+20040524
+ - (dtucker) OpenBSD CVS Sync
+ - djm@cvs.openbsd.org 2004/05/19 12:17:33
+ [sftp-client.c sftp.c]
+ gracefully abort transfers on receipt of SIGINT, also ignore SIGINT while
+ waiting for a command; ok markus@
+ - dtucker@cvs.openbsd.org 2004/05/20 10:58:05
+ [clientloop.c]
+ Trivial type fix 0 -> '\0'; ok markus@
+ - markus@cvs.openbsd.org 2004/05/21 08:43:03
+ [kex.h moduli.c tildexpand.c]
+ add prototypes for -Wall; ok djm
+ - djm@cvs.openbsd.org 2004/05/21 11:33:11
+ [channels.c channels.h clientloop.c serverloop.c ssh.1]
+ bz #756: add support for the cancel-tcpip-forward request for the server
+ and the client (through the ~C commandline). reported by z3p AT
+ twistedmatrix.com; ok markus@
+ - djm@cvs.openbsd.org 2004/05/22 06:32:12
+ [clientloop.c ssh.1]
+ use '-h' for help in ~C commandline instead of '-?'; inspired by jmc@
+ - jmc@cvs.openbsd.org 2004/05/22 16:01:05
+ [ssh.1]
+ kill whitespace at eol;
+ - dtucker@cvs.openbsd.org 2004/05/23 23:59:53
+ [auth.c auth.h auth1.c auth2.c servconf.c servconf.h sshd_config
+ sshd_config.5]
+ Add MaxAuthTries sshd config option; ok markus@
+ - (dtucker) [auth-pam.c] Bug #839: Ensure that pam authentication "thread"
+ is terminated if the privsep slave exits during keyboard-interactive
+ authentication. ok djm@
+ - (dtucker) [sshd.c] Fix typo in comment.
+
+20040523
+ - (djm) [sshd_config] Explain consequences of UsePAM=yes a little better in
+ sshd_config; ok dtucker@
+ - (djm) [configure.ac] Warn if the system has no known way of figuring out
+ which user is on the other end of a Unix domain socket; ok dtucker@
+ - (bal) [openbsd-compat/sys-queue.h] Reintroduce machinary to handle
+ old/broken/incomplete <sys/queue.h>.
+
+20040513
+ - (dtucker) [configure.ac] Bug #867: Additional tests for res_query in
+ libresolv, fixes problems detecting it on some platforms
+ (eg Linux/x86-64). From Kurt Roeckx via Debian, ok mouring@
+ - (dtucker) OpenBSD CVS Sync
+ - jmc@cvs.openbsd.org 2004/05/04 18:36:07
+ [scp.1]
+ SendEnv here too;
+ - jmc@cvs.openbsd.org 2004/05/06 11:24:23
+ [ssh_config.5]
+ typo from John Cosimano (PR 3770);
+ - deraadt@cvs.openbsd.org 2004/05/08 00:01:37
+ [auth.c clientloop.c misc.h servconf.c ssh.c sshpty.h sshtty.c
+ tildexpand.c], removed: sshtty.h tildexpand.h
+ make two tiny header files go away; djm ok
+ - djm@cvs.openbsd.org 2004/05/08 00:21:31
+ [clientloop.c misc.h readpass.c scard.c ssh-add.c ssh-agent.c ssh-keygen.c
+ sshconnect.c sshconnect1.c sshconnect2.c] removed: readpass.h
+ kill a tiny header; ok deraadt@
+ - djm@cvs.openbsd.org 2004/05/09 00:06:47
+ [moduli.c ssh-keygen.c] removed: moduli.h
+ zap another tiny header; ok deraadt@
+ - djm@cvs.openbsd.org 2004/05/09 01:19:28
+ [OVERVIEW auth-rsa.c auth1.c kex.c monitor.c session.c sshconnect1.c
+ sshd.c] removed: mpaux.c mpaux.h
+ kill some more tiny files; ok deraadt@
+ - djm@cvs.openbsd.org 2004/05/09 01:26:48
+ [kex.c]
+ don't overwrite what we are trying to compute
+ - deraadt@cvs.openbsd.org 2004/05/11 19:01:43
+ [auth.c auth2-none.c authfile.c channels.c monitor.c monitor_mm.c
+ packet.c packet.h progressmeter.c session.c openbsd-compat/xmmap.c]
+ improve some code lint did not like; djm millert ok
+ - dtucker@cvs.openbsd.org 2004/05/13 02:47:50
+ [ssh-agent.1]
+ Add examples to ssh-agent.1, bz#481 from Ralf Hauser; ok deraadt@
+ - (dtucker) [sshd.8] Bug #843: Add warning about PasswordAuthentication to
+ UsePAM section. Parts from djm@ and jmc@.
+ - (dtucker) [auth-pam.c scard-opensc.c] Tinderbox says auth-pam.c uses
+ readpass.h, grep says scard-opensc.c does too. Replace with misc.h.
+ - (dtucker) [openbsd-compat/getrrsetbyname.c] Check that HAVE_DECL_H_ERROR
+ is defined before using.
+ - (dtucker) [openbsd-compat/getrrsetbyname.c] Fix typo too: HAVE_DECL_H_ERROR
+ -> HAVE_DECL_H_ERRNO.
+
+20040502
+ - (dtucker) OpenBSD CVS Sync
+ - djm@cvs.openbsd.org 2004/04/22 11:56:57
+ [moduli.c]
+ Bugzilla #850: Sophie Germain is the correct name of the French
+ mathematician, "Sophie Germaine" isn't; from Luc.Maisonobe@c-s.fr
+ - djm@cvs.openbsd.org 2004/04/27 09:46:37
+ [readconf.c readconf.h servconf.c servconf.h session.c session.h ssh.c
+ ssh_config.5 sshd_config.5]
+ bz #815: implement ability to pass specified environment variables from
+ the client to the server; ok markus@
+ - djm@cvs.openbsd.org 2004/04/28 05:17:10
+ [ssh_config.5 sshd_config.5]
+ manpage fixes in envpass stuff from Brian Poole (raj AT cerias.purdue.edu)
+ - jmc@cvs.openbsd.org 2004/04/28 07:02:56
+ [sshd_config.5]
+ remove unnecessary .Pp;
+ - jmc@cvs.openbsd.org 2004/04/28 07:13:42
+ [sftp.1 ssh.1]
+ add SendEnv to -o list;
+ - dtucker@cvs.openbsd.org 2004/05/02 11:54:31
+ [sshd.8]
+ Man page grammar fix (bz #858), from damerell at chiark.greenend.org.uk
+ via Debian; ok djm@
+ - dtucker@cvs.openbsd.org 2004/05/02 11:57:52
+ [ssh.1]
+ ConnectionTimeout -> ConnectTimeout, from m.a.ellis at ncl.ac.uk via
+ Debian. ok djm@
+ - dtucker@cvs.openbsd.org 2004/05/02 23:02:17
+ [sftp.1]
+ ConnectionTimeout -> ConnectTimeout here too, pointed out by jmc@
+ - dtucker@cvs.openbsd.org 2004/05/02 23:17:51
+ [scp.1]
+ ConnectionTimeout -> ConnectTimeout for scp.1 too.
+
+20040423
+ - (dtucker) [configure.ac openbsd-compat/getrrsetbyname.c] Declare h_errno
+ as extern int if not already declared. Fixes compile errors on old SCO
+ platforms. ok tim@
+ - (dtucker) [README.platform] List prereqs for building on Cygwin.
+
+20040421
+ - (djm) Update config.guess and config.sub to autoconf-2.59 versions; ok tim@
+
+20040420
+ - (djm) OpenBSD CVS Sync
+ - henning@cvs.openbsd.org 2004/04/08 16:08:21
+ [sshconnect2.c]
+ swap the last two parameters to TAILQ_FOREACH_REVERSE. matches what
+ FreeBSD and NetBSD do.
+ ok millert@ mcbride@ markus@ ho@, checked to not affect ports by naddy@
+ - djm@cvs.openbsd.org 2004/04/18 23:10:26
+ [readconf.c readconf.h ssh-keysign.c ssh.c]
+ perform strict ownership and modes checks for ~/.ssh/config files,
+ as these can be used to execute arbitrary programs; ok markus@
+ NB. ssh will now exit when it detects a config with poor permissions
+ - djm@cvs.openbsd.org 2004/04/19 13:02:40
+ [ssh.1 ssh_config.5]
+ document strict permission checks on ~/.ssh/config; prompted by,
+ with & ok jmc@
+ - jmc@cvs.openbsd.org 2004/04/19 16:12:14
+ [ssh_config.5]
+ kill whitespace at eol;
+ - djm@cvs.openbsd.org 2004/04/19 21:51:49
+ [ssh.c]
+ fix idiot typo that i introduced in my last commit;
+ spotted by cschneid AT cschneid.com
+ - (djm) [openbsd-compat/sys-queue.h] Sync with OpenBSD, needed for
+ above change
+ - (djm) [configure.ac] Check whether libroken is required when building
+ with Heimdal
+
+20040419
+ - (dtucker) OpenBSD CVS Sync
+ - dtucker@cvs.openbsd.org 2004/02/29 22:04:45
+ [regress/login-timeout.sh]
+ Use sudo when restarting daemon during test. ok markus@
+ - dtucker@cvs.openbsd.org 2004/03/08 10:17:12
+ [regress/login-timeout.sh]
+ Missing OBJ, from tim@. ok markus@ (Already fixed, ID sync only)
+ - djm@cvs.openbsd.org 2004/03/30 12:41:56
+ [sftp-client.c]
+ sync comment with reality
+ - djm@cvs.openbsd.org 2004/03/31 21:58:47
+ [canohost.c]
+ don't skip ip options check when UseDNS=no; ok markus@ (ID sync only)
+ - markus@cvs.openbsd.org 2004/04/01 12:19:57
+ [scp.c]
+ limit trust between local and remote rcp/scp process,
+ noticed by lcamtuf; ok deraadt@, djm@
+
+20040418
+ - (dtucker) [auth-pam.c] Log username and source host for failed PAM
+ authentication attempts. With & ok djm@
+ - (djm) [openbsd-compat/bsd-cygwin_util.c] Recent versions of Cygwin allow
+ change of user context without a password, so relax auth method
+ restrictions; from vinschen AT redhat.com; ok dtucker@
+
20040416
- (dtucker) [regress/sftp-cmds.sh] Skip quoting test on Cygwin, since
FAT/NTFS does not permit quotes in filenames. From vinschen at redhat.com