+20010215
+ - (djm) Move PAM session setup back to before setuid to user. Fixes
+ problems on Solaris-derived PAMs.
+ - (djm) Clean up PAM namespace. Suggested by Darren Moffat
+ <Darren.Moffat@eng.sun.com>
+ - (bal) Sync w/ OpenSSH for new release
+ - markus@cvs.openbsd.org 2001/02/12 12:45:06
+ [sshconnect1.c]
+ fix xmalloc(0), ok dugsong@
+ - markus@cvs.openbsd.org 2001/02/11 12:59:25
+ [Makefile.in sshd.8 sshconnect2.c readconf.h readconf.c packet.c
+ sshd.c ssh.c ssh.1 servconf.h servconf.c myproposal.h kex.h kex.c]
+ 1) clean up the MAC support for SSH-2
+ 2) allow you to specify the MAC with 'ssh -m'
+ 3) or the 'MACs' keyword in ssh(d)_config
+ 4) add hmac-{md5,sha1}-96
+ ok stevesk@, provos@
+ - markus@cvs.openbsd.org 2001/02/12 16:16:23
+ [auth-passwd.c auth.c auth.h auth1.c auth2.c servconf.c servconf.h
+ ssh-keygen.c sshd.8]
+ PermitRootLogin={yes,without-password,forced-commands-only,no}
+ (before this change, root could login even if PermitRootLogin==no)
+ - deraadt@cvs.openbsd.org 2001/02/12 22:56:09
+ [clientloop.c packet.c ssh-keyscan.c]
+ deal with EAGAIN/EINTR selects which were skipped
+ - markus@cvs.openssh.org 2001/02/13 22:49:40
+ [auth1.c auth2.c]
+ setproctitle(user) only if getpwnam succeeds
+ - markus@cvs.openbsd.org 2001/02/12 23:26:20
+ [sshd.c]
+ missing memset; from solar@openwall.com
+ - stevesk@cvs.openbsd.org 2001/02/12 20:53:33
+ [sftp-int.c]
+ lumask now works with 1 numeric arg; ok markus@, djm@
+ - djm@cvs.openbsd.org 2001/02/14 9:46:03
+ [sftp-client.c sftp-int.c sftp.1]
+ Fix and document 'preserve modes & times' option ('-p' flag in sftp);
+ ok markus@
+
+20010214
+ - (djm) Don't try to close PAM session or delete credentials if the
+ session has not been open or credentials not set. Based on patch from
+ Andrew Bartlett <abartlet@pcug.org.au>
+ - (djm) Move PAM session initialisation until after fork in sshd. Patch
+ from Nalin Dahyabhai <nalin@redhat.com>
+ - (bal) Missing function prototype in bsd-snprintf.c patch by
+ Mark Miller <markm@swoon.net>
+ - (djm) Split out and improve OSF SIA auth code. Patch from Chris Adams
+ <cmadams@hiwaay.net> with a little modification and KNF.
+ - (stevesk) fix for SIA patch, misplaced session_setup_sia()
+
+20010213
+ - (djm) Only test -S potential EGD sockets if they exist and are readable.
+ - (bal) Cleaned out bsd-snprintf.c. VARARGS have been banished and
+ I did a base KNF over the whe whole file to make it more acceptable.
+ (backed out of original patch and removed it from ChangeLog)
+ - (bal) Use chown() if fchown() does not exist in ftp-server.c patch by
+ Tim Rice <tim@multitalents.net>
+ - (stevesk) auth1.c: fix PAM passwordless check.
+
+20010212
+ - (djm) Update Redhat specfile to allow --define "skip_x11_askpass 1",
+ --define "skip_gnome_askpass 1", --define "rh7 1" and make the
+ implicit rpm-3.0.5 dependancy explicit. Patch and suggestions from
+ Pekka Savola <pekkas@netcore.fi>
+ - (djm) Clean up PCRE text in INSTALL
+ - (djm) Fix OSF SIA auth NULL pointer deref. Report from Mike Battersby
+ <mib@unimelb.edu.au>
+ - (bal) NCR SVR4 compatiblity provide by Don Bragg <thewizarddon@yahoo.com>
+ - (stevesk) session.c: remove debugging code.
+
+20010211
+ - (bal) OpenBSD Sync
+ - markus@cvs.openbsd.org 2001/02/07 22:35:46
+ [auth1.c auth2.c sshd.c]
+ move k_setpag() to a central place; ok dugsong@
+ - markus@cvs.openbsd.org 2001/02/10 12:52:02
+ [auth2.c]
+ offer passwd before s/key
+ - markus@cvs.openbsd.org 2001/02/8 22:37:10
+ [canohost.c]
+ remove last call to sprintf; ok deraadt@
+ - markus@cvs.openbsd.org 2001/02/10 1:33:32
+ [canohost.c]
+ add debug message, since sshd blocks here if DNS is not available
+ - markus@cvs.openbsd.org 2001/02/10 12:44:02
+ [cli.c]
+ don't call vis() for \r
+ - danh@cvs.openbsd.org 2001/02/10 0:12:43
+ [scp.c]
+ revert a small change to allow -r option to work again; ok deraadt@
+ - danh@cvs.openbsd.org 2001/02/10 15:14:11
+ [scp.c]
+ fix memory leak; ok markus@
+ - djm@cvs.openbsd.org 2001/02/10 0:45:52
+ [scp.1]
+ Mention that you can quote pathnames with spaces in them
+ - markus@cvs.openbsd.org 2001/02/10 1:46:28
+ [ssh.c]
+ remove mapping of argv[0] -> hostname
+ - markus@cvs.openbsd.org 2001/02/06 22:26:17
+ [sshconnect2.c]
+ do not ask for passphrase in batch mode; report from ejb@ql.org
+ - itojun@cvs.opebsd.org 2001/02/08 10:47:05
+ [sshconnect.c sshconnect1.c sshconnect2.c]
+ %.30s is too short for IPv6 numeric address. use %.128s for now.
+ markus ok
+ - markus@cvs.openbsd.org 2001/02/09 12:28:35
+ [sshconnect2.c]
+ do not free twice, thanks to /etc/malloc.conf
+ - markus@cvs.openbsd.org 2001/02/09 17:10:53
+ [sshconnect2.c]
+ partial success: debug->log; "Permission denied" if no more auth methods
+ - markus@cvs.openbsd.org 2001/02/10 12:09:21
+ [sshconnect2.c]
+ remove some lines
+ - markus@cvs.openbsd.org 2001/02/09 13:38:07
+ [auth-options.c]
+ reset options if no option is given; from han.holl@prismant.nl
+ - markus@cvs.openbsd.org 2001/02/08 21:58:28
+ [channels.c]
+ nuke sprintf, ok deraadt@
+ - markus@cvs.openbsd.org 2001/02/08 21:58:28
+ [channels.c]
+ nuke sprintf, ok deraadt@
+ - markus@cvs.openbsd.org 2001/02/06 22:43:02
+ [clientloop.h]
+ remove confusing callback code
+ - deraadt@cvs.openbsd.org 2001/02/08 14:39:36
+ [readconf.c]
+ snprintf
+ - itojun@cvs.openbsd.org 2001/02/08 19:30:52
+ sync with netbsd tree changes.
+ - more strict prototypes, include necessary headers
+ - use paths.h/pathnames.h decls
+ - size_t typecase to int -> u_long
+ - itojun@cvs.openbsd.org 2001/02/07 18:04:50
+ [ssh-keyscan.c]
+ fix size_t -> int cast (use u_long). markus ok
+ - markus@cvs.openbsd.org 2001/02/07 22:43:16
+ [ssh-keyscan.c]
+ s/getline/Linebuf_getline/; from roumen.petrov@skalasoft.com
+ - itojun@cvs.openbsd.org 2001/02/09 9:04:59
+ [ssh-keyscan.c]
+ do not assume malloc() returns zero-filled region. found by
+ malloc.conf=AJ.
+ - markus@cvs.openbsd.org 2001/02/08 22:35:30
+ [sshconnect.c]
+ don't connect if batch_mode is true and stricthostkeychecking set to
+ 'ask'
+ - djm@cvs.openbsd.org 2001/02/04 21:26:07
+ [sshd_config]
+ type: ok markus@
+ - deraadt@cvs.openbsd.org 2001/02/06 22:07:50
+ [sshd_config]
+ enable sftp-server by default
+ - deraadt 2001/02/07 8:57:26
+ [xmalloc.c]
+ deal with new ANSI malloc stuff
+ - markus@cvs.openbsd.org 2001/02/07 16:46:08
+ [xmalloc.c]
+ typo in fatal()
+ - itojun@cvs.openbsd.org 2001/02/07 18:04:50
+ [xmalloc.c]
+ fix size_t -> int cast (use u_long). markus ok
+ - 1.47 Thu Feb 8 23:11:42 GMT 2001 by dugsong
+ [serverloop.c sshconnect1.c]
+ mitigate SSH1 traffic analysis - from Solar Designer
+ <solar@openwall.com>, ok provos@
+ - (bal) fixed sftp-client.c. Return 'status' instead of '0'
+ (from the OpenBSD tree)
+ - (bal) Synced ssh.1, ssh-add.1 and sshd.8 w/ OpenBSD
+ - (bal) sftp-sever.c '%8lld' to '%8llu' (OpenBSD Sync)
+ - (bal) uuencode.c resync w/ OpenBSD tree, plus whitespace.
+ - (bal) A bit more whitespace cleanup
+ - (djm) Set PAM_RHOST earlier, patch from Andrew Bartlett
+ <abartlet@pcug.org.au>
+ - (stevesk) misc.c: ssh.h not needed.
+ - (stevesk) compat.c: more friendly cpp error
+ - (stevesk) OpenBSD sync:
+ - stevesk@cvs.openbsd.org 2001/02/11 06:15:57
+ [LICENSE]
+ typos and small cleanup; ok deraadt@
+
+20010210
+ - (djm) Sync sftp and scp stuff from OpenBSD:
+ - djm@cvs.openbsd.org 2001/02/07 03:55:13
+ [sftp-client.c]
+ Don't free handles before we are done with them. Based on work from
+ Corinna Vinschen <vinschen@redhat.com>. ok markus@
+ - djm@cvs.openbsd.org 2001/02/06 22:32:53
+ [sftp.1]
+ Punctuation fix from Pekka Savola <pekkas@netcore.fi>
+ - deraadt@cvs.openbsd.org 2001/02/07 04:07:29
+ [sftp.1]
+ pretty up significantly
+ - itojun@cvs.openbsd.org 2001/02/07 06:49:42
+ [sftp.1]
+ .Bl-.El mismatch. markus ok
+ - djm@cvs.openbsd.org 2001/02/07 06:12:30
+ [sftp-int.c]
+ Check that target is a directory before doing ls; ok markus@
+ - itojun@cvs.openbsd.org 2001/02/07 11:01:18
+ [scp.c sftp-client.c sftp-server.c]
+ unsigned long long -> %llu, not %qu. markus ok
+ - stevesk@cvs.openbsd.org 2001/02/07 11:10:39
+ [sftp.1 sftp-int.c]
+ more man page cleanup and sync of help text with man page; ok markus@
+ - markus@cvs.openbsd.org 2001/02/07 14:58:34
+ [sftp-client.c]
+ older servers reply with SSH2_FXP_NAME + count==0 instead of EOF
+ - djm@cvs.openbsd.org 2001/02/07 15:27:19
+ [sftp.c]
+ Don't forward agent and X11 in sftp. Suggestion from Roumen Petrov
+ <roumen.petrov@skalasoft.com>
+ - stevesk@cvs.openbsd.org 2001/02/07 15:36:04
+ [sftp-int.c]
+ portable; ok markus@
+ - stevesk@cvs.openbsd.org 2001/02/07 15:55:47
+ [sftp-int.c]
+ lowercase cmds[].c also; ok markus@
+ - markus@cvs.openbsd.org 2001/02/07 17:04:52
+ [pathnames.h sftp.c]
+ allow sftp over ssh protocol 1; ok djm@
+ - deraadt@cvs.openbsd.org 2001/02/08 07:38:55
+ [scp.c]
+ memory leak fix, and snprintf throughout
+ - deraadt@cvs.openbsd.org 2001/02/08 08:02:02
+ [sftp-int.c]
+ plug a memory leak
+ - stevesk@cvs.openbsd.org 2001/02/08 10:11:23
+ [session.c sftp-client.c]
+ %i -> %d
+ - stevesk@cvs.openbsd.org 2001/02/08 10:57:59
+ [sftp-int.c]
+ typo
+ - stevesk@cvs.openbsd.org 2001/02/08 15:28:07
+ [sftp-int.c pathnames.h]
+ _PATH_LS; ok markus@
+ - djm@cvs.openbsd.org 2001/02/09 04:46:25
+ [sftp-int.c]
+ Check for NULL attribs for chown, chmod & chgrp operations, only send
+ relevant attribs back to server; ok markus@
+ - djm@cvs.openbsd.org 2001/02/06 15:05:25
+ [sftp.c]
+ Use getopt to process commandline arguments
+ - djm@cvs.openbsd.org 2001/02/06 15:06:21
+ [sftp.c ]
+ Wait for ssh subprocess at exit
+ - djm@cvs.openbsd.org 2001/02/06 15:18:16
+ [sftp-int.c]
+ stat target for remote chdir before doing chdir
+ - djm@cvs.openbsd.org 2001/02/06 15:32:54
+ [sftp.1]
+ Punctuation fix from Pekka Savola <pekkas@netcore.fi>
+ - provos@cvs.openbsd.org 2001/02/05 22:22:02
+ [sftp-int.c]
+ cleanup get_pathname, fix pwd after failed cd. okay djm@
+ - (djm) Update makefile.in for _PATH_SFTP_SERVER
+ - (bal) sftp-client.c replace NULL w/ 0 in do_ls() (pending in OpenBSD tree)
+
20010209
- (bal) patch to vis.c to deal with HAVE_VIS right by Robert Mooney
<rjmooney@mediaone.net>
+ - (bal) .c.o rule in openbsd-compat/Makefile.in did not make it to the
+ main tree while porting forward. Pointed out by Lutz Jaenicke
+ <Lutz.Jaenicke@aet.TU-Cottbus.DE>
+ - (bal) double entry in configure.in. Pointed out by Lutz Jaenicke
+ <Lutz.Jaenicke@aet.TU-Cottbus.DE>
+ - (stevesk) OpenBSD sync:
+ - markus@cvs.openbsd.org 2001/02/08 11:20:01
+ [auth2.c]
+ strict checking
+ - markus@cvs.openbsd.org 2001/02/08 11:15:22
+ [version.h]
+ update to 2.3.2
+ - markus@cvs.openbsd.org 2001/02/08 11:12:30
+ [auth2.c]
+ fix typo
+ - (djm) Update spec files
+ - (bal) OpenBSD sync:
+ - deraadt@cvs.openbsd.org 2001/02/08 14:38:54
+ [scp.c]
+ memory leak fix, and snprintf throughout
+ - markus@cvs.openbsd.org 2001/02/06 22:43:02
+ [clientloop.c]
+ remove confusing callback code
+ - (djm) Add CVS Id's to files that we have missed
+ - (bal) OpenBSD Sync (more):
+ - itojun@cvs.openbsd.org 2001/02/08 19:30:52
+ sync with netbsd tree changes.
+ - more strict prototypes, include necessary headers
+ - use paths.h/pathnames.h decls
+ - size_t typecase to int -> u_long
+ - markus@cvs.openbsd.org 2001/02/06 22:07:42
+ [ssh.c]
+ fatal() if subsystem fails
+ - markus@cvs.openbsd.org 2001/02/06 22:43:02
+ [ssh.c]
+ remove confusing callback code
+ - jakob@cvs.openbsd.org 2001/02/06 23:03:24
+ [ssh.c]
+ add -1 option (force protocol version 1). ok markus@
+ - jakob@cvs.openbsd.org 2001/02/06 23:06:21
+ [ssh.c]
+ reorder -{1,2,4,6} options. ok markus@
+ - (bal) Missing 'const' in readpass.h
+ - (bal) OpenBSD Sync (so at least the thing compiles for 2.3.2 =)
+ - djm@cvs.openbsd.org 2001/02/06 23:30:28
+ [sftp-client.c]
+ replace arc4random with counter for request ids; ok markus@
+ - (djm) Define _PATH_TTY for systems that don't. Report from Lutz
+ Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
20010208
- (djm) Don't delete external askpass program in make uninstall target.
- Wrote replacements for OpenBSD arc4random* functions
- Wrote replacements for strlcpy and mkdtemp
- Released 1.0pre1
+
+$Id$
andersk / openssh.git / blobdiff