2 - Integration of large HPUX patch from Andre Lucas
3 <andre.lucas@dial.pipex.com>. Integrating it had a few other
5 - Ability to disable shadow passwords at configure time
6 - Ability to disable lastlog support at configure time
7 - Support for IP address in $DISPLAY
10 say "REMOTE HOST IDENTIFICATION HAS CHANGED"
13 - Redhat init script patch from Chun-Chung Chen
14 <cjj@u.washington.edu>
15 - Avoid breakage on systems without IPv6 headers
18 - Makefile changes for Solaris from Peter Kocks
19 <peter.kocks@baygate.com>
20 - Minor updates to docs
21 - Merged OpenBSD CVS changes:
22 - [authfd.c ssh-agent.c]
23 keysize warnings talk about identity files
25 "Connection closed by x.x.x.x": fatal() -> log()
26 - Correctly handle empty passwords in shadow file. Patch from:
27 "Chris, the Young One" <cky@pobox.com>
31 - Integrated patchs from Juergen Keil <jk@tools.de>
32 - Avoid void* pointer arithmatic
33 - Use LDFLAGS correctly
34 - Fix SIGIO error in scp
35 - Simplify status line printing in scp
36 - Added better test for inline functions compiler support from
37 Darren_Hall@progressive.com
42 fix get_remote_port() and friends for sshd -i;
43 Holger.Trapp@Informatik.TU-Chemnitz.DE
45 make code simpler. no need for memcpy. niels@ ok
47 namebuflen not sizeof namebuflen; bnd@ep-ag.com via djm@mindrot.org
50 typo; mark.baushke@solipsa.com
51 - [channels.c ssh.c ssh.h sshd.c]
52 type conflict for 'extern Type *options' in channels.c; dot@dotat.at
54 move checking of hostkey into own function.
57 - Clean up broken includes in pty.c
58 - Some older systems don't have poll.h, they use sys/poll.h instead
62 - Fix compilation on systems with AFS. Reported by
64 - Fix installation on Solaris. Reported by
65 Gordon Rowell <gordonr@gormand.com.au>
66 - Fix gccisms (__attribute__ and inline). Report by edgy@us.ibm.com,
67 patch from Markus Friedl <markus.friedl@informatik.uni-erlangen.de>
68 - Auto-locate xauth. Patch from David Agraz <dagraz@jahoopa.com>
69 - Compile fix from David Agraz <dagraz@jahoopa.com>
70 - Avoid compiler warning in bsd-snprintf.c
71 - Added pam_limits.so to default PAM config. Suggested by
72 Jim Knoble <jmknoble@pobox.com>
75 - Import of patch from Ben Taylor <bent@clark.net>:
76 - Improved PAM support
77 - "uninstall" rule for Makefile
79 - Should fix PAM problems on Solaris
80 - OpenBSD CVS updates:
82 avoid stdio; based on work by markus, millert, and I
84 make sure the client selects a supported cipher
86 fix sighup handling. accept would just restart and daemon handled
87 sighup only after the next connection was accepted. use poll on
91 - Applied patch from David Rankin <drankin@bohemians.lexington.ky.us>
92 to fix libwrap support on NetBSD
96 - Compile fix for Solaris with /dev/ptmx from
97 David Agraz <dagraz@jahoopa.com>
100 - sshd Redhat init script patch from Jim Knoble <jmknoble@pobox.com>
101 fixes compatability with 4.x and 5.x
102 - Fixed default SSH_ASKPASS
103 - Fix PAM account and session being called multiple times. Problem
104 reported by Adrian Baugh <adrian@merlin.keble.ox.ac.uk>
105 - Merged more OpenBSD changes:
106 - [atomicio.c authfd.c scp.c serverloop.c ssh.h sshconnect.c sshd.c]
107 move atomicio into it's own file. wrap all socket write()s which
108 were doing write(sock, buf, len) != len, with atomicio() calls.
112 properly name fd variable
114 display great hatred towards strcpy
115 - [pty.c pty.h sshd.c]
116 use openpty() if it exists (it does on BSD4_4)
118 check for ~ expansion past MAXPATHLEN
119 - Modified helper.c to use new atomicio function.
120 - Reformat Makefile a little
121 - Moved RC4 routines from rc4.[ch] into helper.c
122 - Added autoconf code to detect /dev/ptmx (Solaris) and /dev/ptc (AIX)
123 - Updated SuSE spec from Chris Saia <csaia@wtower.com>
124 - Tweaked Redhat spec
125 - Clean up bad imports of a few files (forgot -kb)
129 - Small cleanup of PAM code in sshd.c
130 - Merged OpenBSD CVS changes:
131 - [auth-krb4.c auth-passwd.c auth-skey.c ssh.h]
132 move skey-auth from auth-passwd.c to auth-skey.c, same for krb4
134 warn only about mismatch if key is _used_
135 warn about keysize-mismatch with log() not error()
136 channels.c readconf.c readconf.h ssh.c ssh.h sshconnect.c
139 indent, shorter warning
141 use error() for internal errors
143 set loglevel for SSH_MSG_DISCONNECT to log(), not fatal()
146 - [ssh-add.1 ssh-add.c ssh.h]
147 document $SSH_ASKPASS, reasonable default
149 CheckHostIP is not available for connects via proxy command
152 easier to read client code for passwd and skey auth
153 turn of checkhostip for proxy connects, since we don't know the remote ip
156 - Add definition for __P()
157 - Added [v]snprintf() replacement for systems that lack it
160 - More reformatting merged from OpenBSD CVS
161 - Merged OpenBSD CVS changes:
163 fix packet_integrity_check() for !have_hostname_in_open.
164 report from mrwizard@psu.edu via djm@ibs.com.au
166 set SO_REUSEADDR and SO_LINGER for forwarded ports.
167 chip@valinux.com via damien@ibs.com.au
169 it's not an error() if shutdown_write failes in nchan.
171 remove dead #ifdef-0-code
172 - [readconf.c servconf.c]
173 strcasecmp instead of tolower
175 progress meter overflow fix from damien@ibs.com.au
176 - [ssh-add.1 ssh-add.c]
179 postpone fork_after_authentication until command execution,
180 request/patch from jahakala@cc.jyu.fi via damien@ibs.com.au
181 plus: use daemon() for backgrounding
182 - Added BSD compatible install program and autoconf test, thanks to
183 Niels Kristian Bech Jensen <nkbj@image.dk>
184 - Solaris fixing, thanks to Ben Taylor <bent@clark.net>
185 - Merged beginnings of AIX support from Tor-Ake Fransson <torake@hotmail.com>
189 - Merged very large OpenBSD source code reformat
190 - OpenBSD CVS updates
191 - [channels.c cipher.c compat.c log-client.c scp.c serverloop.c]
192 [ssh.h sshd.8 sshd.c]
194 * Unified Logmessage for all auth-types, for success and for failed
195 * Standard connections get only ONE line in the LOG when level==LOG:
196 Auth-attempts are logged only, if authentication is:
199 c) we had more than AUTH_FAIL_LOG failues
200 * many log() became verbose()
201 * old behaviour with level=VERBOSE
202 - [readconf.c readconf.h ssh.1 ssh.h sshconnect.c sshd.c]
203 tranfer s/key challenge/response data in SSH_SMSG_AUTH_TIS_CHALLENGE
204 messages. allows use of s/key in windows (ttssh, securecrt) and
205 ssh-1.2.27 clients without 'ssh -v', ok: niels@
207 -V, for fallback to openssh in SSH2 compatibility mode
209 fix sigchld race; cjc5@po.cwru.edu
212 - Added SuSE package files from Chris Saia <csaia@wtower.com>
213 - Restructured package-related files under packages/*
214 - Added generic PAM config
215 - Numerous little Solaris fixes
216 - Add recommendation to use GNU make to INSTALL document
219 - Make <enter> close gnome-ssh-askpass (Debian bug #50299)
220 - OpenBSD CVS Changes
222 don't create ~/.ssh only if the user wants to store the private
223 key there. show fingerprint instead of public-key after
224 keygeneration. ok niels@
225 - Added OpenBSD bsd-strlcat.c, created bsd-strlcat.h
226 - Added timersub() macro
227 - Tidy RCSIDs of bsd-*.c
228 - Added autoconf test and macro to deal with old PAM libraries
229 pam_strerror definition (one arg vs two).
230 - Fix EGD problems (Thanks to Ben Taylor <bent@clark.net>)
231 - Retry /dev/urandom reads interrupted by signal (report from
232 Robert Hardy <rhardy@webcon.net>)
233 - Added a setenv replacement for systems which lack it
234 - Only display public key comment when presenting ssh-askpass dialog
237 - Configure, Make and changelog corrections from Tudor Bosman
238 <tudorb@jm.nu> and Niels Kristian Bech Jensen <nkbj@image.dk>
241 - OpenBSD CVS Changes:
243 make this compile, bad markus
244 - [log.c readconf.c servconf.c ssh.h]
245 bugfix: loglevels are per host in clientconfig,
246 factor out common log-level parsing code.
248 remove unused index (-Wall)
250 only one 'extern char *__progname'
252 document SIGHUP, -Q to synopsis
253 - [sshconnect.c serverloop.c sshd.c packet.c packet.h]
254 [channels.c clientloop.c]
255 SSH_CMSG_MAX_PACKET_SIZE, some clients use this, some need this, niels@
256 [hope this time my ISP stays alive during commit]
257 - [OVERVIEW README] typos; green@freebsd
259 replace xstrdup+strcat with strlcat+fixed buffer, fixes OF (bad me)
260 exit if writing the key fails (no infinit loop)
261 print usage() everytime we get bad options
262 - [ssh-keygen.c] overflow, djm@mindrot.org
263 - [sshd.c] fix sigchld race; cjc5@po.cwru.edu
266 - Merged more Solaris support from Marc G. Fournier
267 <marc.fournier@acadiau.ca>
268 - Wrote autoconf tests for integer bit-types
269 - Fixed enabling kerberos support
270 - Fix segfault in ssh-keygen caused by buffer overrun in filename
274 - Merged PAM buffer overrun patch from Chip Salzenberg <chip@valinux.com>
275 - Merged OpenBSD CVS changes
276 - [auth-rhosts.c auth-rsa.c ssh-agent.c sshconnect.c sshd.c]
277 more %d vs. %s in fmt-strings
279 Integers should not be printed with %s
280 - EGD uses a socket, not a named pipe. Duh.
281 - Fix includes in fingerprint.c
282 - Fix scp progress bar bug again.
283 - Move ssh-askpass from ${libdir}/ssh to ${libexecdir}/ssh at request of
284 David Rankin <drankin@bohemians.lexington.ky.us>
285 - Added autoconf option to enable Kerberos 4 support (untested)
286 - Added autoconf option to enable AFS support (untested)
287 - Added autoconf option to enable S/Key support (untested)
288 - Added autoconf option to enable TCP wrappers support (compiles OK)
289 - Renamed BSD helper function files to bsd-*
290 - Added tests for login and daemon and enable OpenBSD replacements for
291 when they are absent.
292 - Added non-PAM MD5 password support patch from Tudor Bosman <tudorb@jm.nu>
295 - Merged OpenBSD CVS changes
296 - [scp.c] foregroundproc() in scp
297 - [sshconnect.h] include fingerprint.h
298 - [sshd.c] bugfix: the log() for passwd-auth escaped during logging
300 - [ssh.1] Spell my name right.
301 - Added openssh.com info to README
304 - Merged OpenBSD CVS changes
305 - [ChangeLog.Ylonen] noone needs this anymore
306 - [authfd.c] close-on-exec for auth-socket, ok deraadt
308 in known_hosts key lookup the entry for the bits does not need
309 to match, all the information is contained in n and e. This
310 solves the problem with buggy servers announcing the wrong
311 modulus length. markus and me.
313 bugfix: check for space if child has terminated, from:
315 - [ssh-add.1 ssh-add.c ssh-keygen.1 ssh-keygen.c sshconnect.c]
316 [fingerprint.c fingerprint.h]
317 rsa key fingerprints, idea from Bjoern Groenvall <bg@sics.se>
319 - [ssh.1] add OpenSSH information to AUTHOR section. okay markus@
321 force logging to stderr while loading private key file
322 (lost while converting to new log-levels)
325 - Fix some Linux libc5 problems reported by Miles Wilson <mw@mctitle.com>
326 - Merged OpenBSD CVS changes:
327 - [auth-rh-rsa.c auth-rsa.c authfd.c authfd.h hostfile.c mpaux.c]
328 [mpaux.h ssh-add.c ssh-agent.c ssh.h ssh.c sshd.c]
329 the keysize of rsa-parameter 'n' is passed implizit,
330 a few more checks and warnings about 'pretended' keysizes.
331 - [cipher.c cipher.h packet.c packet.h sshd.c]
332 remove support for cipher RC4
334 a note for legay systems about secuity issues with permanently_set_uid(),
335 the private hostkey and ptrace()
337 more detailed messages about adding and checking hostkeys
340 - Merged OpenBSD CVS changes:
341 - [ssh-add.c] change passphrase loop logic and remove ref to
343 - Changed to ssh-add.c broke askpass support. Revised it to be a little more
345 - Revised autoconf support for enabling/disabling askpass support.
346 - Merged more OpenBSD CVS changes:
348 - disconnect if getpeername() fails
349 - missing xfree(*client)
351 - disconnect if getpeername() fails
352 - fix comment: we _do_ disconnect if ip-options are set
354 - disconnect if getpeername() fails
355 - move checking of remote port to central place
356 [auth-rhosts.c] move checking of remote port to central place
357 [log-server.c] avoid extra fd per sshd, from millert@
358 [readconf.c] print _all_ bad config-options in ssh(1), too
359 [readconf.h] print _all_ bad config-options in ssh(1), too
360 [ssh.c] print _all_ bad config-options in ssh(1), too
361 [sshconnect.c] disconnect if getpeername() fails
362 - OpenBSD's changes to sshd.c broke the PAM stuff, re-merged it.
363 - Various small cleanups to bring diff (against OpenBSD) size down.
364 - Merged more Solaris compability from Marc G. Fournier
365 <marc.fournier@acadiau.ca>
366 - Wrote autoconf tests for __progname symbol
367 - RPM spec file fixes from Jim Knoble <jmknoble@pobox.com>
370 - Another OpenBSD CVS update:
371 - [ssh-keygen.1] fix .Xr
374 - Solaris compilation fixes (still imcomplete)
377 - Build patch from Niels Kristian Bech Jensen <nkbj@image.dk>
378 - Don't install config files if they already exist
379 - Fix inclusion of additional preprocessor directives from acconfig.h
380 - Removed redundant inclusions of config.h
381 - Added 'Obsoletes' lines to RPM spec file
382 - Merged OpenBSD CVS changes:
383 - [bufaux.c] save a view malloc/memcpy/memset/free's, ok niels
384 - [scp.c] fix overflow reported by damien@ibs.com.au: off_t
385 totalsize, ok niels,aaron
386 - Delay fork (-f option) in ssh until after port forwarded connections
387 have been initialised. Patch from Jani Hakala <jahakala@cc.jyu.fi>
388 - Added shadow password patch from Thomas Neumann <tom@smart.ruhr.de>
389 - Added ifdefs to auth-passwd.c to exclude it when PAM is enabled
390 - Tidied default config file some more
391 - Revised Redhat initscript to fix bug: sshd (re)start would fail
392 if executed from inside a ssh login.
395 - Merged changes from OpenBSD CVS
396 - [sshd.c] session_key_int may be zero
397 - [auth-rh-rsa.c servconf.c servconf.h ssh.h sshd.8 sshd.c sshd_config]
398 IgnoreUserKnownHosts(default=no), used for RhostRSAAuth, ok
400 - Brought default sshd_config more in line with OpenBSD's
401 - Grab server in gnome-ssh-askpass (Debian bug #49872)
404 - Added INSTALL documentation
405 - Merged yet more changes from OpenBSD CVS
406 - [auth-rh-rsa.c auth-rhosts.c auth-rsa.c channels.c clientloop.c]
407 [ssh.c ssh.h sshconnect.c sshd.c]
408 make all access to options via 'extern Options options'
409 and 'extern ServerOptions options' respectively;
410 options are no longer passed as arguments:
411 * make options handling more consistent
412 * remove #include "readconf.h" from ssh.h
413 * readconf.h is only included if necessary
414 - [mpaux.c] clear temp buffer
415 - [servconf.c] print _all_ bad options found in configfile
416 - Make ssh-askpass support optional through autoconf
417 - Fix nasty division-by-zero error in scp.c
421 - Added (untested) Entropy Gathering Daemon (EGD) support
422 - Fixed /dev/urandom fd leak (Debian bug #49722)
423 - Merged OpenBSD CVS changes:
424 - [auth-rh-rsa.c] user/958: check ~/.ssh/known_hosts for rhosts-rsa, too
425 - [ssh.1] user/958: check ~/.ssh/known_hosts for rhosts-rsa, too
426 - [sshd.8] user/958: check ~/.ssh/known_hosts for rhosts-rsa, too
427 - Fix integer overflow which was messing up scp's progress bar for large
428 file transfers. Fix submitted to OpenBSD developers. Report and fix
429 from Kees Cook <cook@cpoint.net>
430 - Merged more OpenBSD CVS changes:
431 - [auth-krb4.c auth-passwd.c] remove x11- and krb-cleanup from fatal()
432 + krb-cleanup cleanup
433 - [clientloop.c log-client.c log-server.c ]
434 [readconf.c readconf.h servconf.c servconf.h ]
435 [ssh.1 ssh.c ssh.h sshd.8]
436 add LogLevel {QUIET, FATAL, ERROR, INFO, CHAT, DEBUG} to ssh/sshd,
437 obsoletes QuietMode and FascistLogging in sshd.
438 - [sshd.c] fix fatal/assert() bug reported by damien@ibs.com.au:
439 allow session_key_int != sizeof(session_key)
440 [this should fix the pre-assert-removal-core-files]
441 - Updated default config file to use new LogLevel option and to improve
445 - Merged several minor fixes:
446 - ssh-agent commandline parsing
447 - RPM spec file now installs ssh setuid root
448 - Makefile creates libdir
449 - Merged beginnings of Solaris compability from Marc G. Fournier
450 <marc.fournier@acadiau.ca>
453 - Autodetection of SSL/Crypto library location via autoconf
454 - Fixed location of ssh-askpass to follow autoconf
455 - Integrated Makefile patch from Niels Kristian Bech Jensen <nkbj@image.dk>
456 - Autodetection of RSAref library for US users
458 - Merged OpenBSD CVS changes:
459 - [rsa.c] bugfix: use correct size for memset()
460 - [sshconnect.c] warn if announced size of modulus 'n' != real size
461 - Added GNOME passphrase requestor (use --with-gnome-askpass)
462 - RPM build now creates subpackages
466 - Removed debian/ directory. This is now being maintained separately.
467 - Added symlinks for slogin in RPM spec file
468 - Fixed permissions on manpages in RPM spec file
469 - Added references to required libraries in README file
470 - Removed config.h.in from CVS
471 - Removed pwdb support (better pluggable auth is provided by glibc)
472 - Made PAM and requisite libdl optional
473 - Removed lots of unnecessary checks from autoconf
474 - Added support and autoconf test for openpty() function (Unix98 pty support)
475 - Fix for scp not finding ssh if not installed as /usr/bin/ssh
477 - Merged parts of Debian patch From Phil Hands <phil@hands.com>:
478 - Added ssh-askpass program
479 - Added ssh-askpass support to ssh-add.c
480 - Create symlinks for slogin on install
481 - Fix "distclean" target in makefile
482 - Added example for ssh-agent to manpage
483 - Added support for PAM_TEXT_INFO messages
484 - Disable internal /etc/nologin support if PAM enabled
485 - Merged latest OpenBSD CVS changes:
486 - [all] replace assert() with error, fatal or packet_disconnect
487 - [sshd.c] don't send fail-msg but disconnect if too many authentication
489 - [sshd.c] remove unused argument. ok dugsong
491 - [rsa.c] clear buffers used for encryption. ok: niels
492 - [rsa.c] replace assert() with error, fatal or packet_disconnect
493 - [auth-krb4.c] remove unused argument. ok dugsong
494 - Fixed coredump after merge of OpenBSD rsa.c patch
498 - Merged change from OpenBSD CVS
499 - One-line cleanup in sshd.c
502 - Integrated debian package support from Dan Brosemer <odin@linuxfreak.com>
503 - Merged latest updates for OpenBSD CVS:
504 - channels.[ch] - remove broken x11 fix and document istate/ostate
505 - ssh-agent.c - call setsid() regardless of argv[]
506 - ssh.c - save a few lines when disabling rhosts-{rsa-}auth
507 - Documentation cleanups
508 - Renamed README -> README.Ylonen
509 - Renamed README.openssh ->README
512 - Renamed openssh* back to ssh* at request of Theo de Raadt
513 - Incorporated latest changes from OpenBSD's CVS
514 - Integrated Makefile patch from Niels Kristian Bech Jensen <nkbj@image.dk>
515 - Integrated PAM env patch from Nalin Dahyabhai <nalin.dahyabhai@pobox.com>
516 - Make distclean now removed configure script
517 - Improved PAM logging
518 - Added some debug() calls for PAM
519 - Removed redundant subdirectories
520 - Integrated part of a patch from Dan Brosemer <odin@linuxfreak.com> for
522 - Fixed off-by-one error in PAM env patch
526 - Further PAM enhancements.
528 - Now uses account and session modules for all logins.
529 - Integrated patch from Dan Brosemer <odin@linuxfreak.com>
532 - Change binary names to open*
533 - Fixed autoconf script to detect PAM on RH6.1
534 - Added tests for libpwdb, and OpenBSD functions to autoconf
537 - Imported latest OpenBSD CVS code
538 - Updated README.openssh
545 - Excised my buggy replacements for strlcpy and mkdtemp
546 - Imported correct OpenBSD strlcpy and mkdtemp routines.
547 - Reduced arc4random_stir entropy read to 32 bytes (256 bits)
548 - Picked up correct version number from OpenBSD
549 - Added sshd.pam PAM configuration file
550 - Added sshd.init Redhat init script
551 - Added openssh.spec RPM spec file
555 - Fixed include paths of OpenSSL functions
556 - Use OpenSSL MD5 routines
557 - Imported RC4 code from nanocrypt
558 - Wrote replacements for OpenBSD arc4random* functions
559 - Wrote replacements for strlcpy and mkdtemp