Ben Lindstrom
60260022ee
- markus@cvs.openbsd.org 2001/06/27 04:48:53
...
[auth.c match.c sshd.8]
tridge@samba.org
2001-07-04 04:56:44 +00:00
Ben Lindstrom
88a6b7581b
- mpech@cvs.openbsd.org 2001/06/26 05:48:07
...
[sshd.8]
remove unnecessary .Pp between .It;
millert@ ok
2001-07-04 03:55:21 +00:00
Ben Lindstrom
2464322d7e
- itojun@cvs.openbsd.org 2001/06/23 17:48:18
...
[sftp.1 ssh.1 sshd.8 ssh-keyscan.1]
kill whitespace at EOL.
2001-06-25 05:08:11 +00:00
Ben Lindstrom
3c798d4743
- markus@cvs.openbsd.org 2001/06/23 03:03:59
...
[sshd.8]
draft-ietf-secsh-dh-group-exchange-01.txt
2001-06-25 04:39:22 +00:00
Ben Lindstrom
d6481ea49a
- markus@cvs.openbsd.org 2001/06/23 02:34:33
...
[kexdh.c kexgex.c kex.h pathnames.h readconf.c servconf.h ssh.1
sshconnect1.c sshconnect2.c sshconnect.c sshconnect.h sshd.8]
get rid of known_hosts2, use it for hostkey lookup, but do not
modify.
2001-06-25 04:37:41 +00:00
Ben Lindstrom
f96704d4ef
- markus@cvs.openbsd.org 2001/06/22 21:55:49
...
[auth2.c auth-rsa.c pathnames.h ssh.1 sshd.8 sshd_config
ssh-keygen.1]
merge authorized_keys2 into authorized_keys.
authorized_keys2 is used for backward compat.
(just append authorized_keys2 to authorized_keys).
2001-06-25 04:17:12 +00:00
Ben Lindstrom
ae1c51c208
- provos@cvs.openbsd.org 2001/06/22 21:28:53
...
[sshd.8]
document /etc/moduli
2001-06-25 04:14:59 +00:00
Ben Lindstrom
d2bf0d64d9
- mpech@cvs.openbsd.org 2001/06/22 10:17:51
...
[ssh.1 sshd.8 ssh-keyscan.1]
o) .Sh AUTHOR -> .Sh AUTHORS;
o) remove unnecessary .Pp;
o) better -mdoc style;
o) typo;
o) sort SEE ALSO;
aaron@ ok
2001-06-25 04:10:54 +00:00
Ben Lindstrom
699776e9ec
- markus@cvs.openbsd.org 2001/06/19 14:09:45
...
[session.c sshd.8]
disable x11-fwd if use_login is enabled; from lukem@wasabisystems.com
2001-06-21 03:14:49 +00:00
Ben Lindstrom
34a996877e
- markus@cvs.openbsd.org 2001/06/11 16:04:38
...
[sshd.8]
typo; bdubreuil@crrel.usace.army.mil
2001-06-12 00:23:12 +00:00
Ben Lindstrom
bfb3a0e973
- markus@cvs.openbsd.org 2001/05/20 17:20:36
...
[auth-rsa.c auth.c auth.h auth2.c servconf.c servconf.h sshd.8
sshd_config]
configurable authorized_keys{,2} location; originally from peter@;
ok djm@
2001-06-05 20:25:05 +00:00
Ben Lindstrom
1bda4c835e
- stevesk@cvs.openbsd.org 2001/05/19 19:43:57
...
[misc.c misc.h servconf.c sshd.8 sshd.c]
sshd command-line arguments and configuration file options that
specify time may be expressed using a sequence of the form:
time[qualifier], where time is a positive integer value and qualifier
is one of the following:
<none>,s,m,h,d,w
Examples:
600 600 seconds (10 minutes)
10m 10 minutes
1h30m 1 hour 30 minutes (90 minutes)
ok markus@
2001-06-05 19:59:08 +00:00
Ben Lindstrom
bd0e2de8e5
- markus@cvs.openbsd.org 2001/05/19 16:46:19
...
[ssh.1 sshd.8]
document MACs defaults with .Dq
2001-06-05 19:52:52 +00:00
Ben Lindstrom
608d1d1f9b
- markus@cvs.openbsd.org 2001/05/19 16:08:43
...
[sshd.8]
sort options; Matthew.Stier@fnc.fujitsu.com
2001-06-05 19:33:22 +00:00
Ben Lindstrom
f0609f8bd3
- stevesk@cvs.openbsd.org 2001/05/04 14:21:56
...
[ssh.1 sshd.8]
typos
2001-05-04 22:38:43 +00:00
Damien Miller
f815442116
- (djm) Add new server configuration directive 'PAMAuthenticationViaKbdInt'
...
(default: off), implies KbdInteractiveAuthentication. Suggestion from
markus@
2001-04-25 22:44:14 +10:00
Ben Lindstrom
c65e6a0fec
- markus@cvs.openbsd.org 2001/04/22 23:58:36
...
[ssh-keygen.1 ssh.1 sshd.8]
document hostbased and other cleanup
2001-04-23 13:02:16 +00:00
Ben Lindstrom
160ec62dce
- markus@cvs.openbsd.org 2001/04/22 13:32:27
...
[sftp-server.8 sftp.1 ssh.1 sshd.8]
xref draft-ietf-secsh-*
2001-04-22 17:17:46 +00:00
Ben Lindstrom
bdc2beb678
- (bal) CVS ID fix up and slight manpage fix from OpenBSD tree.
2001-04-16 02:11:52 +00:00
Ben Lindstrom
a8f3972ce6
- stevesk@cvs.openbsd.org 2001/04/15 19:41:21
...
[sshd.8]
some ClientAlive cleanup; ok markus@
2001-04-16 02:03:49 +00:00
Ben Lindstrom
5744dc421d
- beck@cvs.openbsd.org 2001/04/13 22:46:54
...
[channels.c channels.h servconf.c servconf.h serverloop.c sshd.8]
Add options ClientAliveInterval and ClientAliveCountMax to sshd.
This gives the ability to do a "keepalive" via the encrypted channel
which can't be spoofed (unlike TCP keepalives). Useful for when you want
to use ssh connections to authenticate people for something, and know
relatively quickly when they are no longer authenticated. Disabled
by default (of course). ok markus@
2001-04-13 23:28:01 +00:00
Ben Lindstrom
9fce9f02e8
- lebel@cvs.openbsd.org 2001/04/11 16:25:30
...
[sshd.8 sshd.c]
implement the -e option into sshd:
-e When this option is specified, sshd will send the output to the
standard error instead of the system log.
markus@ OK.
2001-04-11 23:10:09 +00:00
Ben Lindstrom
18a82ac029
- itojun@cvs.openbsd.org 2001/04/10 09:13:22
...
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
document id_rsa{.pub,}. markus ok
2001-04-11 15:59:35 +00:00
Ben Lindstrom
1a598a4597
- stevesk@cvs.openbsd.org 2001/04/09 18:00:15
...
[sshd.8]
ListenAddress mandoc from aaron@
2001-04-10 02:48:50 +00:00
Ben Lindstrom
4b3564e6f2
- stevesk@cvs.openbsd.org 2001/04/08 23:28:27
...
[sshd.8]
spelling
2001-04-10 02:41:56 +00:00
Ben Lindstrom
49e57a871a
- stevesk@cvs.openbsd.org 2001/04/08 16:01:36
...
[sshd.8]
document ListenAddress addr:port
2001-04-08 18:02:43 +00:00
Ben Lindstrom
55b99e35c7
- stevesk@cvs.openbsd.org 2001/04/02 14:15:31
...
[sshd.8]
typo; ok markus@
2001-04-02 18:18:21 +00:00
Ben Lindstrom
7bfff36ca3
- stevesk@cvs.openbsd.org 2001/03/25 13:16:11
...
[servconf.c servconf.h session.c sshd.8 sshd_config]
PrintLastLog option; from chip@valinux.com with some minor
changes by me. ok markus@
2001-03-26 05:45:53 +00:00
Damien Miller
a243fde477
- djm@cvs.openbsd.org 2001/03/19 12:10:17
...
[sshd.8]
Document permitopen authorized_keys option; ok markus@
2001-03-19 23:16:08 +11:00
Ben Lindstrom
d58eb5f50e
- deraadt@cvs.openbsd.org 2001/03/07 01:19:06
...
[ssh.1 sshd.8]
the name "secure shell" is boring, noone ever uses it
2001-03-07 06:07:22 +00:00
Ben Lindstrom
c78a187b17
- deraadt@cvs.openbsd.org 2001/03/05 16:07:15
...
[sshd.8]
detail default hmac setup too
2001-03-06 01:06:58 +00:00
Ben Lindstrom
ff8b4940ab
- deraadt@cvs.openbsd.org 2001/03/05 14:28:47
...
[sshd.8]
alpha order; jcs@rt.fm
2001-03-06 01:00:03 +00:00
Ben Lindstrom
fd2e05b95e
- deraadt@cvs.openbsd.org 2001/03/04 18:21:28
...
[sshd.8]
list SSH2 ciphers
2001-03-05 07:48:45 +00:00
Ben Lindstrom
fafea18d68
- stevesk@cvs.openbsd.org 2001/03/04 12:54:04
...
[sshd.8]
spelling
2001-03-05 07:43:27 +00:00
Ben Lindstrom
d9cae22d1a
- stevesk@cvs.openbsd.org 2001/03/04 11:16:06
...
[servconf.c sshd.8]
kill obsolete RandomSeed; ok markus@ deraadt@
2001-03-05 07:42:03 +00:00
Ben Lindstrom
323c98f4a7
- stevesk@cvs.openbsd.org 2001/03/04 11:04:41
...
[sshd.8]
small cleanup and clarify for PermitRootLogin; ok markus@
2001-03-05 07:40:40 +00:00
Ben Lindstrom
92a2e38f8e
- deraadt@cvs.openbsd.org 2001/03/02 18:54:31
...
[atomicio.c atomicio.h auth-chall.c auth.c auth2-chall.c crc32.h
scp.c serverloop.c session.c sftp-server.8 sftp.1 ssh-add.1 ssh-add.c
ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh.1 sshd.8]
make copyright lines the same format
2001-03-05 06:59:27 +00:00
Ben Lindstrom
d7f5b517d5
- deraadt@cvs.openbsd.org 2001/03/02 09:42:49
...
[sshd.8]
doc the dsa/rsa key pair files
2001-03-05 06:57:23 +00:00
Ben Lindstrom
49a098d1b2
- deraadt@cvs.openbsd.org 2001/03/02 06:21:01
...
[sshd.8]
explain SIGHUP better
2001-03-05 06:55:18 +00:00
Ben Lindstrom
ebd888d919
- markus@cvs.openbsd.org 2001/02/22 21:57:27
...
[ssh.1 sshd.8]
typos/grammar from matt@anzen.com
2001-03-05 05:49:29 +00:00
Ben Lindstrom
53992c7cd5
- deraadt@cvs.openbsd.org 2001/02/17 23:48:48
...
[sshd.8]
it's the OpenSSH one
2001-03-05 04:47:55 +00:00
Damien Miller
1d66c1602e
- Document PAM ChallengeResponseAuthentication in sshd.8
...
- Disable and comment ChallengeResponseAuthentication in sshd_config
2001-03-04 00:16:20 +11:00
Ben Lindstrom
d8a9021f36
- markus@cvs.openbsd.org 2001/02/12 16:16:23
...
[auth-passwd.c auth.c auth.h auth1.c auth2.c servconf.c servconf.h
ssh-keygen.c sshd.8]
PermitRootLogin={yes,without-password,forced-commands-only,no}
(before this change, root could login even if PermitRootLogin==no)
2001-02-15 03:08:27 +00:00
Ben Lindstrom
06b33aa0e8
- markus@cvs.openbsd.org 2001/02/11 12:59:25
...
[Makefile.in sshd.8 sshconnect2.c readconf.h readconf.c packet.c
sshd.c ssh.c ssh.1 servconf.h servconf.c myproposal.h kex.h kex.c]
1) clean up the MAC support for SSH-2
2) allow you to specify the MAC with 'ssh -m'
3) or the 'MACs' keyword in ssh(d)_config
4) add hmac-{md5,sha1}-96
ok stevesk@, provos@
2001-02-15 03:01:59 +00:00
Ben Lindstrom
a1ebd89d24
Sync w/ OpenBSD
2001-02-10 22:19:23 +00:00
Damien Miller
3380426358
NB: big update - may break stuff. Please test!
...
- (djm) OpenBSD CVS sync:
- markus@cvs.openbsd.org 2001/02/03 03:08:38
[auth-options.c auth-rh-rsa.c auth-rhosts.c auth.c canohost.c]
[canohost.h servconf.c servconf.h session.c sshconnect1.c sshd.8]
[sshd_config]
make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@
- markus@cvs.openbsd.org 2001/02/03 03:19:51
[ssh.1 sshd.8 sshd_config]
Skey is now called ChallengeResponse
- markus@cvs.openbsd.org 2001/02/03 03:43:09
[sshd.8]
use no-pty option in .ssh/authorized_keys* if you need a 8-bit clean
channel. note from Erik.Anggard@cygate.se (pr/1659)
- stevesk@cvs.openbsd.org 2001/02/03 10:03:06
[ssh.1]
typos; ok markus@
- djm@cvs.openbsd.org 2001/02/04 04:11:56
[scp.1 sftp-server.c ssh.1 sshd.8 sftp-client.c sftp-client.h]
[sftp-common.c sftp-common.h sftp-int.c sftp-int.h sftp.1 sftp.c]
Basic interactive sftp client; ok theo@
- (djm) Update RPM specs for new sftp binary
- (djm) Update several bits for new optional reverse lookup stuff. I
think I got them all.
2001-02-04 23:20:18 +11:00
Ben Lindstrom
a73335004e
- stevesk@cvs.openbsd.org 2001/01/28 20:43:25
...
[sshd.8]
spelling. ok markus@
2001-01-29 08:44:03 +00:00
Ben Lindstrom
c12a6b7066
- markus@cvs.openbsd.org 2001/01/28 10:37:26
...
[sshd.c sshd.8]
remove -Q, no longer needed
2001-01-29 08:41:05 +00:00
Ben Lindstrom
8eec2c8f06
- markus@cvs.openbsd.org 2001/01/28 10:24:04
...
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 sshd.8]
cleanup AUTHORS sections
2001-01-29 08:39:16 +00:00
Ben Lindstrom
226cfa0378
Hopefully things did not get mixed around too much. It compiles under
...
Linux and works. So that is at least a good sign. =)
20010122
- (bal) OpenBSD Resync
- markus@cvs.openbsd.org 2001/01/19 12:45:26 GMT 2001 by markus
[servconf.c ssh.h sshd.c]
only auth-chall.c needs #ifdef SKEY
- markus@cvs.openbsd.org 2001/01/19 15:55:10 GMT 2001 by markus
[auth-krb4.c auth-options.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
auth1.c auth2.c channels.c clientloop.c dh.c dispatch.c nchan.c
packet.c pathname.h readconf.c scp.c servconf.c serverloop.c
session.c ssh-add.c ssh-keygen.c ssh-keyscan.c ssh.c ssh.h
ssh1.h sshconnect1.c sshd.c ttymodes.c]
move ssh1 definitions to ssh1.h, pathnames to pathnames.h
- markus@cvs.openbsd.org 2001/01/19 16:48:14
[sshd.8]
fix typo; from stevesk@
- markus@cvs.openbsd.org 2001/01/19 16:50:58
[ssh-dss.c]
clear and free digest, make consistent with other code (use dlen); from
stevesk@
- markus@cvs.openbsd.org 2001/01/20 15:55:20 GMT 2001 by markus
[auth-options.c auth-options.h auth-rsa.c auth2.c]
pass the filename to auth_parse_options()
- markus@cvs.openbsd.org 2001/01/20 17:59:40 GMT 2001
[readconf.c]
fix SIGSEGV from -o ""; problem noted by jehsom@togetherweb.com
- stevesk@cvs.openbsd.org 2001/01/20 18:20:29
[sshconnect2.c]
dh_new_group() does not return NULL. ok markus@
- markus@cvs.openbsd.org 2001/01/20 21:33:42
[ssh-add.c]
do not loop forever if askpass does not exist; from
andrew@pimlott.ne.mediaone.net
- djm@cvs.openbsd.org 2001/01/20 23:00:56
[servconf.c]
Check for NULL return from strdelim; ok markus
- djm@cvs.openbsd.org 2001/01/20 23:02:07
[readconf.c]
KNF; ok markus
- jakob@cvs.openbsd.org 2001/01/21 9:00:33
[ssh-keygen.1]
remove -R flag; ok markus@
- markus@cvs.openbsd.org 2001/01/21 19:05:40
[atomicio.c automicio.h auth-chall.c auth-krb4.c auth-options.c
auth-options.h auth-passwd.c auth-rh-rsa.c auth-rhosts.c auth-rsa.c
auth.c auth.h auth1.c auth2-chall.c auth2.c authfd.c authfile.c
bufaux.c bufaux.h buffer.c canahost.c canahost.h channels.c
cipher.c cli.c clientloop.c clientloop.h compat.c compress.c
deattack.c dh.c dispatch.c groupaccess.c hmac.c hostfile.c kex.c
key.c key.h log-client.c log-server.c log.c log.h login.c login.h
match.c misc.c misc.h nchan.c packet.c pty.c radix.h readconf.c
readpass.c readpass.h rsa.c scp.c servconf.c serverloop.c serverloop.h
session.c sftp-server.c ssh-add.c ssh-agent.c ssh-dss.c ssh-keygen.c
ssh-keyscan.c ssh-rsa.c ssh.c ssh.h sshconnect.c sshconnect.h
sshconnect1.c sshconnect2.c sshd.c tildexpand.c tildexpand.h
ttysmodes.c uidswap.c xmalloc.c]
split ssh.h and try to cleanup the #include mess. remove unnecessary
#includes. rename util.[ch] -> misc.[ch]
- (bal) renamed 'PIDDIR' to '_PATH_SSH_PIDDIR' to match OpenBSD tree
- (bal) Moved #ifdef KRB4 in auth-krb4.c above the #include to resolve
conflict when compiling for non-kerb install
- (bal) removed the #ifdef SKEY in auth1.c to match Markus' changes
on 1/19.
2001-01-22 05:34:40 +00:00