | [hope this time my ISP stays alive during commit] | |
560 | - [OVERVIEW README] typos; green@freebsd | |
561 | - [ssh-keygen.c] | |
562 | replace xstrdup+strcat with strlcat+fixed buffer, fixes OF (bad me) | |
563 | exit if writing the key fails (no infinit loop) | |
564 | print usage() everytime we get bad options | |
565 | - [ssh-keygen.c] overflow, djm@mindrot.org | |
566 | - [sshd.c] fix sigchld race; cjc5@po.cwru.edu | |
567 | ||
2b942fe0 | 568 | 19991120 |
569 | - Merged more Solaris support from Marc G. Fournier | |
570 | <marc.fournier@acadiau.ca> | |
571 | - Wrote autoconf tests for integer bit-types | |
572 | - Fixed enabling kerberos support | |
13c36c4c | 573 | - Fix segfault in ssh-keygen caused by buffer overrun in filename |
574 | handling. | |
2b942fe0 | 575 | |
06479889 | 576 | 19991119 |
577 | - Merged PAM buffer overrun patch from Chip Salzenberg <chip@valinux.com> | |
2ad77510 | 578 | - Merged OpenBSD CVS changes |
579 | - [auth-rhosts.c auth-rsa.c ssh-agent.c sshconnect.c sshd.c] | |
580 | more %d vs. %s in fmt-strings | |
581 | - [authfd.c] | |
582 | Integers should not be printed with %s | |
7b1cc56c | 583 | - EGD uses a socket, not a named pipe. Duh. |
584 | - Fix includes in fingerprint.c | |
29dbde15 | 585 | - Fix scp progress bar bug again. |
2ddcfdf3 | 586 | - Move ssh-askpass from ${libdir}/ssh to ${libexecdir}/ssh at request of |
736890c4 | 587 | David Rankin <drankin@bohemians.lexington.ky.us> |
91b8065d | 588 | - Added autoconf option to enable Kerberos 4 support (untested) |
589 | - Added autoconf option to enable AFS support (untested) | |
590 | - Added autoconf option to enable S/Key support (untested) | |
591 | - Added autoconf option to enable TCP wrappers support (compiles OK) | |
beb43d31 | 592 | - Renamed BSD helper function files to bsd-* |
caf3bc51 | 593 | - Added tests for login and daemon and enable OpenBSD replacements for |
594 | when they are absent. | |
595 | - Added non-PAM MD5 password support patch from Tudor Bosman <tudorb@jm.nu> | |
06479889 | 596 | |
2bd61362 | 597 | 19991118 |
598 | - Merged OpenBSD CVS changes | |
599 | - [scp.c] foregroundproc() in scp | |
600 | - [sshconnect.h] include fingerprint.h | |
601 | - [sshd.c] bugfix: the log() for passwd-auth escaped during logging | |
602 | changes. | |
0c16a097 | 603 | - [ssh.1] Spell my name right. |
2bd61362 | 604 | - Added openssh.com info to README |
605 | ||
f095fcc7 | 606 | 19991117 |
607 | - Merged OpenBSD CVS changes | |
608 | - [ChangeLog.Ylonen] noone needs this anymore | |
609 | - [authfd.c] close-on-exec for auth-socket, ok deraadt | |
610 | - [hostfile.c] | |
611 | in known_hosts key lookup the entry for the bits does not need | |
612 | to match, all the information is contained in n and e. This | |
613 | solves the problem with buggy servers announcing the wrong | |
614 | modulus length. markus and me. | |
615 | - [serverloop.c] | |
616 | bugfix: check for space if child has terminated, from: | |
617 | iedowse@maths.tcd.ie | |
618 | - [ssh-add.1 ssh-add.c ssh-keygen.1 ssh-keygen.c sshconnect.c] | |
619 | [fingerprint.c fingerprint.h] | |
620 | rsa key fingerprints, idea from Bjoern Groenvall <bg@sics.se> | |
621 | - [ssh-agent.1] typo | |
622 | - [ssh.1] add OpenSSH information to AUTHOR section. okay markus@ | |
623 | - [sshd.c] | |
624 | force logging to stderr while loading private key file | |
625 | (lost while converting to new log-levels) | |
626 | ||
4d195447 | 627 | 19991116 |
628 | - Fix some Linux libc5 problems reported by Miles Wilson <mw@mctitle.com> | |
629 | - Merged OpenBSD CVS changes: | |
630 | - [auth-rh-rsa.c auth-rsa.c authfd.c authfd.h hostfile.c mpaux.c] | |
631 | [mpaux.h ssh-add.c ssh-agent.c ssh.h ssh.c sshd.c] | |
632 | the keysize of rsa-parameter 'n' is passed implizit, | |
633 | a few more checks and warnings about 'pretended' keysizes. | |
634 | - [cipher.c cipher.h packet.c packet.h sshd.c] | |
635 | remove support for cipher RC4 | |
636 | - [ssh.c] | |
637 | a note for legay systems about secuity issues with permanently_set_uid(), | |
638 | the private hostkey and ptrace() | |
639 | - [sshconnect.c] | |
640 | more detailed messages about adding and checking hostkeys | |
641 | ||
dad9a31e | 642 | 19991115 |
643 | - Merged OpenBSD CVS changes: | |
644 | - [ssh-add.c] change passphrase loop logic and remove ref to | |
645 | $DISPLAY, ok niels | |
646 | - Changed to ssh-add.c broke askpass support. Revised it to be a little more | |
647 | modular. | |
648 | - Revised autoconf support for enabling/disabling askpass support. | |
e7c0f9d5 | 649 | - Merged more OpenBSD CVS changes: |
650 | [auth-krb4.c] | |
651 | - disconnect if getpeername() fails | |
652 | - missing xfree(*client) | |
653 | [canohost.c] | |
654 | - disconnect if getpeername() fails | |
655 | - fix comment: we _do_ disconnect if ip-options are set | |
656 | [sshd.c] | |
657 | - disconnect if getpeername() fails | |
658 | - move checking of remote port to central place | |
659 | [auth-rhosts.c] move checking of remote port to central place | |
660 | [log-server.c] avoid extra fd per sshd, from millert@ | |
661 | [readconf.c] print _all_ bad config-options in ssh(1), too | |
662 | [readconf.h] print _all_ bad config-options in ssh(1), too | |
663 | [ssh.c] print _all_ bad config-options in ssh(1), too | |
664 | [sshconnect.c] disconnect if getpeername() fails | |
665 | - OpenBSD's changes to sshd.c broke the PAM stuff, re-merged it. | |
c75a1a66 | 666 | - Various small cleanups to bring diff (against OpenBSD) size down. |
f601d847 | 667 | - Merged more Solaris compability from Marc G. Fournier |
668 | <marc.fournier@acadiau.ca> | |
669 | - Wrote autoconf tests for __progname symbol | |
8c119fd0 | 670 | - RPM spec file fixes from Jim Knoble <jmknoble@pobox.com> |
0c372277 | 671 | - Released 1.2pre12 |
672 | ||
673 | - Another OpenBSD CVS update: | |
674 | - [ssh-keygen.1] fix .Xr | |
dad9a31e | 675 | |
92da7197 | 676 | 19991114 |
677 | - Solaris compilation fixes (still imcomplete) | |
678 | ||
94f7bb9e | 679 | 19991113 |
dd092f97 | 680 | - Build patch from Niels Kristian Bech Jensen <nkbj@image.dk> |
681 | - Don't install config files if they already exist | |
682 | - Fix inclusion of additional preprocessor directives from acconfig.h | |
94f7bb9e | 683 | - Removed redundant inclusions of config.h |
e9c75a39 | 684 | - Added 'Obsoletes' lines to RPM spec file |
94f7bb9e | 685 | - Merged OpenBSD CVS changes: |
686 | - [bufaux.c] save a view malloc/memcpy/memset/free's, ok niels | |
687 | - [scp.c] fix overflow reported by damien@ibs.com.au: off_t | |
688 | totalsize, ok niels,aaron | |
689 | - Delay fork (-f option) in ssh until after port forwarded connections | |
690 | have been initialised. Patch from Jani Hakala <jahakala@cc.jyu.fi> | |
b2344d54 | 691 | - Added shadow password patch from Thomas Neumann <tom@smart.ruhr.de> |
692 | - Added ifdefs to auth-passwd.c to exclude it when PAM is enabled | |
dd092f97 | 693 | - Tidied default config file some more |
694 | - Revised Redhat initscript to fix bug: sshd (re)start would fail | |
695 | if executed from inside a ssh login. | |
94f7bb9e | 696 | |
e35c1dc2 | 697 | 19991112 |
698 | - Merged changes from OpenBSD CVS | |
699 | - [sshd.c] session_key_int may be zero | |
b4748e2f | 700 | - [auth-rh-rsa.c servconf.c servconf.h ssh.h sshd.8 sshd.c sshd_config] |
701 | IgnoreUserKnownHosts(default=no), used for RhostRSAAuth, ok | |
702 | deraadt,millert | |
703 | - Brought default sshd_config more in line with OpenBSD's | |
547c9f30 | 704 | - Grab server in gnome-ssh-askpass (Debian bug #49872) |
705 | - Released 1.2pre10 | |
e35c1dc2 | 706 | |
8bc7973f | 707 | - Added INSTALL documentation |
6fa724bc | 708 | - Merged yet more changes from OpenBSD CVS |
709 | - [auth-rh-rsa.c auth-rhosts.c auth-rsa.c channels.c clientloop.c] | |
710 | [ssh.c ssh.h sshconnect.c sshd.c] | |
711 | make all access to options via 'extern Options options' | |
712 | and 'extern ServerOptions options' respectively; | |
713 | options are no longer passed as arguments: | |
714 | * make options handling more consistent | |
715 | * remove #include "readconf.h" from ssh.h | |
716 | * readconf.h is only included if necessary | |
717 | - [mpaux.c] clear temp buffer | |
718 | - [servconf.c] print _all_ bad options found in configfile | |
045672f9 | 719 | - Make ssh-askpass support optional through autoconf |
59b0f0d4 | 720 | - Fix nasty division-by-zero error in scp.c |
721 | - Released 1.2pre11 | |
8bc7973f | 722 | |
4cca272e | 723 | 19991111 |
724 | - Added (untested) Entropy Gathering Daemon (EGD) support | |
67d68e3a | 725 | - Fixed /dev/urandom fd leak (Debian bug #49722) |
5bbb5681 | 726 | - Merged OpenBSD CVS changes: |
727 | - [auth-rh-rsa.c] user/958: check ~/.ssh/known_hosts for rhosts-rsa, too | |
728 | - [ssh.1] user/958: check ~/.ssh/known_hosts for rhosts-rsa, too | |
729 | - [sshd.8] user/958: check ~/.ssh/known_hosts for rhosts-rsa, too | |
505fed0a | 730 | - Fix integer overflow which was messing up scp's progress bar for large |
3f1d9bcd | 731 | file transfers. Fix submitted to OpenBSD developers. Report and fix |
732 | from Kees Cook <cook@cpoint.net> | |
6a17f9c2 | 733 | - Merged more OpenBSD CVS changes: |
734 | - [auth-krb4.c auth-passwd.c] remove x11- and krb-cleanup from fatal() | |
735 | + krb-cleanup cleanup | |
736 | - [clientloop.c log-client.c log-server.c ] | |
737 | [readconf.c readconf.h servconf.c servconf.h ] | |
738 | [ssh.1 ssh.c ssh.h sshd.8] | |
739 | add LogLevel {QUIET, FATAL, ERROR, INFO, CHAT, DEBUG} to ssh/sshd, | |
740 | obsoletes QuietMode and FascistLogging in sshd. | |
e35c1dc2 | 741 | - [sshd.c] fix fatal/assert() bug reported by damien@ibs.com.au: |
742 | allow session_key_int != sizeof(session_key) | |
743 | [this should fix the pre-assert-removal-core-files] | |
744 | - Updated default config file to use new LogLevel option and to improve | |
745 | readability | |
746 | ||
f370266e | 747 | 19991110 |
67d68e3a | 748 | - Merged several minor fixes: |
f370266e | 749 | - ssh-agent commandline parsing |
750 | - RPM spec file now installs ssh setuid root | |
751 | - Makefile creates libdir | |
4cca272e | 752 | - Merged beginnings of Solaris compability from Marc G. Fournier |
753 | <marc.fournier@acadiau.ca> | |
f370266e | 754 | |
d4f11b59 | 755 | 19991109 |
756 | - Autodetection of SSL/Crypto library location via autoconf | |
757 | - Fixed location of ssh-askpass to follow autoconf | |
758 | - Integrated Makefile patch from Niels Kristian Bech Jensen <nkbj@image.dk> | |
759 | - Autodetection of RSAref library for US users | |
760 | - Minor doc updates | |
560557bb | 761 | - Merged OpenBSD CVS changes: |
762 | - [rsa.c] bugfix: use correct size for memset() | |
763 | - [sshconnect.c] warn if announced size of modulus 'n' != real size | |
f025becb | 764 | - Added GNOME passphrase requestor (use --with-gnome-askpass) |
d397b172 | 765 | - RPM build now creates subpackages |
aa51e7cc | 766 | - Released 1.2pre9 |
d4f11b59 | 767 | |
e1a9c08d | 768 | 19991108 |
769 | - Removed debian/ directory. This is now being maintained separately. | |
770 | - Added symlinks for slogin in RPM spec file | |
771 | - Fixed permissions on manpages in RPM spec file | |
772 | - Added references to required libraries in README file | |
773 | - Removed config.h.in from CVS | |
774 | - Removed pwdb support (better pluggable auth is provided by glibc) | |
775 | - Made PAM and requisite libdl optional | |
776 | - Removed lots of unnecessary checks from autoconf | |
777 | - Added support and autoconf test for openpty() function (Unix98 pty support) | |
778 | - Fix for scp not finding ssh if not installed as /usr/bin/ssh | |
779 | - Added TODO file | |
780 | - Merged parts of Debian patch From Phil Hands <phil@hands.com>: | |
781 | - Added ssh-askpass program | |
782 | - Added ssh-askpass support to ssh-add.c | |
783 | - Create symlinks for slogin on install | |
784 | - Fix "distclean" target in makefile | |
785 | - Added example for ssh-agent to manpage | |
786 | - Added support for PAM_TEXT_INFO messages | |
787 | - Disable internal /etc/nologin support if PAM enabled | |
788 | - Merged latest OpenBSD CVS changes: | |
5bae4ab8 | 789 | - [all] replace assert() with error, fatal or packet_disconnect |
e1a9c08d | 790 | - [sshd.c] don't send fail-msg but disconnect if too many authentication |
791 | failures | |
e1a9c08d | 792 | - [sshd.c] remove unused argument. ok dugsong |
793 | - [sshd.c] typo | |
794 | - [rsa.c] clear buffers used for encryption. ok: niels | |
795 | - [rsa.c] replace assert() with error, fatal or packet_disconnect | |
ade6fccd | 796 | - [auth-krb4.c] remove unused argument. ok dugsong |
e1a9c08d | 797 | - Fixed coredump after merge of OpenBSD rsa.c patch |
9010d60a | 798 | - Released 1.2pre8 |
e1a9c08d | 799 | |
3028328e | 800 | 19991102 |
801 | - Merged change from OpenBSD CVS | |
802 | - One-line cleanup in sshd.c | |
803 | ||
474832c5 | 804 | 19991030 |
805 | - Integrated debian package support from Dan Brosemer <odin@linuxfreak.com> | |
69256d9d | 806 | - Merged latest updates for OpenBSD CVS: |
807 | - channels.[ch] - remove broken x11 fix and document istate/ostate | |
808 | - ssh-agent.c - call setsid() regardless of argv[] | |
809 | - ssh.c - save a few lines when disabling rhosts-{rsa-}auth | |
810 | - Documentation cleanups | |
811 | - Renamed README -> README.Ylonen | |
812 | - Renamed README.openssh ->README | |
474832c5 | 813 | |
339660f6 | 814 | 19991029 |
815 | - Renamed openssh* back to ssh* at request of Theo de Raadt | |
816 | - Incorporated latest changes from OpenBSD's CVS | |
817 | - Integrated Makefile patch from Niels Kristian Bech Jensen <nkbj@image.dk> | |
818 | - Integrated PAM env patch from Nalin Dahyabhai <nalin.dahyabhai@pobox.com> | |
549b3eed | 819 | - Make distclean now removed configure script |
820 | - Improved PAM logging | |
821 | - Added some debug() calls for PAM | |
4ecd19ea | 822 | - Removed redundant subdirectories |
823 | - Integrated part of a patch from Dan Brosemer <odin@linuxfreak.com> for | |
824 | building on Debian. | |
242588e6 | 825 | - Fixed off-by-one error in PAM env patch |
826 | - Released 1.2pre6 | |
339660f6 | 827 | |
5881cd60 | 828 | 19991028 |
829 | - Further PAM enhancements. | |
830 | - Much cleaner | |
831 | - Now uses account and session modules for all logins. | |
832 | - Integrated patch from Dan Brosemer <odin@linuxfreak.com> | |
833 | - Build fixes | |
834 | - Autoconf | |
835 | - Change binary names to open* | |
836 | - Fixed autoconf script to detect PAM on RH6.1 | |
837 | - Added tests for libpwdb, and OpenBSD functions to autoconf | |
221395b3 | 838 | - Released 1.2pre4 |
fca82d2e | 839 | |
840 | - Imported latest OpenBSD CVS code | |
841 | - Updated README.openssh | |
93f04616 | 842 | - Released 1.2pre5 |
fca82d2e | 843 | |
5881cd60 | 844 | 19991027 |
845 | - Adapted PAM patch. | |
846 | - Released 1.0pre2 | |
847 | ||
848 | - Excised my buggy replacements for strlcpy and mkdtemp | |
849 | - Imported correct OpenBSD strlcpy and mkdtemp routines. | |
850 | - Reduced arc4random_stir entropy read to 32 bytes (256 bits) | |
851 | - Picked up correct version number from OpenBSD | |
852 | - Added sshd.pam PAM configuration file | |
853 | - Added sshd.init Redhat init script | |
854 | - Added openssh.spec RPM spec file | |
855 | - Released 1.2pre3 | |
856 | ||
857 | 19991026 | |
858 | - Fixed include paths of OpenSSL functions | |
859 | - Use OpenSSL MD5 routines | |
860 | - Imported RC4 code from nanocrypt | |
861 | - Wrote replacements for OpenBSD arc4random* functions | |
862 | - Wrote replacements for strlcpy and mkdtemp | |
863 | - Released 1.0pre1 |