![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh / sshd
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.111 / (download) - annotate - [select for diffs], Fri May 17 00:30:24 2024 UTC (2 weeks, 1 day ago) by djm
Branch: MAIN
CVS Tags: HEAD
Changes since 1.110: +6 -12 lines
Diff to previous 1.110 (colored)
Start the process of splitting sshd into separate binaries. This step splits sshd into a listener and a session binary. More splits are planned. After this changes, the listener binary will validate the configuration, load the hostkeys, listen on port 22 and manage MaxStartups only. All session handling will be performed by a new sshd-session binary that the listener fork+execs. This reduces the listener process to the minimum necessary and sets us up for future work on the sshd-session binary. feedback/ok markus@ deraadt@ NB. if you're updating via source, please restart sshd after installing, otherwise you run the risk of locking yourself out.
Revision 1.110 / (download) - annotate - [select for diffs], Mon Apr 1 15:48:16 2024 UTC (8 weeks, 4 days ago) by deraadt
Branch: MAIN
Changes since 1.109: +14 -14 lines
Diff to previous 1.109 (colored)
new-style relink kit for sshd. The old scheme created a Makefile by concatenating two Makefiles and was incredibly fragile. In the new way a narrow-purposed install.sh script is created and shipped with the objects. A recently commited /etc/rc script understands these files.
Revision 1.109 / (download) - annotate - [select for diffs], Sat Feb 10 11:28:52 2024 UTC (3 months, 2 weeks ago) by naddy
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5
Changes since 1.108: +3 -1 lines
Diff to previous 1.108 (colored)
clean sshd random relinking kit; ok miod@
Revision 1.108 / (download) - annotate - [select for diffs], Wed Jan 18 20:56:36 2023 UTC (16 months, 1 week ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_7_4_BASE,
OPENBSD_7_4,
OPENBSD_7_3_BASE,
OPENBSD_7_3
Changes since 1.107: +2 -2 lines
Diff to previous 1.107 (colored)
delete useless dependency
Revision 1.107 / (download) - annotate - [select for diffs], Wed Jan 18 20:43:15 2023 UTC (16 months, 1 week ago) by deraadt
Branch: MAIN
Changes since 1.106: +21 -1 lines
Diff to previous 1.106 (colored)
Create and install sshd random relink kit. ../Makefile.inc and Makfile are concatenated for reuse, which hopefully won't be too fragile, we'll see if we need a different approach. The resulting sshd binary is tested with the new sshd -V option before installation. As the binary layout is now semi-unknown (meaning relative, fixed, and gadget offsets are not precisely known), change the filesystem permissions to 511 to prevent what I call "logged in BROP". I have ideas for improving this further but this is a first step ok djm
Revision 1.106 / (download) - annotate - [select for diffs], Fri May 27 05:02:46 2022 UTC (2 years ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_2_BASE,
OPENBSD_7_2
Changes since 1.105: +3 -2 lines
Diff to previous 1.105 (colored)
split the low-level file handling functions out from auth2-pubkey.c Put them in a new auth2-pubkeyfile.c to make it easier to refer to them (e.g. in unit/fuzz tests) without having to refer to everything else pubkey auth brings in. ok dtucker@
Revision 1.105 / (download) - annotate - [select for diffs], Sat Jan 9 12:10:02 2021 UTC (3 years, 4 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_7_1_BASE,
OPENBSD_7_1,
OPENBSD_7_0_BASE,
OPENBSD_7_0,
OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.104: +2 -2 lines
Diff to previous 1.104 (colored)
Add PerSourceMaxStartups and PerSourceNetBlockSize options which provide more fine grained MaxStartups limits. Man page help jmc@, feedback & ok djm@
Revision 1.104 / (download) - annotate - [select for diffs], Sat Jan 25 23:02:14 2020 UTC (4 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8,
OPENBSD_6_7_BASE,
OPENBSD_6_7
Changes since 1.103: +2 -3 lines
Diff to previous 1.103 (colored)
factor out reading/writing sshbufs to dedicated functions; feedback and ok markus@
Revision 1.103 / (download) - annotate - [select for diffs], Thu Jan 23 10:24:30 2020 UTC (4 years, 4 months ago) by dtucker
Branch: MAIN
Changes since 1.102: +8 -3 lines
Diff to previous 1.102 (colored)
Make zlib optional. This adds a "ZLIB" build time option that allows building without zlib compression and associated options. With feedback from markus@, ok djm@
Revision 1.102 / (download) - annotate - [select for diffs], Fri Dec 13 19:09:10 2019 UTC (4 years, 5 months ago) by djm
Branch: MAIN
Changes since 1.101: +4 -6 lines
Diff to previous 1.101 (colored)
use ssh-sk-helper for all security key signing operations This extracts and refactors the client interface for ssh-sk-helper from ssh-agent and generalises it for use by the other programs. This means that most OpenSSH tools no longer need to link against libfido2 or directly interact with /dev/uhid* requested by, feedback and ok markus@
Revision 1.101 / (download) - annotate - [select for diffs], Thu Nov 14 21:27:31 2019 UTC (4 years, 6 months ago) by djm
Branch: MAIN
Changes since 1.100: +4 -1 lines
Diff to previous 1.100 (colored)
directly support U2F/FIDO2 security keys in OpenSSH by linking against the (previously external) USB HID middleware. The dlopen() capability still exists for alternate middlewares, e.g. for Bluetooth, NFC and test/debugging.
Revision 1.100 / (download) - annotate - [select for diffs], Fri Jul 5 04:55:41 2019 UTC (4 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_6_BASE,
OPENBSD_6_6
Changes since 1.99: +2 -2 lines
Diff to previous 1.99 (colored)
add a local implementation of BSD realpath() for sftp-server use ahead of OpenBSD's realpath changing to match POSIX; ok deraadt@ (thanks for snaps testing)
Revision 1.99 / (download) - annotate - [select for diffs], Wed Jul 25 17:12:35 2018 UTC (5 years, 10 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_6_5_BASE,
OPENBSD_6_5,
OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.98: +1 -3 lines
Diff to previous 1.98 (colored)
Don't redefine Makefile choices which come correct from bsd.*.mk ok markus
Revision 1.98 / (download) - annotate - [select for diffs], Wed Jul 18 11:34:05 2018 UTC (5 years, 10 months ago) by dtucker
Branch: MAIN
Changes since 1.97: +2 -2 lines
Diff to previous 1.97 (colored)
Remove support for running ssh(1) setuid and fatal if attempted. Do not link uidwap.c into ssh any more. Neuters UsePrivilegedPort, which will be marked as deprecated shortly. ok markus@ djm@
Revision 1.97 / (download) - annotate - [select for diffs], Wed Jul 11 18:53:29 2018 UTC (5 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.96: +2 -2 lines
Diff to previous 1.96 (colored)
remove legacy key emulation layer; ok djm@
Revision 1.96 / (download) - annotate - [select for diffs], Mon Jul 9 21:56:06 2018 UTC (5 years, 10 months ago) by markus
Branch: MAIN
Changes since 1.95: +2 -2 lines
Diff to previous 1.95 (colored)
remove legacy buffer API emulation layer; ok djm@
Revision 1.95 / (download) - annotate - [select for diffs], Mon Jan 8 15:37:38 2018 UTC (6 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3
Changes since 1.94: +9 -18 lines
Diff to previous 1.94 (colored)
group shared source files (e.g. SRCS_KEX) and allow compilation w/o OPENSSL ok djm@
Revision 1.94 / (download) - annotate - [select for diffs], Mon Jan 8 15:15:36 2018 UTC (6 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.93: +5 -5 lines
Diff to previous 1.93 (colored)
split client/server kex; only ssh-keygen needs uuencode.o; only scp/sftp use progressmeter.o; ok djm@
Revision 1.93 / (download) - annotate - [select for diffs], Thu Dec 14 21:07:39 2017 UTC (6 years, 5 months ago) by naddy
Branch: MAIN
Changes since 1.92: +2 -2 lines
Diff to previous 1.92 (colored)
Replace ED25519's private SHA-512 implementation with a call to the regular digest code. This speeds up compilation considerably. ok markus@
Revision 1.92 / (download) - annotate - [select for diffs], Tue Dec 12 15:06:12 2017 UTC (6 years, 5 months ago) by naddy
Branch: MAIN
Changes since 1.91: +1 -10 lines
Diff to previous 1.91 (colored)
Create a persistent umac128.c source file: #define the output size and the name of the entry points for UMAC-128 before including umac.c. Idea from FreeBSD. ok dtucker@
Revision 1.91 / (download) - annotate - [select for diffs], Sun Dec 10 19:37:57 2017 UTC (6 years, 5 months ago) by deraadt
Branch: MAIN
Changes since 1.90: +29 -12 lines
Diff to previous 1.90 (colored)
ssh/lib hasn't worked towards our code-sharing goals for a quit while, perhaps it is too verbose? Change each */Makefile to specifying exactly what sources that program requires, compiling it seperate. Maybe we'll iterate by sorting those into seperatable chunks, splitting up files which contain common code + server/client specific code, or whatnot. But this isn't one step, or we'd have done it a long time ago.. ok dtucker markus djm
Revision 1.90 / (download) - annotate - [select for diffs], Wed Sep 28 16:33:07 2016 UTC (7 years, 8 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_6_2_BASE,
OPENBSD_6_2,
OPENBSD_6_1_BASE,
OPENBSD_6_1
Changes since 1.89: +2 -2 lines
Diff to previous 1.89 (colored)
Remove support for pre-authentication compression. Doing compression early in the protocol probably seemed reasonable in the 1990s, but today it's clearly a bad idea in terms of both cryptography (cf. multiple compression oracle attacks in TLS) and attack surface. Moreover, to support it across privilege-separation zlib needed the assistance of a complex shared-memory manager that made the required attack surface considerably larger. Prompted by Guido Vranken pointing out a compiler-elided security check in the shared memory manager found by Stack (http://css.csail.mit.edu/stack/); ok deraadt@ markus@ NB. pre-auth authentication has been disabled by default in sshd for >10 years.
Revision 1.89 / (download) - annotate - [select for diffs], Sat Aug 13 17:47:41 2016 UTC (7 years, 9 months ago) by markus
Branch: MAIN
Changes since 1.88: +2 -6 lines
Diff to previous 1.88 (colored)
remove ssh1 server code; ok djm@
Revision 1.88 / (download) - annotate - [select for diffs], Thu Jan 14 16:17:40 2016 UTC (8 years, 4 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_6_0_BASE,
OPENBSD_6_0,
OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.87: +2 -2 lines
Diff to previous 1.87 (colored)
remove roaming support; ok djm@
Revision 1.87 / (download) - annotate - [select for diffs], Fri Oct 9 01:37:08 2015 UTC (8 years, 7 months ago) by deraadt
Branch: MAIN
Changes since 1.86: +2 -2 lines
Diff to previous 1.86 (colored)
Change all tame callers to namechange to pledge(2).
Revision 1.86 / (download) - annotate - [select for diffs], Sat Oct 3 02:37:30 2015 UTC (8 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.85: +2 -2 lines
Diff to previous 1.85 (colored)
switch from using the systrace-based sandbox to the tame-based sandbox. discussed it at length with djm -- i think it is time to give this a trial in snapshots.
Revision 1.85 / (download) - annotate - [select for diffs], Tue Mar 3 21:21:13 2015 UTC (9 years, 3 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8,
OPENBSD_5_7_BASE,
OPENBSD_5_7
Changes since 1.84: +2 -2 lines
Diff to previous 1.84 (colored)
add SSH1 Makefile knob to make it easier to build without SSH1 support; ok markus@
Revision 1.84 / (download) - annotate - [select for diffs], Mon Jan 19 20:30:24 2015 UTC (9 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.83: +3 -5 lines
Diff to previous 1.83 (colored)
add experimental api for packet layer; ok djm@
Revision 1.83 / (download) - annotate - [select for diffs], Tue Apr 29 18:01:49 2014 UTC (10 years, 1 month ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_5_6_BASE,
OPENBSD_5_6
Changes since 1.82: +17 -6 lines
Diff to previous 1.82 (colored)
make compiling against OpenSSL optional (make OPENSSL=no); reduces algorithms to curve25519, aes-ctr, chacha, ed25519; allows us to explore further options; with and ok djm
Revision 1.82 / (download) - annotate - [select for diffs], Wed Mar 26 19:58:37 2014 UTC (10 years, 2 months ago) by tedu
Branch: MAIN
Changes since 1.81: +1 -7 lines
Diff to previous 1.81 (colored)
remove libwrap support. ok deraadt djm mfriedl
Revision 1.81 / (download) - annotate - [select for diffs], Wed Jan 29 06:18:35 2014 UTC (10 years, 4 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_5_BASE,
OPENBSD_5_5
Changes since 1.80: +2 -2 lines
Diff to previous 1.80 (colored)
remove experimental, never-enabled JPAKE code; ok markus@
Revision 1.80 / (download) - annotate - [select for diffs], Sat Nov 2 21:59:15 2013 UTC (10 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.79: +3 -2 lines
Diff to previous 1.79 (colored)
use curve25519 for default key exchange (curve25519-sha256@libssh.org); initial patch from Aris Adamantiadis; ok djm@
Revision 1.79 / (download) - annotate - [select for diffs], Sat Aug 10 10:19:35 2013 UTC (10 years, 9 months ago) by ajacoutot
Branch: MAIN
Changes since 1.78: +2 -2 lines
Diff to previous 1.78 (colored)
libkafs5 -> libkafs (unused in build, so no functional change)
Revision 1.78 / (download) - annotate - [select for diffs], Sat Jul 20 01:55:13 2013 UTC (10 years, 10 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_4_BASE,
OPENBSD_5_4
Changes since 1.77: +4 -3 lines
Diff to previous 1.77 (colored)
fix kerberos/GSSAPI deprecation warnings and linking; "looks okay" millert@
Revision 1.77 / (download) - annotate - [select for diffs], Tue Jul 2 13:32:38 2013 UTC (10 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.76: +2 -2 lines
Diff to previous 1.76 (colored)
add missing library dependencies
Revision 1.76 / (download) - annotate - [select for diffs], Wed Jun 19 05:27:07 2013 UTC (10 years, 11 months ago) by deraadt
Branch: MAIN
Changes since 1.75: +2 -1 lines
Diff to previous 1.75 (colored)
stop doing kerberos in ssh and sshd the code bloat makes that no longer trustworthy functionality ok guenther
Revision 1.75 / (download) - annotate - [select for diffs], Tue Jun 18 20:27:20 2013 UTC (10 years, 11 months ago) by miod
Branch: MAIN
Changes since 1.74: +3 -3 lines
Diff to previous 1.74 (colored)
Shuffle library link order to appease the static arch deities.
Revision 1.74 / (download) - annotate - [select for diffs], Mon Jun 17 19:23:33 2013 UTC (10 years, 11 months ago) by robert
Branch: MAIN
Changes since 1.73: +3 -2 lines
Diff to previous 1.73 (colored)
link to the new kerberos libraries
Revision 1.73 / (download) - annotate - [select for diffs], Wed Jun 22 21:57:01 2011 UTC (12 years, 11 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_5_3_BASE,
OPENBSD_5_3,
OPENBSD_5_2_BASE,
OPENBSD_5_2,
OPENBSD_5_1_BASE,
OPENBSD_5_1,
OPENBSD_5_0_BASE,
OPENBSD_5_0
Changes since 1.72: +2 -2 lines
Diff to previous 1.72 (colored)
introduce sandboxing of the pre-auth privsep child using systrace(4). This introduces a new "UsePrivilegeSeparation=sandbox" option for sshd_config that applies mandatory restrictions on the syscalls the privsep child can perform. This prevents a compromised privsep child from being used to attack other hosts (by opening sockets and proxying) or probing local kernel attack surface. The sandbox is implemented using systrace(4) in unsupervised "fast-path" mode, where a list of permitted syscalls is supplied. Any syscall not on the list results in SIGKILL being sent to the privsep child. Note that this requires a kernel with the new SYSTR_POLICY_KILL option. UsePrivilegeSeparation=sandbox will become the default in the future so please start testing it now. feedback dtucker@; ok markus@
Revision 1.72 / (download) - annotate - [select for diffs], Wed Oct 13 08:14:22 2010 UTC (13 years, 7 months ago) by jsg
Branch: MAIN
CVS Tags: OPENBSD_4_9_BASE,
OPENBSD_4_9
Changes since 1.71: +3 -3 lines
Diff to previous 1.71 (colored)
The heimdal code switched to using DES from libcrypto when 0.7.2 was imported over four years ago, so we don't need to link libdes for kerberos anymore. ok mikeb@ deraadt@
Revision 1.71 / (download) - annotate - [select for diffs], Tue Aug 31 11:54:45 2010 UTC (13 years, 9 months ago) by djm
Branch: MAIN
Changes since 1.70: +3 -3 lines
Diff to previous 1.70 (colored)
Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer better performance than plain DH and DSA at the same equivalent symmetric key length, as well as much shorter keys. Only the mandatory sections of RFC5656 are implemented, specifically the three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and ECDSA. Point compression (optional in RFC5656 is NOT implemented). Certificate host and user keys using the new ECDSA key types are supported. Note that this code has not been tested for interoperability and may be subject to change. feedback and ok markus@
Revision 1.70 / (download) - annotate - [select for diffs], Sat Oct 24 11:18:23 2009 UTC (14 years, 7 months ago) by andreas
Branch: MAIN
CVS Tags: OPENBSD_4_8_BASE,
OPENBSD_4_8,
OPENBSD_4_7_BASE,
OPENBSD_4_7
Changes since 1.69: +2 -2 lines
Diff to previous 1.69 (colored)
Dummy implementation of wait_for_roaming_reconnect() for the server side. It doesn't do anything yet but is needed for upcoming changes in roaming_common.c ok markus@
Revision 1.69 / (download) - annotate - [select for diffs], Thu May 28 16:50:16 2009 UTC (15 years ago) by andreas
Branch: MAIN
CVS Tags: OPENBSD_4_6_BASE,
OPENBSD_4_6
Changes since 1.68: +3 -2 lines
Diff to previous 1.68 (colored)
Keep track of number of bytes read and written. Needed for upcoming changes. Most code from Martin Forssen, maf at appgate dot com. ok markus@
Revision 1.68 / (download) - annotate - [select for diffs], Tue Nov 4 08:22:13 2008 UTC (15 years, 7 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_4_5_BASE,
OPENBSD_4_5
Changes since 1.67: +2 -2 lines
Diff to previous 1.67 (colored)
Add support for an experimental zero-knowledge password authentication method using the J-PAKE protocol described in F. Hao, P. Ryan, "Password Authenticated Key Exchange by Juggling", 16th Workshop on Security Protocols, Cambridge, April 2008. This method allows password-based authentication without exposing the password to the server. Instead, the client and server exchange cryptographic proofs to demonstrate of knowledge of the password while revealing nothing useful to an attacker or compromised endpoint. This is experimental, work-in-progress code and is presently compiled-time disabled (turn on -DJPAKE in Makefile.inc). "just commit it. It isn't too intrusive." deraadt@
Revision 1.67 / (download) - annotate - [select for diffs], Mon Feb 4 21:53:00 2008 UTC (16 years, 3 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_4_4_BASE,
OPENBSD_4_4,
OPENBSD_4_3_BASE,
OPENBSD_4_3
Changes since 1.66: +2 -2 lines
Diff to previous 1.66 (colored)
link sftp-server into sshd; feedback and ok djm@
Revision 1.66 / (download) - annotate - [select for diffs], Fri Sep 21 08:15:29 2007 UTC (16 years, 8 months ago) by djm
Branch: MAIN
Changes since 1.65: +2 -9 lines
Diff to previous 1.65 (colored)
unifdef -DBSD_AUTH unifdef -USKEY These options have been in use for some years; ok markus@ "no objection" millert@
Revision 1.65 / (download) - annotate - [select for diffs], Thu Aug 23 02:49:43 2007 UTC (16 years, 9 months ago) by djm
Branch: MAIN
Changes since 1.64: +2 -2 lines
Diff to previous 1.64 (colored)
unifdef HAVE_LOGIN_CAP; ok deraadt@ millert@
Revision 1.64 / (download) - annotate - [select for diffs], Mon Aug 23 14:26:39 2004 UTC (19 years, 9 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_4_2_BASE,
OPENBSD_4_2,
OPENBSD_4_1_BASE,
OPENBSD_4_1,
OPENBSD_4_0_BASE,
OPENBSD_4_0,
OPENBSD_3_9_BASE,
OPENBSD_3_9,
OPENBSD_3_8_BASE,
OPENBSD_3_8,
OPENBSD_3_7_BASE,
OPENBSD_3_7,
OPENBSD_3_6_BASE,
OPENBSD_3_6
Changes since 1.63: +2 -2 lines
Diff to previous 1.63 (colored)
Use permanently_set_uid() in ssh and ssh-keysign for consistency, matches change in Portable; ok markus@
Revision 1.61.2.2 / (download) - annotate - [select for diffs], Thu Aug 19 22:37:33 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.61.2.1: +3 -3 lines
Diff to previous 1.61.2.1 (colored) to branchpoint 1.61 (colored) next main 1.62 (colored)
upgrade to OpenSSH 3.9
Revision 1.62.2.1 / (download) - annotate - [select for diffs], Thu Aug 19 04:13:28 2004 UTC (19 years, 9 months ago) by brad
Branch: OPENBSD_3_5
Changes since 1.62: +2 -2 lines
Diff to previous 1.62 (colored) next main 1.63 (colored)
upgrade to OpenSSH 3.9
Revision 1.63 / (download) - annotate - [select for diffs], Sun Jun 13 15:03:02 2004 UTC (19 years, 11 months ago) by djm
Branch: MAIN
Changes since 1.62: +2 -2 lines
Diff to previous 1.62 (colored)
implement session multiplexing in the client (the server has supported this since 2.0); ok markus@
Revision 1.52.2.2 / (download) - annotate - [select for diffs], Thu Mar 4 18:18:17 2004 UTC (20 years, 3 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.52.2.1: +2 -2 lines
Diff to previous 1.52.2.1 (colored) to branchpoint 1.52 (colored) next main 1.53 (colored)
upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8upgrade to OpenSSH 3.8
Revision 1.61.2.1 / (download) - annotate - [select for diffs], Sat Feb 28 03:51:35 2004 UTC (20 years, 3 months ago) by brad
Branch: OPENBSD_3_4
Changes since 1.61: +2 -2 lines
Diff to previous 1.61 (colored)
upgrade to OpenSSH 3.8
Revision 1.62 / (download) - annotate - [select for diffs], Tue Dec 23 16:12:10 2003 UTC (20 years, 5 months ago) by jakob
Branch: MAIN
CVS Tags: OPENBSD_3_5_BASE
Branch point for: OPENBSD_3_5
Changes since 1.61: +2 -2 lines
Diff to previous 1.61 (colored)
implement KerberosGetAFSToken server option. ok markus@, beck@
Revision 1.51.2.2 / (download) - annotate - [select for diffs], Tue Sep 16 21:20:30 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_2
Changes since 1.51.2.1: +13 -22 lines
Diff to previous 1.51.2.1 (colored) to branchpoint 1.51 (colored) next main 1.52 (colored)
upgrade to OpenSSH 3.7
Revision 1.52.2.1 / (download) - annotate - [select for diffs], Tue Sep 16 20:50:45 2003 UTC (20 years, 8 months ago) by brad
Branch: OPENBSD_3_3
Changes since 1.52: +13 -22 lines
Diff to previous 1.52 (colored)
upgrade to OpenSSH 3.7
Revision 1.61 / (download) - annotate - [select for diffs], Sun Aug 24 18:17:38 2003 UTC (20 years, 9 months ago) by deraadt
Branch: MAIN
CVS Tags: OPENBSD_3_4_BASE
Branch point for: OPENBSD_3_4
Changes since 1.60: +9 -12 lines
Diff to previous 1.60 (colored)
re-organize Makefiles so that static builds actually work
Revision 1.60 / (download) - annotate - [select for diffs], Fri Aug 22 13:22:27 2003 UTC (20 years, 9 months ago) by markus
Branch: MAIN
Changes since 1.59: +2 -2 lines
Diff to previous 1.59 (colored)
nuke "kerberos-2@ssh.com"
Revision 1.59 / (download) - annotate - [select for diffs], Fri Aug 22 10:56:09 2003 UTC (20 years, 9 months ago) by markus
Branch: MAIN
Changes since 1.58: +9 -3 lines
Diff to previous 1.58 (colored)
support GSS API user authentication; patches from Simon Wilkinson, stripped down and tested by Jakob and myself.
Revision 1.58 / (download) - annotate - [select for diffs], Wed Jul 16 19:10:13 2003 UTC (20 years, 10 months ago) by deraadt
Branch: MAIN
Changes since 1.57: +5 -5 lines
Diff to previous 1.57 (colored)
some minor DPADD changes
Revision 1.57 / (download) - annotate - [select for diffs], Tue Jul 15 19:02:20 2003 UTC (20 years, 10 months ago) by deraadt
Branch: MAIN
Changes since 1.56: +3 -3 lines
Diff to previous 1.56 (colored)
stop using libcom_err, it is built into krb5
Revision 1.56 / (download) - annotate - [select for diffs], Sat May 17 01:31:21 2003 UTC (21 years ago) by hin
Branch: MAIN
Changes since 1.55: +2 -2 lines
Diff to previous 1.55 (colored)
Don't link with unneeded kerberos libraries
Revision 1.55 / (download) - annotate - [select for diffs], Wed May 14 02:15:48 2003 UTC (21 years ago) by markus
Branch: MAIN
Changes since 1.54: +2 -2 lines
Diff to previous 1.54 (colored)
implement kerberos over ssh2 ("kerberos-2@ssh.com"); tested with jakob@
server interops with commercial client; ok jakob@ djm@
Revision 1.54 / (download) - annotate - [select for diffs], Thu Apr 10 00:17:52 2003 UTC (21 years, 1 month ago) by pvalchev
Branch: MAIN
Changes since 1.53: +2 -2 lines
Diff to previous 1.53 (colored)
unbreak linking on elf - stupid kerberos
Revision 1.53 / (download) - annotate - [select for diffs], Wed Apr 9 08:24:24 2003 UTC (21 years, 1 month ago) by hin
Branch: MAIN
Changes since 1.52: +1 -13 lines
Diff to previous 1.52 (colored)
Disable Kerberos 4 support. ok markus@
Revision 1.47.2.4 / (download) - annotate - [select for diffs], Thu Apr 3 22:35:21 2003 UTC (21 years, 2 months ago) by miod
Branch: OPENBSD_3_1
Changes since 1.47.2.3: +4 -3 lines
Diff to previous 1.47.2.3 (colored) to branchpoint 1.47 (colored) next main 1.48 (colored)
Merge OpenSSH 3.6.1
Revision 1.51.2.1 / (download) - annotate - [select for diffs], Tue Apr 1 00:12:14 2003 UTC (21 years, 2 months ago) by margarida
Branch: OPENBSD_3_2
Changes since 1.51: +4 -3 lines
Diff to previous 1.51 (colored)
Update to OpenSSH 3.6
Revision 1.52 / (download) - annotate - [select for diffs], Fri Feb 21 09:04:09 2003 UTC (21 years, 3 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_3_BASE
Branch point for: OPENBSD_3_3
Changes since 1.51: +4 -3 lines
Diff to previous 1.51 (colored)
move server only kex and monitor code to sshd.
Revision 1.47.2.3 / (download) - annotate - [select for diffs], Wed Jun 26 15:30:40 2002 UTC (21 years, 11 months ago) by jason
Branch: OPENBSD_3_1
Changes since 1.47.2.2: +6 -4 lines
Diff to previous 1.47.2.2 (colored) to branchpoint 1.47 (colored)
Pull in OpenSSH-3.4
Revision 1.45.2.3 / (download) - annotate - [select for diffs], Sat Jun 22 07:24:42 2002 UTC (21 years, 11 months ago) by miod
Branch: OPENBSD_3_0
Changes since 1.45.2.2: +6 -4 lines
Diff to previous 1.45.2.2 (colored) to branchpoint 1.45 (colored) next main 1.46 (colored)
Update OpenSSH 3.3, files missed in previous commit.
Revision 1.51 / (download) - annotate - [select for diffs], Thu Jun 20 19:56:07 2002 UTC (21 years, 11 months ago) by stevesk
Branch: MAIN
CVS Tags: OPENBSD_3_2_BASE
Branch point for: OPENBSD_3_2
Changes since 1.50: +2 -2 lines
Diff to previous 1.50 (colored)
move configuration file options from ssh.1/sshd.8 to ssh_config.5/sshd_config.5; ok deraadt@ millert@
Revision 1.50 / (download) - annotate - [select for diffs], Tue Jun 11 04:14:26 2002 UTC (21 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.49: +2 -2 lines
Diff to previous 1.49 (colored)
no longer use uidswap.[ch] from the ssh client run less code with euid==0 if ssh is installed setuid root just switch the euid, don't switch the complete set of groups (this is only needed by sshd). ok provos@
Revision 1.38.2.6 / (download) - annotate - [select for diffs], Sun Jun 2 22:56:53 2002 UTC (22 years ago) by miod
Branch: OPENBSD_2_9
Changes since 1.38.2.5: +5 -5 lines
Diff to previous 1.38.2.5 (colored) to branchpoint 1.38 (colored) next main 1.39 (colored)
Upgrade to OpenSSH 3.2.3. Except for improbable compilation error fixes, this should be the last commit made to the 2.9-STABLE branche. Have fun upgrading.
Revision 1.49 / (download) - annotate - [select for diffs], Sat May 25 18:51:07 2002 UTC (22 years ago) by markus
Branch: MAIN
Changes since 1.48: +4 -2 lines
Diff to previous 1.48 (colored)
split auth2.c into one file per method; ok provos@/deraadt@
Revision 1.47.2.2 / (download) - annotate - [select for diffs], Sat May 18 04:50:38 2002 UTC (22 years ago) by jason
Branch: OPENBSD_3_1
Changes since 1.47.2.1: +0 -0 lines
Diff to previous 1.47.2.1 (colored) to branchpoint 1.47 (colored)
Update to OpenSSH-3.2.3
Revision 1.47.2.1 / (download) - annotate - [select for diffs], Sat May 18 04:12:11 2002 UTC (22 years ago) by jason
Branch: OPENBSD_3_1
Changes since 1.47: +4 -4 lines
Diff to previous 1.47 (colored)
Update to OpenSSH-3.2.2
Revision 1.45.2.2 / (download) - annotate - [select for diffs], Fri May 17 00:03:41 2002 UTC (22 years ago) by miod
Branch: OPENBSD_3_0
Changes since 1.45.2.1: +5 -5 lines
Diff to previous 1.45.2.1 (colored) to branchpoint 1.45 (colored)
Update OpenSSH to version 3.2.2.
Revision 1.48 / (download) - annotate - [select for diffs], Sat May 11 00:20:18 2002 UTC (22 years ago) by espie
Branch: MAIN
Changes since 1.47: +4 -4 lines
Diff to previous 1.47 (colored)
Add missing libraries to bsd.prog.mk (mostly kerberosV) Use them in DPADD throughout the tree. Fix a few mispells (LIBMATH -> LIBM...) Wipe obsolete lib (LIBRESOLV) Sort added missing libraries, move obsolete stuff apart. Synch documentation in bsd.README ok deraadt@
Revision 1.47 / (download) - annotate - [select for diffs], Mon Mar 18 17:50:31 2002 UTC (22 years, 2 months ago) by provos
Branch: MAIN
CVS Tags: OPENBSD_3_1_BASE
Branch point for: OPENBSD_3_1
Changes since 1.46: +2 -2 lines
Diff to previous 1.46 (colored)
integrate privilege separated openssh; its turned off by default for now. work done by me and markus@
Revision 1.38.2.5 / (download) - annotate - [select for diffs], Sat Mar 9 00:24:23 2002 UTC (22 years, 2 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.38.2.4: +2 -2 lines
Diff to previous 1.38.2.4 (colored) to branchpoint 1.38 (colored)
Merge OpenSSH 3.1, keeping /etc as configuration files directory (i.e. OpenSSH 3.1 + openbsd29_3.1.patch)
Revision 1.31.2.7 / (download) - annotate - [select for diffs], Fri Mar 8 17:04:44 2002 UTC (22 years, 2 months ago) by brad
Branch: OPENBSD_2_8
Changes since 1.31.2.6: +7 -7 lines
Diff to previous 1.31.2.6 (colored) to branchpoint 1.31 (colored) next main 1.32 (colored)
Merge OpenSSH 3.1.
Revision 1.45.2.1 / (download) - annotate - [select for diffs], Thu Mar 7 17:37:48 2002 UTC (22 years, 3 months ago) by jason
Branch: OPENBSD_3_0
Changes since 1.45: +2 -2 lines
Diff to previous 1.45 (colored)
Update to OpenSSH-3.1 on 3.0-stable branch
Revision 1.46 / (download) - annotate - [select for diffs], Tue Mar 5 00:49:51 2002 UTC (22 years, 3 months ago) by deraadt
Branch: MAIN
Changes since 1.45: +2 -2 lines
Diff to previous 1.45 (colored)
and -ldes here too
Revision 1.38.2.4 / (download) - annotate - [select for diffs], Mon Dec 3 00:36:50 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.38.2.3: +6 -6 lines
Diff to previous 1.38.2.3 (colored) to branchpoint 1.38 (colored)
Upgrade OpenSSH to version 3.0.2.
Revision 1.38.2.3 / (download) - annotate - [select for diffs], Fri Nov 16 18:45:24 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.38.2.2: +3 -2 lines
Diff to previous 1.38.2.2 (colored) to branchpoint 1.38 (colored)
Oops, I was 200% sure that 2.9 had BSD authentication, my bad. Pointed out by various people. Sorry for the inconvenience.
Revision 1.38.2.2 / (download) - annotate - [select for diffs], Thu Nov 15 22:51:55 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_9
Changes since 1.38.2.1: +7 -8 lines
Diff to previous 1.38.2.1 (colored) to branchpoint 1.38 (colored)
CVS hates me.
Revision 1.31.2.6 / (download) - annotate - [select for diffs], Thu Nov 15 22:50:34 2001 UTC (22 years, 6 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.31.2.5: +6 -6 lines
Diff to previous 1.31.2.5 (colored) to branchpoint 1.31 (colored)
Merge OpenSSH 3.0.1. This is likely to be the last commit to the 2.8-STABLE branch.
Revision 1.45 / (download) - annotate - [select for diffs], Sun Oct 7 18:14:20 2001 UTC (22 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_3_0_BASE
Branch point for: OPENBSD_3_0
Changes since 1.44: +6 -6 lines
Diff to previous 1.44 (colored)
BSD_AUTH supersedes SKEY, so SKEY is commented out.
Revision 1.38.2.1 / (download) - annotate - [select for diffs], Thu Sep 27 19:03:56 2001 UTC (22 years, 8 months ago) by jason
Branch: OPENBSD_2_9
Changes since 1.38: +11 -2 lines
Diff to previous 1.38 (colored)
Pull in OpenSSH-2.9.9
Revision 1.31.2.5 / (download) - annotate - [select for diffs], Thu Sep 27 00:16:05 2001 UTC (22 years, 8 months ago) by miod
Branch: OPENBSD_2_8
Changes since 1.31.2.4: +11 -2 lines
Diff to previous 1.31.2.4 (colored) to branchpoint 1.31 (colored)
Pull in OpenSSH 2.9.9 to the 2.8 branch.
Revision 1.44 / (download) - annotate - [select for diffs], Mon Sep 10 22:44:47 2001 UTC (22 years, 8 months ago) by jason
Branch: MAIN
Changes since 1.43: +8 -8 lines
Diff to previous 1.43 (colored)
link k5 before k4 (new binutils is more picky than old ld)
Revision 1.43 / (download) - annotate - [select for diffs], Thu Jun 28 02:33:43 2001 UTC (22 years, 11 months ago) by hin
Branch: MAIN
Changes since 1.42: +2 -2 lines
Diff to previous 1.42 (colored)
Link with libcom_err for kerberos5
Revision 1.42 / (download) - annotate - [select for diffs], Tue Jun 26 17:52:41 2001 UTC (22 years, 11 months ago) by dugsong
Branch: MAIN
Changes since 1.41: +8 -7 lines
Diff to previous 1.41 (colored)
only build Kerberos v5 support with KERBEROS5=yes
Revision 1.41 / (download) - annotate - [select for diffs], Tue Jun 26 16:15:26 2001 UTC (22 years, 11 months ago) by dugsong
Branch: MAIN
Changes since 1.40: +7 -1 lines
Diff to previous 1.40 (colored)
Kerberos v5 support for SSH1, mostly from Assar Westerlund <assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
Revision 1.40 / (download) - annotate - [select for diffs], Tue May 29 22:23:58 2001 UTC (23 years ago) by millert
Branch: MAIN
Changes since 1.39: +2 -2 lines
Diff to previous 1.39 (colored)
build in support for BSD authentication
Revision 1.39 / (download) - annotate - [select for diffs], Fri May 18 14:13:29 2001 UTC (23 years ago) by markus
Branch: MAIN
Changes since 1.38: +3 -2 lines
Diff to previous 1.38 (colored)
improved kbd-interactive support. work by per@appgate.com and me
Revision 1.31.2.4 / (download) - annotate - [select for diffs], Mon May 7 21:09:42 2001 UTC (23 years, 1 month ago) by jason
Branch: OPENBSD_2_8
Changes since 1.31.2.3: +2 -2 lines
Diff to previous 1.31.2.3 (colored) to branchpoint 1.31 (colored)
Pull in OpenSSH-2.9 to 2.8 branch.
Revision 1.38 / (download) - annotate - [select for diffs], Thu Mar 29 21:17:40 2001 UTC (23 years, 2 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_9_BASE
Branch point for: OPENBSD_2_9
Changes since 1.37: +2 -2 lines
Diff to previous 1.37 (colored)
prepare for rekeying: move DH code to dh.c
Revision 1.31.2.3 / (download) - annotate - [select for diffs], Wed Mar 21 19:46:34 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.31.2.2: +2 -2 lines
Diff to previous 1.31.2.2 (colored) to branchpoint 1.31 (colored)
Pull in OpenSSH-2.5.2 for 2.8 branch.
Revision 1.26.2.4 / (download) - annotate - [select for diffs], Wed Mar 21 18:53:31 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.26.2.3: +2 -2 lines
Diff to previous 1.26.2.3 (colored) to branchpoint 1.26 (colored) next main 1.27 (colored)
Pull in OpenSSH-2.5.2 for 2.7 branch.
Revision 1.26.2.3 / (download) - annotate - [select for diffs], Mon Mar 12 15:44:21 2001 UTC (23 years, 2 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.26.2.2: +5 -6 lines
Diff to previous 1.26.2.2 (colored) to branchpoint 1.26 (colored)
OpenSSH-2.5.1 for 2.7 patch branch
Revision 1.37 / (download) - annotate - [select for diffs], Sun Mar 4 01:46:30 2001 UTC (23 years, 3 months ago) by djm
Branch: MAIN
Changes since 1.36: +2 -2 lines
Diff to previous 1.36 (colored)
Rename pty.[ch] -> sshpty.[ch] and login.[ch] to sshlogin.[ch] to avoid header conflicts in portable; ok markus@
Revision 1.36 / (download) - annotate - [select for diffs], Sat Mar 3 23:59:40 2001 UTC (23 years, 3 months ago) by markus
Branch: MAIN
Changes since 1.35: +2 -2 lines
Diff to previous 1.35 (colored)
log*.c -> log.c
Revision 1.31.2.2 / (download) - annotate - [select for diffs], Mon Feb 19 17:19:53 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.31.2.1: +0 -0 lines
Diff to previous 1.31.2.1 (colored) to branchpoint 1.31 (colored)
Pull in OpenSSH-2.5.1
Revision 1.31.2.1 / (download) - annotate - [select for diffs], Fri Feb 16 20:13:31 2001 UTC (23 years, 3 months ago) by jason
Branch: OPENBSD_2_8
Changes since 1.31: +4 -5 lines
Diff to previous 1.31 (colored)
Pull in OpenSSH 2.5.0
Revision 1.35 / (download) - annotate - [select for diffs], Mon Jan 29 01:58:23 2001 UTC (23 years, 4 months ago) by niklas
Branch: MAIN
Changes since 1.34: +2 -0 lines
Diff to previous 1.34 (colored)
$OpenBSD$
Revision 1.34 / (download) - annotate - [select for diffs], Thu Jan 18 17:12:43 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.33: +1 -1 lines
Diff to previous 1.33 (colored)
rename *-skey.c *-chall.c since the files are not skey specific
Revision 1.33 / (download) - annotate - [select for diffs], Thu Jan 18 17:00:00 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.32: +1 -5 lines
Diff to previous 1.32 (colored)
1) removes fake skey from sshd, since this will be much harder with /usr/libexec/auth/login_XXX 2) share/unify code used in ssh-1 and ssh-2 authentication (server side) 3) make addition of BSD_AUTH and other challenge reponse methods easier.
Revision 1.32 / (download) - annotate - [select for diffs], Sat Jan 13 18:56:48 2001 UTC (23 years, 4 months ago) by markus
Branch: MAIN
Changes since 1.31: +2 -1 lines
Diff to previous 1.31 (colored)
support supplementary group in {Allow,Deny}Groups
from stevesk@pobox.com
Revision 1.26.2.2 / (download) - annotate - [select for diffs], Wed Nov 8 21:27:42 2000 UTC (23 years, 6 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.26.2.1: +7 -7 lines
Diff to previous 1.26.2.1 (colored) to branchpoint 1.26 (colored)
openssh-2.3.0 for 2.7 patch branch
Revision 1.31 / (download) - annotate - [select for diffs], Wed Oct 11 20:14:40 2000 UTC (23 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_8_BASE
Branch point for: OPENBSD_2_8
Changes since 1.30: +1 -1 lines
Diff to previous 1.30 (colored)
add support for s/key (kbd-interactive) to ssh2, based on work by mkiernan@avantgo.com and me
Revision 1.30 / (download) - annotate - [select for diffs], Wed Oct 11 04:02:18 2000 UTC (23 years, 7 months ago) by provos
Branch: MAIN
Changes since 1.29: +1 -1 lines
Diff to previous 1.29 (colored)
First rough implementation of the diffie-hellman group exchange. The client can ask the server for bigger groups to perform the diffie-hellman in, thus increasing the attack complexity when using ciphers with longer keys. University of Windsor provided network, T the company.
Revision 1.29 / (download) - annotate - [select for diffs], Sun Sep 3 18:41:19 2000 UTC (23 years, 9 months ago) by espie
Branch: MAIN
Changes since 1.28: +5 -5 lines
Diff to previous 1.28 (colored)
Boring... Add :L modifier to all tweakable variables tests. Closes PR 1246
Revision 1.26.2.1 / (download) - annotate - [select for diffs], Fri Sep 1 18:13:25 2000 UTC (23 years, 9 months ago) by jason
Branch: OPENBSD_2_7
Changes since 1.26: +2 -1 lines
Diff to previous 1.26 (colored)
Pull in OpenSSH-2.2.0 to 2.7 patch branch
Revision 1.28 / (download) - annotate - [select for diffs], Sun Aug 20 18:42:41 2000 UTC (23 years, 9 months ago) by millert
Branch: MAIN
Changes since 1.27: +1 -0 lines
Diff to previous 1.27 (colored)
Add calls to setusercontext() and login_get*(). We basically call setusercontext() in most places where previously we did a setlogin(). Add default login.conf file and put root in the "daemon" login class.
Revision 1.27 / (download) - annotate - [select for diffs], Sun Jun 18 04:05:02 2000 UTC (23 years, 11 months ago) by markus
Branch: MAIN
Changes since 1.26: +1 -1 lines
Diff to previous 1.26 (colored)
split auth-rsa option parsing into auth-options add options support to authorized_keys2
Revision 1.26 / (download) - annotate - [select for diffs], Wed Apr 26 21:31:57 2000 UTC (24 years, 1 month ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_7_BASE
Branch point for: OPENBSD_2_7
Changes since 1.25: +2 -2 lines
Diff to previous 1.25 (colored)
sync
Revision 1.25 / (download) - annotate - [select for diffs], Tue Mar 28 21:15:46 2000 UTC (24 years, 2 months ago) by markus
Branch: MAIN
Changes since 1.24: +2 -1 lines
Diff to previous 1.24 (colored)
split sshd.c -> auth.c session.c sshd.c plus cleanup and goto-removal
Revision 1.24 / (download) - annotate - [select for diffs], Tue Mar 14 20:13:29 2000 UTC (24 years, 2 months ago) by deraadt
Branch: MAIN
Changes since 1.23: +1 -1 lines
Diff to previous 1.23 (colored)
support DESTDIR include fetching; dm
Revision 1.23 / (download) - annotate - [select for diffs], Wed Mar 1 20:00:49 2000 UTC (24 years, 3 months ago) by deraadt
Branch: MAIN
Changes since 1.22: +4 -4 lines
Diff to previous 1.22 (colored)
order kerberos libraries
Revision 1.22 / (download) - annotate - [select for diffs], Mon Dec 6 21:47:12 1999 UTC (24 years, 6 months ago) by deraadt
Branch: MAIN
Changes since 1.21: +1 -1 lines
Diff to previous 1.21 (colored)
atomicio() via lib
Revision 1.21 / (download) - annotate - [select for diffs], Mon Dec 6 20:15:38 1999 UTC (24 years, 6 months ago) by deraadt
Branch: MAIN
Changes since 1.20: +1 -1 lines
Diff to previous 1.20 (colored)
move atomicio into it's own file. wrap all socket write()s which were doing write(sock, buf, len) != len, with atomicio() calls.
Revision 1.20 / (download) - annotate - [select for diffs], Mon Oct 25 20:27:27 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
Changes since 1.19: +1 -6 lines
Diff to previous 1.19 (colored)
move common files to ./lib and link libssh.a, tested with and w/o obj
Revision 1.19 / (download) - annotate - [select for diffs], Sat Oct 16 20:47:15 1999 UTC (24 years, 7 months ago) by markus
Branch: MAIN
CVS Tags: OPENBSD_2_6_BASE,
OPENBSD_2_6
Changes since 1.18: +2 -1 lines
Diff to previous 1.18 (colored)
support for SSH protocol 1.5 which is poorly documented, the RFC.troff lies. interops (x11,agent,etc) with 1.2.27 and protocol 1.3
Revision 1.18 / (download) - annotate - [select for diffs], Thu Oct 7 21:45:03 1999 UTC (24 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.17: +10 -0 lines
Diff to previous 1.17 (colored)
add skey to sshd:
1) pass *pw to auth_password() not user_name, do_authentication already
keeps private copy of struct passwd for current user.
2) limit authentication attemps to 5, otherwise
ssh -o 'NumberOfPasswordPrompts 100000' host
lets you enter 100000 passwds
3) make s/key a run-time option in /etc/sshd_config
4) generate fake skeys,
for s/key for nonexisting users, too
limit auth-tries for nonexisting users, too.
Note that
% ssh -l nonexisting-user -o 'NumberOfPasswordPrompts 100000' host
has NO limits in ssh-1.2.27
Revision 1.17 / (download) - annotate - [select for diffs], Wed Oct 6 22:24:56 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.16: +8 -3 lines
Diff to previous 1.16 (colored)
scp should not link against kerberos stuff
Revision 1.16 / (download) - annotate - [select for diffs], Tue Oct 5 01:23:54 1999 UTC (24 years, 8 months ago) by dugsong
Branch: MAIN
Changes since 1.15: +1 -1 lines
Diff to previous 1.15 (colored)
crc32 compensation attack fix from CORE-SDI. "it's not crypto..." -- deraadt@
Revision 1.15 / (download) - annotate - [select for diffs], Mon Oct 4 20:56:28 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.14: +4 -5 lines
Diff to previous 1.14 (colored)
more shrinking
Revision 1.14 / (download) - annotate - [select for diffs], Mon Oct 4 20:52:44 1999 UTC (24 years, 8 months ago) by markus
Branch: MAIN
Changes since 1.13: +1 -7 lines
Diff to previous 1.13 (colored)
nuked minfd. sigh. hope this is the last one.
Revision 1.13 / (download) - annotate - [select for diffs], Sun Oct 3 17:58:06 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.12: +6 -0 lines
Diff to previous 1.12 (colored)
libwrap, ick, yuck
Revision 1.12 / (download) - annotate - [select for diffs], Fri Oct 1 19:54:13 1999 UTC (24 years, 8 months ago) by beck
Branch: MAIN
Changes since 1.11: +2 -2 lines
Diff to previous 1.11 (colored)
Remove kerberos libdes - it's all in libcrypto
Revision 1.11 / (download) - annotate - [select for diffs], Fri Oct 1 17:40:01 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.10: +3 -2 lines
Diff to previous 1.10 (colored)
Why do I need this library dependency workaround for static builds.. anyone?
Revision 1.10 / (download) - annotate - [select for diffs], Thu Sep 30 17:08:53 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.9: +1 -1 lines
Diff to previous 1.9 (colored)
use libc md5
Revision 1.9 / (download) - annotate - [select for diffs], Thu Sep 30 00:17:08 1999 UTC (24 years, 8 months ago) by provos
Branch: MAIN
Changes since 1.8: +1 -1 lines
Diff to previous 1.8 (colored)
revert last commit. somethign was out of sync.
Revision 1.8 / (download) - annotate - [select for diffs], Thu Sep 30 00:10:00 1999 UTC (24 years, 8 months ago) by provos
Branch: MAIN
Changes since 1.7: +1 -1 lines
Diff to previous 1.7 (colored)
link with -lkrb
Revision 1.7 / (download) - annotate - [select for diffs], Wed Sep 29 18:16:23 1999 UTC (24 years, 8 months ago) by dugsong
Branch: MAIN
Changes since 1.6: +13 -3 lines
Diff to previous 1.6 (colored)
update krb4/AFS support to ssh-1.2.27-afs-kerberos-pl1 level, clean up unused variables, update manpages
Revision 1.6 / (download) - annotate - [select for diffs], Wed Sep 29 12:27:40 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.5: +1 -0 lines
Diff to previous 1.5 (colored)
DPADD; mickey
Revision 1.5 / (download) - annotate - [select for diffs], Wed Sep 29 00:14:38 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.4: +1 -1 lines
Diff to previous 1.4 (colored)
no need for double libraries
Revision 1.4 / (download) - annotate - [select for diffs], Wed Sep 29 00:09:50 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.3: +4 -4 lines
Diff to previous 1.3 (colored)
krb4 support; evanc@concer.to
Revision 1.3 / (download) - annotate - [select for diffs], Tue Sep 28 04:45:38 1999 UTC (24 years, 8 months ago) by provos
Branch: MAIN
Changes since 1.2: +4 -4 lines
Diff to previous 1.2 (colored)
convert all uses of gmp to SSL bignum convert all used of rsa to SSL rsa functions remove all use of randomstate to OpenBSD arc4random() and arc4_stir() all this done at a long long night in Canada.
Revision 1.2 / (download) - annotate - [select for diffs], Sun Sep 26 21:52:51 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.1: +0 -1 lines
Diff to previous 1.1 (colored)
proper groups for install
Revision 1.1 / (download) - annotate - [select for diffs], Sun Sep 26 21:47:56 1999 UTC (24 years, 8 months ago) by deraadt
Branch: MAIN
build ssh components using our build model