120020626 2 - (stevesk) [monitor.c] remove duplicate proto15 dispatch entry for PAM 3 - (bal) OpenBSD CVS Sync 4 - markus@cvs.openbsd.org 2002/06/23 21:34:07 5 [channels.c] 6 tcode is u_int 7 - markus@cvs.openbsd.org 2002/06/24 13:12:23 8 [ssh-agent.1] 9 the socket name contains ssh-agent's ppid; via mpech@ from form@ 10 - markus@cvs.openbsd.org 2002/06/24 14:33:27 11 [channels.c channels.h clientloop.c serverloop.c] 12 move channel counter to u_int 13 - markus@cvs.openbsd.org 2002/06/24 14:55:38 14 [authfile.c kex.c ssh-agent.c] 15 cat to (void) when output from buffer_get_X is ignored 16 - itojun@cvs.openbsd.org 2002/06/24 15:49:22 17 [msg.c] 18 printf type pedant 19 - deraadt@cvs.openbsd.org 2002/06/24 17:57:20 20 [sftp-server.c sshpty.c] 21 explicit (u_int) for uid and gid 22 - markus@cvs.openbsd.org 2002/06/25 16:22:42 23 [authfd.c] 24 unnecessary cast 25 - markus@cvs.openbsd.org 2002/06/25 18:51:04 26 [sshd.c] 27 lightweight do_setusercontext after chroot() 28 - (bal) Updated AIX package build. Patch by dtucker@zip.com.au 29 - (tim) [Makefile.in] fix test on installing ssh-rand-helper.8 30 - (bal) added back in error check for mmap(). I screwed up, Pointed 31 out by stevesk@ 32 - (tim) [README.privsep] UnixWare tip no longer needed. 33 - (bal) fixed NeXTStep missing munmap() issue. It defines HAVE_MMAP, 34 but it all damned lies. 35 - (stevesk) [README.privsep] more for sshd pseudo-account. 36 - (tim) [contrib/caldera/openssh.spec] add support for privsep 37 - (djm) setlogin needs pgid==pid on BSD/OS; from itojun@ 38 - (djm) OpenBSD CVS Sync 39 - markus@cvs.openbsd.org 2002/06/26 08:53:12 40 [bufaux.c] 41 limit size of BNs to 8KB; ok provos/deraadt 42 - markus@cvs.openbsd.org 2002/06/26 08:54:18 43 [buffer.c] 44 limit append to 1MB and buffers to 10MB 45 - markus@cvs.openbsd.org 2002/06/26 08:55:02 46 [channels.c] 47 limit # of channels to 10000 48 - markus@cvs.openbsd.org 2002/06/26 08:58:26 49 [session.c] 50 limit # of env vars to 1000; ok deraadt/djm 51 - deraadt@cvs.openbsd.org 2002/06/26 13:20:57 52 [monitor.c] 53 be careful in mm_zalloc 54 - deraadt@cvs.openbsd.org 2002/06/26 13:49:26 55 [session.c] 56 disclose less information from environment files; based on input 57 from djm, and dschultz@uclink.Berkeley.EDU 58 - markus@cvs.openbsd.org 2002/06/26 13:55:37 59 [auth2-chall.c] 60 make sure # of response matches # of queries, fixes int overflow; 61 from ISS 62 - markus@cvs.openbsd.org 2002/06/26 13:56:27 63 [version.h] 64 3.4 65 - (djm) Require krb5 devel for RPM build w/ KrbV 66 - (djm) Improve PAMAuthenticationViaKbdInt text from Nalin Dahyabhai 67 <nalin@redhat.com> 68 - (djm) Update spec files for release 69 - (djm) Fix int overflow in auth2-pam.c, similar to one discovered by ISS 70 - (djm) Release 3.4p1 71 7220020625 73 - (stevesk) [INSTALL acconfig.h configure.ac defines.h] remove --with-rsh 74 - (stevesk) [README.privsep] minor updates 75 - (djm) Create privsep directory and warn if privsep user is missing 76 during make install 77 - (bal) Started list of PrivSep issues in TODO 78 - (bal) if mmap() is substandard, don't allow compression on server side. 79 Post 'event' we will add more options. 80 - (tim) [contrib/caldera/openssh.spec] Sync with Caldera 81 - (bal) moved aix_usrinfo() and noted not setting real TTY. Patch by 82 dtucker@zip.com.au 83 - (tim) [acconfig.h configure.ac sshd.c] BROKEN_FD_PASSING fix from Markus 84 for Cygwin, Cray, & SCO 85 8620020624 87 - OpenBSD CVS Sync 88 - deraadt@cvs.openbsd.org 2002/06/23 03:25:50 89 [tildexpand.c] 90 KNF 91 - deraadt@cvs.openbsd.org 2002/06/23 03:26:19 92 [cipher.c key.c] 93 KNF 94 - deraadt@cvs.openbsd.org 2002/06/23 03:30:58 95 [scard.c ssh-dss.c ssh-rsa.c sshconnect.c sshconnect2.c sshd.c sshlogin.c 96 sshpty.c] 97 various KNF and %d for unsigned 98 - deraadt@cvs.openbsd.org 2002/06/23 09:30:14 99 [sftp-client.c sftp-client.h sftp-common.c sftp-int.c sftp-server.c 100 sftp.c] 101 bunch of u_int vs int stuff 102 - deraadt@cvs.openbsd.org 2002/06/23 09:39:55 103 [ssh-keygen.c] 104 u_int stuff 105 - deraadt@cvs.openbsd.org 2002/06/23 09:46:51 106 [bufaux.c servconf.c] 107 minor KNF. things the fingers do while you read 108 - deraadt@cvs.openbsd.org 2002/06/23 10:29:52 109 [ssh-agent.c sshd.c] 110 some minor KNF and %u 111 - deraadt@cvs.openbsd.org 2002/06/23 20:39:45 112 [session.c] 113 compression_level is u_int 114 - deraadt@cvs.openbsd.org 2002/06/23 21:06:13 115 [sshpty.c] 116 KNF 117 - deraadt@cvs.openbsd.org 2002/06/23 21:06:41 118 [channels.c channels.h session.c session.h] 119 display, screen, row, col, xpixel, ypixel are u_int; markus ok 120 - deraadt@cvs.openbsd.org 2002/06/23 21:10:02 121 [packet.c] 122 packet_get_int() returns unsigned for reason & seqnr 123 - (bal) Also fixed IPADDR_IN_DISPLAY case where display, screen, row, col, 124 xpixel are u_int. 125 126 12720020623 128 - (stevesk) [configure.ac] bug #255 LOGIN_NEEDS_UTMPX for AIX. 129 - (bal) removed GNUism for getops in ssh-agent since glibc lacks optreset. 130 - (bal) add extern char *getopt. Based on report by dtucker@zip.com.au 131 - OpenBSD CVS Sync 132 - stevesk@cvs.openbsd.org 2002/06/22 02:00:29 133 [ssh.h] 134 correct comment 135 - stevesk@cvs.openbsd.org 2002/06/22 02:40:23 136 [ssh.1] 137 section 5 not 4 for ssh_config 138 - naddy@cvs.openbsd.org 2002/06/22 11:51:39 139 [ssh.1] 140 typo 141 - stevesk@cvs.openbsd.org 2002/06/22 16:32:54 142 [sshd.8] 143 add /var/empty in FILES section 144 - stevesk@cvs.openbsd.org 2002/06/22 16:40:19 145 [sshd.c] 146 check /var/empty owner mode; ok provos@ 147 - stevesk@cvs.openbsd.org 2002/06/22 16:41:57 148 [scp.1] 149 typo 150 - stevesk@cvs.openbsd.org 2002/06/22 16:45:29 151 [ssh-agent.1 sshd.8 sshd_config.5] 152 use process ID vs. pid/PID/process identifier 153 - stevesk@cvs.openbsd.org 2002/06/22 20:05:27 154 [sshd.c] 155 don't call setsid() if debugging or run from inetd; no "Operation not 156 permitted" errors now; ok millert@ markus@ 157 - stevesk@cvs.openbsd.org 2002/06/22 23:09:51 158 [monitor.c] 159 save auth method before monitor_reset_key_state(); bugzilla bug #284; 160 ok provos@ 161 |
16220020622 163 - (djm) Update README.privsep; spotted by fries@ 164 - (djm) Release 3.3p1 |
165 - (bal) getopt now can be staticly compiled on those platforms missing 166 optreset. Patch by binder@arago.de |
167 16820020621 169 - (djm) Sync: 170 - djm@cvs.openbsd.org 2002/06/21 05:50:51 171 [monitor.c] 172 Don't initialise compression buffers when compression=no in sshd_config; 173 ok Niels@ 174 - ID sync for auth-passwd.c --- 987 unchanged lines hidden (view full) --- 116220020308 1163 - (djm) Revert bits of Markus' OpenSSL compat patch which was 1164 accidentally committed. 1165 - (djm) Add Markus' patch for compat wih OpenSSL < 0.9.6. 1166 Known issue: Blowfish for SSH1 does not work 1167 - (stevesk) entropy.c: typo in debug message 1168 - (djm) ssh-keygen -i needs seeded RNG; report from markus@ 1169 |
1170$Id: ChangeLog,v 1.2301 2002/06/26 13:59:10 djm Exp $ |