![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.107 / (download) - annotate - [select for diffs], Fri May 17 00:30:23 2024 UTC (4 hours, 56 minutes ago) by djm
Branch: MAIN
CVS Tags: HEAD
Changes since 1.106: +8 -4 lines
Diff to previous 1.106 (colored)
Start the process of splitting sshd into separate binaries. This step splits sshd into a listener and a session binary. More splits are planned. After this changes, the listener binary will validate the configuration, load the hostkeys, listen on port 22 and manage MaxStartups only. All session handling will be performed by a new sshd-session binary that the listener fork+execs. This reduces the listener process to the minimum necessary and sets us up for future work on the sshd-session binary. feedback/ok markus@ deraadt@ NB. if you're updating via source, please restart sshd after installing, otherwise you run the risk of locking yourself out.
Revision 1.106 / (download) - annotate - [select for diffs], Wed Jun 15 16:08:25 2022 UTC (23 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5,
OPENBSD_7_4_BASE,
OPENBSD_7_4,
OPENBSD_7_3_BASE,
OPENBSD_7_3,
OPENBSD_7_2_BASE,
OPENBSD_7_2
Changes since 1.105: +3 -3 lines
Diff to previous 1.105 (colored)
make sure that UseDNS hostname lookup happens in the monitor and not in the pledge(2)'d unprivileged process; fixes regression caused by recent refactoring spotted by henning@
Revision 1.105 / (download) - annotate - [select for diffs], Fri Jun 3 04:47:21 2022 UTC (23 months, 2 weeks ago) by djm
Branch: MAIN
Changes since 1.104: +3 -3 lines
Diff to previous 1.104 (colored)
move auth_openprincipals() and auth_openkeyfile() over to auth2-pubkeyfile.c too; they make more sense there.
Revision 1.104 / (download) - annotate - [select for diffs], Fri May 27 05:02:46 2022 UTC (23 months, 3 weeks ago) by djm
Branch: MAIN
Changes since 1.103: +15 -3 lines
Diff to previous 1.103 (colored)
split the low-level file handling functions out from auth2-pubkey.c Put them in a new auth2-pubkeyfile.c to make it easier to refer to them (e.g. in unit/fuzz tests) without having to refer to everything else pubkey auth brings in. ok dtucker@
Revision 1.103 / (download) - annotate - [select for diffs], Fri May 27 05:01:25 2022 UTC (23 months, 3 weeks ago) by djm
Branch: MAIN
Changes since 1.102: +5 -5 lines
Diff to previous 1.102 (colored)
refactor authorized_keys/principals handling remove "struct ssh *" from arguments - this was only used to pass the remote host/address. These can be passed in instead and the resulting code is less tightly coupled to ssh_api.[ch] ok dtucker@
Revision 1.102 / (download) - annotate - [select for diffs], Sun Dec 19 22:12:07 2021 UTC (2 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_1_BASE,
OPENBSD_7_1
Changes since 1.101: +3 -2 lines
Diff to previous 1.101 (colored)
prepare for multiple names for authmethods allow authentication methods to have one additional name beyond their primary name. allow lookup by this synonym Use primary name for authentication decisions, e.g. for PermitRootLogin=publickey Pass actual invoked name to the authmethods, so they can tell whether they were requested via the their primary name or synonym. ok markus@
Revision 1.101 / (download) - annotate - [select for diffs], Tue Dec 22 00:12:22 2020 UTC (3 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_0_BASE,
OPENBSD_7_0,
OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.100: +1 -7 lines
Diff to previous 1.100 (colored)
move subprocess() from auth.c to misc.c make privilege dropping optional but allow it via callbacks (to avoid need to link uidswap.c everywhere) add some other flags (keep environment, disable strict path safety check) that make this more useful for client-side use. feedback & ok markus@
Revision 1.100 / (download) - annotate - [select for diffs], Fri Sep 6 05:23:55 2019 UTC (4 years, 8 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8,
OPENBSD_6_7_BASE,
OPENBSD_6_7,
OPENBSD_6_6_BASE,
OPENBSD_6_6
Changes since 1.99: +1 -3 lines
Diff to previous 1.99 (colored)
fixes for !WITH_OPENSSL compilation; ok dtucker@
Revision 1.99 / (download) - annotate - [select for diffs], Sat Jan 19 21:43:56 2019 UTC (5 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_5_BASE,
OPENBSD_6_5
Changes since 1.98: +5 -5 lines
Diff to previous 1.98 (colored)
remove last references to active_state with & ok markus@
Revision 1.98 / (download) - annotate - [select for diffs], Sat Jan 19 21:41:18 2019 UTC (5 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.97: +6 -6 lines
Diff to previous 1.97 (colored)
convert auth.c to new packet API with & ok markus@
Revision 1.97 / (download) - annotate - [select for diffs], Sat Jan 19 21:38:24 2019 UTC (5 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.96: +2 -2 lines
Diff to previous 1.96 (colored)
convert auth2.c to new packet API
Revision 1.96 / (download) - annotate - [select for diffs], Tue Apr 10 00:10:49 2018 UTC (6 years, 1 month ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.95: +2 -2 lines
Diff to previous 1.95 (colored)
lots of typos in comments/docs. Patch from Karsten Weiss after checking with codespell tool (https://github.com/lucasdemarchi/codespell)
Revision 1.95 / (download) - annotate - [select for diffs], Sat Mar 3 03:15:51 2018 UTC (6 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3
Changes since 1.94: +18 -5 lines
Diff to previous 1.94 (colored)
switch over to the new authorized_keys options API and remove the legacy one. Includes a fairly big refactor of auth2-pubkey.c to retain less state between key file lines. feedback and ok markus@
Revision 1.94 / (download) - annotate - [select for diffs], Mon Jan 8 15:21:49 2018 UTC (6 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.93: +7 -1 lines
Diff to previous 1.93 (colored)
move subprocess() so scp/sftp do not need uidswap.o; ok djm@
Revision 1.93 / (download) - annotate - [select for diffs], Fri Aug 18 05:36:45 2017 UTC (6 years, 9 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.92: +1 -5 lines
Diff to previous 1.92 (colored)
Move several subprocess-related functions from various locations to misc.c. Extend subprocess() to offer a little more control over stdio disposition. feedback & ok dtucker@
Revision 1.92 / (download) - annotate - [select for diffs], Sat Jun 24 06:34:38 2017 UTC (6 years, 10 months ago) by djm
Branch: MAIN
Changes since 1.91: +31 -14 lines
Diff to previous 1.91 (colored)
refactor authentication logging optionally record successful auth methods and public credentials used in a file accessible to user sessions feedback and ok markus@
Revision 1.91 / (download) - annotate - [select for diffs], Tue May 30 14:29:59 2017 UTC (6 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.90: +5 -5 lines
Diff to previous 1.90 (colored)
switch auth2 to ssh_dispatch API; ok djm@
Revision 1.90 / (download) - annotate - [select for diffs], Tue May 30 08:52:19 2017 UTC (6 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.89: +14 -13 lines
Diff to previous 1.89 (colored)
switch from Key typedef with struct sshkey; ok djm@
Revision 1.89 / (download) - annotate - [select for diffs], Sat Aug 13 17:47:41 2016 UTC (7 years, 9 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1
Changes since 1.88: +1 -15 lines
Diff to previous 1.88 (colored)
remove ssh1 server code; ok djm@
Revision 1.88 / (download) - annotate - [select for diffs], Wed May 4 14:04:40 2016 UTC (8 years ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_0_BASE,
OPENBSD_6_0
Changes since 1.87: +3 -2 lines
Diff to previous 1.87 (colored)
missing const in prototypes (ssh1)
Revision 1.87 / (download) - annotate - [select for diffs], Mon Mar 7 19:02:43 2016 UTC (8 years, 2 months ago) by djm
Branch: MAIN
Changes since 1.86: +3 -1 lines
Diff to previous 1.86 (colored)
refactor canohost.c: move functions that cache results closer to the places that use them (authn and session code). After this, no state is cached in canohost.c feedback and ok markus@
Revision 1.86 / (download) - annotate - [select for diffs], Fri Dec 4 16:41:28 2015 UTC (8 years, 5 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.85: +2 -2 lines
Diff to previous 1.85 (colored)
implement SHA2-{256,512} for RSASSA-PKCS1-v1_5 signatures (user and host auth)
based on draft-rsa-dsa-sha2-256-03.txt and draft-ssh-ext-info-04.txt;
with & ok djm@
Revision 1.85 / (download) - annotate - [select for diffs], Wed Nov 11 01:48:01 2015 UTC (8 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.84: +1 -3 lines
Diff to previous 1.84 (colored)
remove prototypes for long-gone s/key support; ok dtucker@
Revision 1.84 / (download) - annotate - [select for diffs], Fri May 8 06:41:56 2015 UTC (9 years ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8
Changes since 1.83: +2 -2 lines
Diff to previous 1.83 (colored)
whitespace at EOL
Revision 1.83 / (download) - annotate - [select for diffs], Fri May 1 03:23:51 2015 UTC (9 years ago) by djm
Branch: MAIN
Changes since 1.82: +2 -2 lines
Diff to previous 1.82 (colored)
prevent authorized_keys options picked up on public key tests without a corresponding private key authentication being applied to other authentication methods. Reported by halex@, ok markus@
Revision 1.82 / (download) - annotate - [select for diffs], Mon Feb 16 22:13:32 2015 UTC (9 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_7_BASE,
OPENBSD_5_7
Changes since 1.81: +4 -3 lines
Diff to previous 1.81 (colored)
Revise hostkeys@openssh.com hostkey learning extension. The client will not ask the server to prove ownership of the private halves of any hitherto-unseen hostkeys it offers to the client. Allow UpdateHostKeys option to take an 'ask' argument to let the user manually review keys offered. ok markus@
Revision 1.81 / (download) - annotate - [select for diffs], Mon Jan 26 06:10:03 2015 UTC (9 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.80: +3 -3 lines
Diff to previous 1.80 (colored)
correctly match ECDSA subtype (== curve) for offered/recevied host keys. Fixes connection-killing host key mismatches when a server offers multiple ECDSA keys with different curve type (an extremely unlikely configuration). ok markus, "looks mechanical" deraadt@
Revision 1.80 / (download) - annotate - [select for diffs], Mon Jan 19 20:16:15 2015 UTC (9 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.79: +7 -6 lines
Diff to previous 1.79 (colored)
adapt kex to sshbuf and struct ssh; ok djm@
Revision 1.79 / (download) - annotate - [select for diffs], Mon Dec 22 07:51:30 2014 UTC (9 years, 4 months ago) by djm
Branch: MAIN
Changes since 1.78: +8 -1 lines
Diff to previous 1.78 (colored)
remember which public keys have been used for authentication and refuse to accept previously-used keys. This allows AuthenticationMethods=publickey,publickey to require that users authenticate using two _different_ pubkeys. ok markus@
Revision 1.78 / (download) - annotate - [select for diffs], Thu Jul 3 11:16:55 2014 UTC (9 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_6_BASE,
OPENBSD_5_6
Changes since 1.77: +2 -3 lines
Diff to previous 1.77 (colored)
make the "Too many authentication failures" message include the user, source address, port and protocol in a format similar to the authentication success / failure messages; bz#2199, ok dtucker
Revision 1.77 / (download) - annotate - [select for diffs], Wed Jan 29 06:18:35 2014 UTC (10 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_5_BASE,
OPENBSD_5_5
Changes since 1.76: +1 -5 lines
Diff to previous 1.76 (colored)
remove experimental, never-enabled JPAKE code; ok markus@
Revision 1.76 / (download) - annotate - [select for diffs], Fri Jul 19 07:37:48 2013 UTC (10 years, 10 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_4_BASE,
OPENBSD_5_4
Changes since 1.75: +3 -1 lines
Diff to previous 1.75 (colored)
add ssh-agent(1) support to sshd(8); allows encrypted hostkeys, or hostkeys on smartcards; most of the work by Zev Weiss; bz #1974 ok djm@
Revision 1.75 / (download) - annotate - [select for diffs], Fri Jun 21 00:34:49 2013 UTC (10 years, 10 months ago) by djm
Branch: MAIN
Changes since 1.74: +3 -2 lines
Diff to previous 1.74 (colored)
for hostbased authentication, print the client host and user on the auth success/failure line; bz#2064, ok dtucker@
Revision 1.74 / (download) - annotate - [select for diffs], Sun May 19 02:42:42 2013 UTC (11 years ago) by djm
Branch: MAIN
Changes since 1.73: +7 -3 lines
Diff to previous 1.73 (colored)
Standardise logging of supplemental information during userauth. Keys and ruser is now logged in the auth success/failure message alongside the local username, remote host/port and protocol in use. Certificates contents and CA are logged too. Pushing all logging onto a single line simplifies log analysis as it is no longer necessary to relate information scattered across multiple log entries. "I like it" markus@
Revision 1.73 / (download) - annotate - [select for diffs], Thu Mar 7 19:27:25 2013 UTC (11 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.72: +3 -2 lines
Diff to previous 1.72 (colored)
add submethod support to AuthenticationMethods; ok and freedback djm@
Revision 1.72 / (download) - annotate - [select for diffs], Sun Dec 2 20:34:09 2012 UTC (11 years, 5 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_3_BASE,
OPENBSD_5_3
Changes since 1.71: +5 -4 lines
Diff to previous 1.71 (colored)
Fixes logging of partial authentication when privsep is enabled Previously, we recorded "Failed xxx" since we reset authenticated before calling auth_log() in auth2.c. This adds an explcit "Partial" state. Add a "submethod" to auth_log() to report which submethod is used for keyboard-interactive. Fix multiple authentication when one of the methods is keyboard-interactive. ok markus@
Revision 1.71 / (download) - annotate - [select for diffs], Sun Nov 4 11:09:15 2012 UTC (11 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.70: +6 -1 lines
Diff to previous 1.70 (colored)
Support multiple required authentication via an AuthenticationMethods option. This option lists one or more comma-separated lists of authentication method names. Successful completion of all the methods in any list is required for authentication to complete; feedback and ok markus@
Revision 1.70 / (download) - annotate - [select for diffs], Tue Oct 30 21:29:54 2012 UTC (11 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.69: +5 -1 lines
Diff to previous 1.69 (colored)
new sshd_config option AuthorizedKeysCommand to support fetching authorized_keys from a command in addition to (or instead of) from the filesystem. The command is run as the target server user unless another specified via a new AuthorizedKeysCommandUser option. patch originally by jchadima AT redhat.com, reworked by me; feedback and ok markus@
Revision 1.69 / (download) - annotate - [select for diffs], Mon May 23 03:30:07 2011 UTC (12 years, 11 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_2_BASE,
OPENBSD_5_2,
OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0
Changes since 1.68: +2 -2 lines
Diff to previous 1.68 (colored)
allow AuthorizedKeysFile to specify multiple files, separated by spaces. Bring back authorized_keys2 as a default search path (to avoid breaking existing users of this file), but override this in sshd_config so it will be no longer used on fresh installs. Maybe in 2015 we can remove it entierly :) feedback and ok markus@ dtucker@
Revision 1.68 / (download) - annotate - [select for diffs], Wed May 11 04:47:06 2011 UTC (13 years ago) by djm
Branch: MAIN
Changes since 1.67: +1 -2 lines
Diff to previous 1.67 (colored)
remove support for authorized_keys2; it is a relic from the early days of protocol v.2 support and has been undocumented for many years; ok markus@
Revision 1.67 / (download) - annotate - [select for diffs], Thu Mar 10 11:34:25 2011 UTC (13 years, 2 months ago) by djm
Branch: MAIN
Changes since 1.66: +2 -1 lines
Diff to previous 1.66 (colored)
allow GSSAPI authentication to detect when a server-side failure causes authentication failure and don't count such failures against MaxAuthTries; bz#1244 from simon AT sxw.org.uk; ok markus@ before lock
Revision 1.66 / (download) - annotate - [select for diffs], Fri May 7 11:30:29 2010 UTC (14 years ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_9_BASE,
OPENBSD_4_9,
OPENBSD_4_8_BASE,
OPENBSD_4_8
Changes since 1.65: +3 -1 lines
Diff to previous 1.65 (colored)
add some optional indirection to matching of principal names listed in certificates. Currently, a certificate must include the a user's name to be accepted for authentication. This change adds the ability to specify a list of certificate principal names that are acceptable. When authenticating using a CA trusted through ~/.ssh/authorized_keys, this adds a new principals="name1[,name2,...]" key option. For CAs listed through sshd_config's TrustedCAKeys option, a new config option "AuthorizedPrincipalsFile" specifies a per-user file containing the list of acceptable names. If either option is absent, the current behaviour of requiring the username to appear in principals continues to apply. These options are useful for role accounts, disjoint account namespaces and "user@realm"-style naming policies in certificates. feedback and ok markus@
Revision 1.65 / (download) - annotate - [select for diffs], Thu Mar 4 10:36:03 2010 UTC (14 years, 2 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_7_BASE,
OPENBSD_4_7
Changes since 1.64: +2 -1 lines
Diff to previous 1.64 (colored)
Add a TrustedUserCAKeys option to sshd_config to specify CA keys that are trusted to authenticate users (in addition than doing it per-user in authorized_keys). Add a RevokedKeys option to sshd_config and a @revoked marker to known_hosts to allow keys to me revoked and banned for user or host authentication. feedback and ok markus@
Revision 1.64 / (download) - annotate - [select for diffs], Fri Feb 26 20:29:54 2010 UTC (14 years, 2 months ago) by djm
Branch: MAIN
Changes since 1.63: +3 -2 lines
Diff to previous 1.63 (colored)
Add support for certificate key types for users and hosts. OpenSSH certificate key types are not X.509 certificates, but a much simpler format that encodes a public key, identity information and some validity constraints and signs it with a CA key. CA keys are regular SSH keys. This certificate style avoids the attack surface of X.509 certificates and is very easy to deploy. Certified host keys allow automatic acceptance of new host keys when a CA certificate is marked as trusted in ~/.ssh/known_hosts. see VERIFYING HOST KEYS in ssh(1) for details. Certified user keys allow authentication of users when the signing CA key is marked as trusted in authorized_keys. See "AUTHORIZED_KEYS FILE FORMAT" in sshd(8) for details. Certificates are minted using ssh-keygen(1), documentation is in the "CERTIFICATES" section of that manpage. Documentation on the format of certificates is in the file PROTOCOL.certkeys feedback and ok markus@
Revision 1.63 / (download) - annotate - [select for diffs], Sat Aug 15 18:56:34 2009 UTC (14 years, 9 months ago) by fgsch
Branch: MAIN
Changes since 1.62: +1 -2 lines
Diff to previous 1.62 (colored)
remove unused define. markus@ ok.
Revision 1.62 / (download) - annotate - [select for diffs], Tue Nov 4 08:22:12 2008 UTC (15 years, 6 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_6_BASE,
OPENBSD_4_6,
OPENBSD_4_5_BASE,
OPENBSD_4_5
Changes since 1.61: +5 -1 lines
Diff to previous 1.61 (colored)
Add support for an experimental zero-knowledge password authentication method using the J-PAKE protocol described in F. Hao, P. Ryan, "Password Authenticated Key Exchange by Juggling", 16th Workshop on Security Protocols, Cambridge, April 2008. This method allows password-based authentication without exposing the password to the server. Instead, the client and server exchange cryptographic proofs to demonstrate of knowledge of the password while revealing nothing useful to an attacker or compromised endpoint. This is experimental, work-in-progress code and is presently compiled-time disabled (turn on -DJPAKE in Makefile.inc). "just commit it. It isn't too intrusive." deraadt@
Revision 1.61 / (download) - annotate - [select for diffs], Wed Jul 2 12:03:51 2008 UTC (15 years, 10 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_4_4_BASE,
OPENBSD_4_4
Changes since 1.60: +2 -3 lines
Diff to previous 1.60 (colored)
Merge duplicate host key file checks, based in part on a patch from Rob Holland via bz #1348 . Also checks for non-regular files during protocol 1 RSA auth. ok djm@
Revision 1.60 / (download) - annotate - [select for diffs], Fri Sep 21 08:15:29 2007 UTC (16 years, 7 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_3_BASE,
OPENBSD_4_3
Changes since 1.59: +1 -5 lines
Diff to previous 1.59 (colored)
unifdef -DBSD_AUTH unifdef -USKEY These options have been in use for some years; ok markus@ "no objection" millert@
Revision 1.59 / (download) - annotate - [select for diffs], Thu Aug 23 03:06:10 2007 UTC (16 years, 8 months ago) by djm
Branch: MAIN
Changes since 1.58: +1 -4 lines
Diff to previous 1.58 (colored)
login_cap.h doesn't belong here
Revision 1.51.2.1 / (download) - annotate - [select for diffs], Fri Oct 6 03:19:32 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_8
Changes since 1.51: +5 -4 lines
Diff to previous 1.51 (colored) next main 1.52 (colored)
upgrade to OpenSSH 4.4
Revision 1.51.4.1 / (download) - annotate - [select for diffs], Sat Sep 30 04:06:50 2006 UTC (17 years, 7 months ago) by brad
Branch: OPENBSD_3_9
Changes since 1.51: +5 -4 lines
Diff to previous 1.51 (colored) next main 1.52 (colored)
upgrade to OpenSSH 4.4
Revision 1.58 / (download) - annotate - [select for diffs], Fri Aug 18 09:15:20 2006 UTC (17 years, 9 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1,
OPENBSD_4_0_BASE,
OPENBSD_4_0
Changes since 1.57: +2 -1 lines
Diff to previous 1.57 (colored)
delay authentication related cleanups until we're authenticated and all alarms have been cancelled; ok deraadt
Revision 1.57 / (download) - annotate - [select for diffs], Thu Aug 3 03:34:41 2006 UTC (17 years, 9 months ago) by deraadt
Branch: MAIN
Changes since 1.56: +2 -9 lines
Diff to previous 1.56 (colored)
almost entirely get rid of the culture of ".h files that include .h files" ok djm, sort of ok stevesk makes the pain stop in one easy step
Revision 1.56 / (download) - annotate - [select for diffs], Tue Aug 1 23:22:47 2006 UTC (17 years, 9 months ago) by stevesk
Branch: MAIN
Changes since 1.55: +2 -1 lines
Diff to previous 1.55 (colored)
move #include <stdio.h> out of includes.h
Revision 1.55 / (download) - annotate - [select for diffs], Sun Jul 23 01:11:05 2006 UTC (17 years, 9 months ago) by stevesk
Branch: MAIN
Changes since 1.54: +2 -1 lines
Diff to previous 1.54 (colored)
#include <signal.h> for sig_atomic_t; need this prior to <sys/param.h> move
Revision 1.54 / (download) - annotate - [select for diffs], Thu Jul 6 16:03:53 2006 UTC (17 years, 10 months ago) by stevesk
Branch: MAIN
Changes since 1.53: +8 -3 lines
Diff to previous 1.53 (colored)
move #include <pwd.h> out of includes.h; ok markus@
Revision 1.53 / (download) - annotate - [select for diffs], Thu Apr 20 09:27:09 2006 UTC (18 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.52: +2 -2 lines
Diff to previous 1.52 (colored)
replace the last non-sig_atomic_t flag used in a signal handler with a sig_atomic_t, unfortunately with some knock-on effects in other (non- signal) contexts in which it is used; ok markus@
Revision 1.52 / (download) - annotate - [select for diffs], Sat Mar 25 22:22:42 2006 UTC (18 years, 1 month ago) by djm
Branch: MAIN
Changes since 1.51: +1 -1 lines
Diff to previous 1.51 (colored)
standardise spacing in $OpenBSD$ tags; requested by deraadt@
Revision 1.50.4.1 / (download) - annotate - [select for diffs], Sun Sep 4 18:39:55 2005 UTC (18 years, 8 months ago) by brad
Branch: OPENBSD_3_7
Changes since 1.50: +1 -2 lines
Diff to previous 1.50 (colored) next main 1.51 (colored)
upgrade to OpenSSH 4.2
Revision 1.50.2.1 / (download) - annotate - [select for diffs], Fri Sep 2 03:44:59 2005 UTC (18 years, 8 months ago) by brad
Branch: OPENBSD_3_6
Changes since 1.50: +1 -2 lines
Diff to previous 1.50 (colored) next main 1.51 (colored)
upgrade to OpenSSH 4.2
Revision 1.51 / (download) - annotate - [select for diffs], Mon Jun 6 11:20:36 2005 UTC (18 years, 11 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_3_9_BASE,
OPENBSD_3_8_BASE
Branch point for: OPENBSD_3_9,
OPENBSD_3_8
Changes since 1.50: +1 -2 lines
Diff to previous 1.50 (colored)
introduce a generic %foo expansion function. replace existing % expansion and add expansion to ControlPath; ok markus@
Revision 1.46.2.2 / (download) - annotate - [select for diffs], Thu Aug 19 22:37:30 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.46.2.1: +1 -3 lines
Diff to previous 1.46.2.1 (colored) to branchpoint 1.46 (colored) next main 1.47 (colored)
upgrade to OpenSSH 3.9
Revision 1.49.2.1 / (download) - annotate - [select for diffs], Thu Aug 19 04:13:26 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_5
Changes since 1.49: +1 -3 lines
Diff to previous 1.49 (colored) next main 1.50 (colored)
upgrade to OpenSSH 3.9
Revision 1.50 / (download) - annotate - [select for diffs], Sun May 23 23:59:53 2004 UTC (19 years, 11 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_3_7_BASE,
OPENBSD_3_6_BASE
Branch point for: OPENBSD_3_7,
OPENBSD_3_6
Changes since 1.49: +1 -3 lines
Diff to previous 1.49 (colored)
Add MaxAuthTries sshd config option; ok markus@
Revision 1.41.4.2 / (download) - annotate - [select for diffs], Thu Mar 4 18:18:15 2004 UTC (20 years, 2 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.41.4.1: +7 -9 lines
Diff to previous 1.41.4.1 (colored) to branchpoint 1.41 (colored) next main 1.42 (colored)
upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8
Revision 1.46.2.1 / (download) - annotate - [select for diffs], Sat Feb 28 03:51:32 2004 UTC (20 years, 2 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.46: +7 -9 lines
Diff to previous 1.46 (colored)
upgrade to OpenSSH 3.8
Revision 1.49 / (download) - annotate - [select for diffs], Fri Jan 30 09:48:57 2004 UTC (20 years, 3 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_5_BASE
Branch point for: OPENBSD_3_5
Changes since 1.48: +2 -1 lines
Diff to previous 1.48 (colored)
support for password change; ok dtucker@ (set password-dead=1w in login.conf to use this).
Revision 1.48 / (download) - annotate - [select for diffs], Tue Nov 4 08:54:09 2003 UTC (20 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.47: +3 -3 lines
Diff to previous 1.47 (colored)
standardise arguments to auth methods - they should all take authctxt. check authctxt->valid rather then pw != NULL; ok markus@
Revision 1.47 / (download) - annotate - [select for diffs], Tue Sep 23 20:17:11 2003 UTC (20 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.46: +4 -7 lines
Diff to previous 1.46 (colored)
replace fatal_cleanup() and linked list of fatal callbacks with static cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@
Revision 1.41.2.1 / (download) - annotate - [select for diffs], Tue Sep 16 21:20:24 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_2
Changes since 1.41: +14 -23 lines
Diff to previous 1.41 (colored) next main 1.42 (colored)
upgrade to OpenSSH 3.7
Revision 1.41.4.1 / (download) - annotate - [select for diffs], Tue Sep 16 20:50:42 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.41: +14 -23 lines
Diff to previous 1.41 (colored)
upgrade to OpenSSH 3.7
Revision 1.46 / (download) - annotate - [select for diffs], Thu Aug 28 12:54:34 2003 UTC (20 years, 8 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_4_BASE
Branch point for: OPENBSD_3_4
Changes since 1.45: +1 -2 lines
Diff to previous 1.45 (colored)
remove kerberos support from ssh1, since it has been replaced with GSSAPI; but keep kerberos passwd auth for ssh1 and 2; ok djm, hin, henning, ...
Revision 1.45 / (download) - annotate - [select for diffs], Tue Aug 26 09:58:43 2003 UTC (20 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.44: +3 -1 lines
Diff to previous 1.44 (colored)
fix passwd auth for 'username leaks via timing'; with djm@, original patches from solar
Revision 1.44 / (download) - annotate - [select for diffs], Fri Aug 22 10:56:08 2003 UTC (20 years, 9 months ago) by markus
Branch: MAIN
Changes since 1.43: +2 -1 lines
Diff to previous 1.43 (colored)
support GSS API user authentication; patches from Simon Wilkinson, stripped down and tested by Jakob and myself.
Revision 1.43 / (download) - annotate - [select for diffs], Tue Jul 22 13:35:22 2003 UTC (20 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.42: +1 -18 lines
Diff to previous 1.42 (colored)
remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1); test+ok henning@
Revision 1.42 / (download) - annotate - [select for diffs], Wed Apr 16 14:35:27 2003 UTC (21 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.41: +11 -5 lines
Diff to previous 1.41 (colored)
document struct Authctxt; with solar
Revision 1.22.2.4 / (download) - annotate - [select for diffs], Fri Oct 11 14:53:06 2002 UTC (21 years, 7 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.22.2.3: +3 -3 lines
Diff to previous 1.22.2.3 (colored) to branchpoint 1.22 (colored) next main 1.23 (colored)
Update to OpenSSH 3.5
Revision 1.35.2.4 / (download) - annotate - [select for diffs], Fri Oct 11 14:51:52 2002 UTC (21 years, 7 months ago) by miod
Branch: OPENBSD_3_1
Changes since 1.35.2.3: +3 -3 lines
Diff to previous 1.35.2.3 (colored) to branchpoint 1.35 (colored) next main 1.36 (colored)
Update to OpenSSH 3.5
Revision 1.41 / (download) - annotate - [select for diffs], Thu Sep 26 11:38:43 2002 UTC (21 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_3_BASE,
OPENBSD_3_2_BASE
Branch point for: OPENBSD_3_3,
OPENBSD_3_2
Changes since 1.40: +2 -2 lines
Diff to previous 1.40 (colored)
krb4 + privsep; ok dugsong@, deraadt@
Revision 1.40 / (download) - annotate - [select for diffs], Mon Sep 9 06:48:06 2002 UTC (21 years, 8 months ago) by itojun
Branch: MAIN
Changes since 1.39: +2 -2 lines
Diff to previous 1.39 (colored)
kerberos support for privsep. confirmed to work by lha@stacken.kth.se patch from markus
Revision 1.35.2.3 / (download) - annotate - [select for diffs], Wed Jun 26 15:30:37 2002 UTC (21 years, 10 months ago) by jason
Branch: OPENBSD_3_1
Changes since 1.35.2.2: +8 -1 lines
Diff to previous 1.35.2.2 (colored) to branchpoint 1.35 (colored)
Pull in OpenSSH-3.4
Revision 1.22.2.3 / (download) - annotate - [select for diffs], Sat Jun 22 07:23:16 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.22.2.2: +8 -1 lines
Diff to previous 1.22.2.2 (colored) to branchpoint 1.22 (colored)
Update OpenSSH to version 3.3 (with local changes, configuration files still living in /etc and privsep user being nobody).
Revision 1.15.2.3 / (download) - annotate - [select for diffs], Sun Jun 2 22:56:09 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.15.2.2: +34 -6 lines
Diff to previous 1.15.2.2 (colored) to branchpoint 1.15 (colored) next main 1.16 (colored)
Upgrade to OpenSSH 3.2.3. Except for improbable compilation error fixes, this should be the last commit made to the 2.9-STABLE branche. Have fun upgrading.
Revision 1.39 / (download) - annotate - [select for diffs], Fri May 31 11:35:15 2002 UTC (21 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.38: +8 -8 lines
Diff to previous 1.38 (colored)
move Authmethod definitons to per-method file.
Revision 1.38 / (download) - annotate - [select for diffs], Sat May 25 18:51:07 2002 UTC (21 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.37: +8 -1 lines
Diff to previous 1.37 (colored)
split auth2.c into one file per method; ok provos@/deraadt@
Revision 1.35.2.2 / (download) - annotate - [select for diffs], Sat May 18 04:50:37 2002 UTC (22 years ago) by jason
Branch: OPENBSD_3_1
Changes since 1.35.2.1: +0 -0 lines
Diff to previous 1.35.2.1 (colored) to branchpoint 1.35 (colored)
Update to OpenSSH-3.2.3
Revision 1.35.2.1 / (download) - annotate - [select for diffs], Sat May 18 04:12:10 2002 UTC (22 years ago) by jason
Branch: OPENBSD_3_1
Changes since 1.35: +8 -1 lines
Diff to previous 1.35 (colored)
Update to OpenSSH-3.2.2
Revision 1.22.2.2 / (download) - annotate - [select for diffs], Fri May 17 00:03:23 2002 UTC (22 years ago) by miod
Branch: OPENBSD_3_0
Changes since 1.22.2.1: +34 -6 lines
Diff to previous 1.22.2.1 (colored) to branchpoint 1.22 (colored)
Update OpenSSH to version 3.2.2.
Revision 1.37 / (download) - annotate - [select for diffs], Mon May 13 20:44:58 2002 UTC (22 years ago) by markus
Branch: MAIN
Changes since 1.36: +6 -1 lines
Diff to previous 1.36 (colored)
move the packet_send_debug handling from auth-options.c to auth.c; ok provos@
Revision 1.36 / (download) - annotate - [select for diffs], Sun May 12 23:53:45 2002 UTC (22 years ago) by djm
Branch: MAIN
Changes since 1.35: +3 -1 lines
Diff to previous 1.35 (colored)
Fix sshd Banner option for privsep; ok markus@ provos@
Revision 1.35 / (download) - annotate - [select for diffs], Tue Mar 19 10:35:39 2002 UTC (22 years, 2 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_1_BASE
Branch point for: OPENBSD_3_1
Changes since 1.34: +19 -2 lines
Diff to previous 1.34 (colored)
clean up prototypes
Revision 1.34 / (download) - annotate - [select for diffs], Mon Mar 18 17:50:31 2002 UTC (22 years, 2 months ago) by provos
Branch: MAIN
Changes since 1.33: +4 -1 lines
Diff to previous 1.33 (colored)
integrate privilege separated openssh; its turned off by default for now. work done by me and markus@
Revision 1.33 / (download) - annotate - [select for diffs], Mon Mar 18 01:12:14 2002 UTC (22 years, 2 months ago) by provos
Branch: MAIN
Changes since 1.32: +3 -3 lines
Diff to previous 1.32 (colored)
have the authentication functions return the authentication context and then do_authenticated; okay millert@
Revision 1.32 / (download) - annotate - [select for diffs], Sun Mar 17 20:25:56 2002 UTC (22 years, 2 months ago) by provos
Branch: MAIN
Changes since 1.31: +2 -1 lines
Diff to previous 1.31 (colored)
getpwnamallow returns struct passwd * only if user valid; okay markus@
Revision 1.31 / (download) - annotate - [select for diffs], Sat Mar 16 17:22:09 2002 UTC (22 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.30: +2 -2 lines
Diff to previous 1.30 (colored)
split auth_rhosts_rsa(), ok provos@
Revision 1.30 / (download) - annotate - [select for diffs], Thu Mar 14 16:56:33 2002 UTC (22 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.29: +2 -2 lines
Diff to previous 1.29 (colored)
split auth_rsa() for better readability and privsep; ok provos@
Revision 1.15.2.2 / (download) - annotate - [select for diffs], Sat Mar 9 00:20:43 2002 UTC (22 years, 2 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.15.2.1: +12 -11 lines
Diff to previous 1.15.2.1 (colored) to branchpoint 1.15 (colored)
Merge OpenSSH 3.1, keeping /etc as configuration files directory. (i.e. OpenSSH 3.1 + openbsd29_3.1.patch)
Revision 1.7.2.6 / (download) - annotate - [select for diffs], Fri Mar 8 17:04:41 2002 UTC (22 years, 2 months ago) by brad
Branch: OPENBSD_2_8
Changes since 1.7.2.5: +12 -11 lines
Diff to previous 1.7.2.5 (colored) to branchpoint 1.7 (colored) next main 1.8 (colored)
Merge OpenSSH 3.1.
Revision 1.22.2.1 / (download) - annotate - [select for diffs], Thu Mar 7 17:37:46 2002 UTC (22 years, 2 months ago) by jason
Branch: OPENBSD_3_0
Changes since 1.22: +12 -11 lines
Diff to previous 1.22 (colored)
Update to OpenSSH-3.1 on 3.0-stable branch
Revision 1.29 / (download) - annotate - [select for diffs], Mon Mar 4 17:27:39 2002 UTC (22 years, 2 months ago) by stevesk
Branch: MAIN
Changes since 1.28: +3 -1 lines
Diff to previous 1.28 (colored)
$OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; add missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c files. ok markus@
Revision 1.28 / (download) - annotate - [select for diffs], Sun Feb 17 19:42:32 2002 UTC (22 years, 3 months ago) by millert
Branch: MAIN
Changes since 1.27: +3 -4 lines
Diff to previous 1.27 (colored)
Manual cleanup of remaining userland __P use (excluding packages maintained outside the tree)
Revision 1.27 / (download) - annotate - [select for diffs], Sat Feb 16 21:27:53 2002 UTC (22 years, 3 months ago) by millert
Branch: MAIN
Changes since 1.26: +4 -4 lines
Diff to previous 1.26 (colored)
Part one of userland __P removal. Done with a simple regexp with some minor hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.
Revision 1.26 / (download) - annotate - [select for diffs], Thu Dec 27 19:54:53 2001 UTC (22 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.25: +2 -2 lines
Diff to previous 1.25 (colored)
auth_rhosts_rsa now accept generic keys.
Revision 1.25 / (download) - annotate - [select for diffs], Wed Dec 19 07:18:56 2001 UTC (22 years, 5 months ago) by deraadt
Branch: MAIN
Changes since 1.24: +3 -3 lines
Diff to previous 1.24 (colored)
basic KNF done while i was looking for something else
Revision 1.24 / (download) - annotate - [select for diffs], Tue Dec 18 10:04:21 2001 UTC (22 years, 5 months ago) by jakob
Branch: MAIN
Changes since 1.23: +1 -2 lines
Diff to previous 1.23 (colored)
remove auth_rsa_read_key, make hostfile_ready_key non static; ok markus@
Revision 1.23 / (download) - annotate - [select for diffs], Sun Dec 9 18:45:56 2001 UTC (22 years, 5 months ago) by markus
Branch: MAIN
Changes since 1.22: +2 -1 lines
Diff to previous 1.22 (colored)
add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions, fixes memleak.
Revision 1.15.2.1 / (download) - annotate - [select for diffs], Thu Sep 27 19:03:54 2001 UTC (22 years, 7 months ago) by jason
Branch: OPENBSD_2_9
Changes since 1.15: +85 -74 lines
Diff to previous 1.15 (colored)
Pull in OpenSSH-2.9.9
Revision 1.7.2.5 / (download) - annotate - [select for diffs], Thu Sep 27 00:15:41 2001 UTC (22 years, 7 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.7.2.4: +85 -74 lines
Diff to previous 1.7.2.4 (colored) to branchpoint 1.7 (colored)
Pull in OpenSSH 2.9.9 to the 2.8 branch.
Revision 1.22 / (download) - annotate - [select for diffs], Tue Jun 26 17:27:22 2001 UTC (22 years, 10 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_0_BASE
Branch point for: OPENBSD_3_0
Changes since 1.21: +8 -52 lines
Diff to previous 1.21 (colored)
remove comments from .h, since they are cut&paste from the .c files and out of sync
Revision 1.21 / (download) - annotate - [select for diffs], Tue Jun 26 16:15:23 2001 UTC (22 years, 10 months ago) by dugsong
Branch: MAIN
Changes since 1.20: +36 -17 lines
Diff to previous 1.20 (colored)
Kerberos v5 support for SSH1, mostly from Assar Westerlund <assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
Revision 1.20 / (download) - annotate - [select for diffs], Tue Jun 26 06:32:47 2001 UTC (22 years, 10 months ago) by itojun
Branch: MAIN
Changes since 1.19: +27 -29 lines
Diff to previous 1.19 (colored)
prototype pedant. not very creative... - () -> (void) - no variable names
Revision 1.19 / (download) - annotate - [select for diffs], Mon Jun 25 17:54:49 2001 UTC (22 years, 10 months ago) by provos
Branch: MAIN
Changes since 1.18: +3 -2 lines
Diff to previous 1.18 (colored)
terminate secure_filename checking after checking homedir. that way it works on AFS. okay markus@
Revision 1.18 / (download) - annotate - [select for diffs], Sat Jun 23 00:20:58 2001 UTC (22 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.17: +8 -2 lines
Diff to previous 1.17 (colored)
*known_hosts2 is obsolete for hostbased authentication and only used for backward compat. merge ssh1/2 hostkey check and move it to auth.c
Revision 1.17 / (download) - annotate - [select for diffs], Sun May 20 17:20:35 2001 UTC (23 years ago) by markus
Branch: MAIN
Changes since 1.16: +11 -1 lines
Diff to previous 1.16 (colored)
configurable authorized_keys{,2} location; originally from peter@; ok djm@
Revision 1.16 / (download) - annotate - [select for diffs], Fri May 18 14:13:28 2001 UTC (23 years ago) by markus
Branch: MAIN
Changes since 1.15: +24 -3 lines
Diff to previous 1.15 (colored)
improved kbd-interactive support. work by per@appgate.com and me
Revision 1.7.2.4 / (download) - annotate - [select for diffs], Mon May 7 21:09:26 2001 UTC (23 years ago) by jason
Branch: OPENBSD_2_8
Changes since 1.7.2.3: +18 -3 lines
Diff to previous 1.7.2.3 (colored) to branchpoint 1.7 (colored)
Pull in OpenSSH-2.9 to 2.8 branch.
Revision 1.15 / (download) - annotate - [select for diffs], Thu Apr 12 19:15:24 2001 UTC (23 years, 1 month ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_9_BASE
Branch point for: OPENBSD_2_9
Changes since 1.14: +6 -1 lines
Diff to previous 1.14 (colored)
implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2) similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :)
Revision 1.14 / (download) - annotate - [select for diffs], Wed Mar 28 22:43:31 2001 UTC (23 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.13: +2 -2 lines
Diff to previous 1.13 (colored)
check auth_root_allowed for kbd-int auth, too.
Revision 1.7.2.3 / (download) - annotate - [select for diffs], Wed Mar 21 19:46:22 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.7.2.2: +1 -2 lines
Diff to previous 1.7.2.2 (colored) to branchpoint 1.7 (colored)
Pull in OpenSSH-2.5.2 for 2.8 branch.
Revision 1.3.2.4 / (download) - annotate - [select for diffs], Wed Mar 21 18:52:34 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.3.2.3: +1 -2 lines
Diff to previous 1.3.2.3 (colored) to branchpoint 1.3 (colored) next main 1.4 (colored)
Pull in OpenSSH-2.5.2 for 2.7 branch.
Revision 1.13 / (download) - annotate - [select for diffs], Tue Mar 20 18:57:04 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.12: +12 -2 lines
Diff to previous 1.12 (colored)
add changes need for BSD_AUTH plus disabled BSD_AUTH code
Revision 1.3.2.3 / (download) - annotate - [select for diffs], Mon Mar 12 15:44:07 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.3.2.2: +77 -3 lines
Diff to previous 1.3.2.2 (colored) to branchpoint 1.3 (colored)
OpenSSH-2.5.1 for 2.7 patch branch
Revision 1.12 / (download) - annotate - [select for diffs], Thu Feb 22 21:59:43 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.11: +1 -2 lines
Diff to previous 1.11 (colored)
use pwcopy in ssh.c, too
Revision 1.7.2.2 / (download) - annotate - [select for diffs], Mon Feb 19 17:18:37 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.7.2.1: +0 -0 lines
Diff to previous 1.7.2.1 (colored) to branchpoint 1.7 (colored)
Pull in OpenSSH-2.5.1
Revision 1.7.2.1 / (download) - annotate - [select for diffs], Fri Feb 16 20:12:53 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.7: +77 -3 lines
Diff to previous 1.7 (colored)
Pull in OpenSSH 2.5.0
Revision 1.11 / (download) - annotate - [select for diffs], Mon Feb 12 16:16:23 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored)
PermitRootLogin={yes,without-password,forced-commands-only,no}
(before this change, root could login even if PermitRootLogin==no)
Revision 1.10 / (download) - annotate - [select for diffs], Sun Jan 21 19:05:43 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.9: +65 -1 lines
Diff to previous 1.9 (colored)
split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. rename util.[ch] -> misc.[ch]
Revision 1.9 / (download) - annotate - [select for diffs], Thu Jan 18 16:59:59 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.8: +12 -3 lines
Diff to previous 1.8 (colored)
1) removes fake skey from sshd, since this will be much harder with /usr/libexec/auth/login_XXX 2) share/unify code used in ssh-1 and ssh-2 authentication (server side) 3) make addition of BSD_AUTH and other challenge reponse methods easier.
Revision 1.8 / (download) - annotate - [select for diffs], Thu Dec 28 14:25:51 2000 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.7: +2 -1 lines
Diff to previous 1.7 (colored)
count authentication failures only
Revision 1.3.2.2 / (download) - annotate - [select for diffs], Wed Nov 8 21:30:23 2000 UTC (23 years, 6 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.3.2.1: +41 -4 lines
Diff to previous 1.3.2.1 (colored) to branchpoint 1.3 (colored)
openssh-2.3.0 (again) for 2.7 branch
Revision 1.7 / (download) - annotate - [select for diffs], Mon Oct 16 09:38:44 2000 UTC (23 years, 7 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_2_8_BASE
Branch point for: OPENBSD_2_8
Changes since 1.6: +2 -0 lines
Diff to previous 1.6 (colored)
Add idents for files which lack them Fix idents Id -> OpenBSD for the rest
Revision 1.6 / (download) - annotate - [select for diffs], Wed Oct 11 20:14:38 2000 UTC (23 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.5: +16 -4 lines
Diff to previous 1.5 (colored)
add support for s/key (kbd-interactive) to ssh2, based on work by mkiernan@avantgo.com and me
Revision 1.5 / (download) - annotate - [select for diffs], Thu Sep 7 20:27:49 2000 UTC (23 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.4: +23 -0 lines
Diff to previous 1.4 (colored)
cleanup copyright notices on all files. I have attempted to be accurate with the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate.
Revision 1.3.2.1 / (download) - annotate - [select for diffs], Fri Sep 1 18:23:17 2000 UTC (23 years, 8 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored)
Pull in the rest of openssh-2.2.0 to 2.7 branch (luvin' cvs...)
Revision 1.4 / (download) - annotate - [select for diffs], Sun Jul 9 01:21:15 2000 UTC (23 years, 10 months ago) by deraadt
Branch: MAIN
Changes since 1.3: +1 -1 lines
Diff to previous 1.3 (colored)
KNF
Revision 1.3 / (download) - annotate - [select for diffs], Wed Apr 26 21:28:32 2000 UTC (24 years ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_7_BASE
Branch point for: OPENBSD_2_7
Changes since 1.2: +7 -0 lines
Diff to previous 1.2 (colored)
split auth/sshconnect in one file per protocol version
Revision 1.2 / (download) - annotate - [select for diffs], Thu Apr 6 08:55:22 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
Changes since 1.1: +4 -0 lines
Diff to previous 1.1 (colored)
ssh2 server side, see README.openssh2; enable with 'sshd -2'
Revision 1.1 / (download) - annotate - [select for diffs], Tue Mar 28 21:15:45 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
split sshd.c -> auth.c session.c sshd.c plus cleanup and goto-removal