openssh-portable - OpenGrok history log for /openssh-portable/

Revision (<<< Hide revision tags) (Show revision tags >>>)	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
04c06d04	06-Oct-2020	djm@openbsd.org	upstream: Fix UpdateHostkeys/HashKnownHosts/CheckHostIP bug When all of UpdateHostkeys, HashKnownHosts and ChechHostIP were enabled and new host keys were learned, known_hosts IP ent upstream: Fix UpdateHostkeys/HashKnownHosts/CheckHostIP bug When all of UpdateHostkeys, HashKnownHosts and ChechHostIP were enabled and new host keys were learned, known_hosts IP entries were not being recorded for new host keys. reported by matthieu@ ok markus@ OpenBSD-Commit-ID: a654a8290bd1c930aac509e8158cf85e42e49cb7 show more ... hostfile.c
b70e3371	06-Oct-2020	djm@openbsd.org	upstream: don't UpdateHostkeys when the hostkey is verified by the GlobalKnownHostsFile file, support only UserKnownHostsFile matches suggested by Mark D. Baushke; feedback and ok m upstream: don't UpdateHostkeys when the hostkey is verified by the GlobalKnownHostsFile file, support only UserKnownHostsFile matches suggested by Mark D. Baushke; feedback and ok markus@ OpenBSD-Commit-ID: eabb771a6add676c398d38a143a1aff5f04abbb9 show more ... sshconnect.c
aa623142	06-Oct-2020	djm@openbsd.org	upstream: revert kex->flags cert hostkey downgrade back to a plain key (commitid VtF8vozGOF8DMKVg). We now do this a simpler way that needs less plumbing. ok markus@ Op upstream: revert kex->flags cert hostkey downgrade back to a plain key (commitid VtF8vozGOF8DMKVg). We now do this a simpler way that needs less plumbing. ok markus@ OpenBSD-Commit-ID: fb92d25b216bff8c136da818ac2221efaadf18ed show more ... clientloop.c kex.h sshconnect.c sshconnect.h sshconnect2.c
f4f14e02	06-Oct-2020	djm@openbsd.org	upstream: simply disable UpdateHostkeys when a certificate successfully authenticated the host; simpler than the complicated plumbing via kex->flags we have now. ok markus@ upstream: simply disable UpdateHostkeys when a certificate successfully authenticated the host; simpler than the complicated plumbing via kex->flags we have now. ok markus@ OpenBSD-Commit-ID: 80e39644eed75717d563a7f177e8117a0e14f42c show more ... sshconnect.c
e79957e8	06-Oct-2020	djm@openbsd.org	upstream: disable UpdateHostkeys by default if VerifyHostKeyDNS is enabled; suggested by Mark D. Baushke OpenBSD-Commit-ID: 85a1b88592c81bc85df7ee7787dbbe721a0542bf readconf.c ssh_config.5
3d4c2016	06-Oct-2020	dtucker@openbsd.org	upstream: Agent protocol draft is now at rev 4. ok djm@ OpenBSD-Commit-ID: 8c01ea3aae48aab45e01b7421b0fca2dad5e7837 PROTOCOL.agent
af889a40	04-Oct-2020	djm@openbsd.org	upstream: when ordering host key algorithms in the client, consider the ECDSA key subtype; ok markus@ OpenBSD-Commit-ID: 3097686f853c61ff61772ea35f8b699931392ece hostfile.c hostfile.h sshconnect.c sshconnect2.c
2d39fc9f	03-Oct-2020	dtucker@openbsd.org	upstream: Allow full range of UIDs and GIDs for sftp chown and chgrp on 32bit platforms instead of being limited by LONG_MAX. bz#3206, found by booking00 at sina.cn, ok markus@ upstream: Allow full range of UIDs and GIDs for sftp chown and chgrp on 32bit platforms instead of being limited by LONG_MAX. bz#3206, found by booking00 at sina.cn, ok markus@ OpenBSD-Commit-ID: 373b7bbf1f15ae482d39567ce30d18b51c9229b5 show more ... sftp.c
396d32f3	03-Oct-2020	djm@openbsd.org	upstream: There are lots of place where we want to redirect stdin, stdout and/or stderr to /dev/null. Factor all these out to a single stdfd_devnull() function that allows selection of w upstream: There are lots of place where we want to redirect stdin, stdout and/or stderr to /dev/null. Factor all these out to a single stdfd_devnull() function that allows selection of which of these to redirect. ok markus@ OpenBSD-Commit-ID: 3033ba5a4c47cacfd5def020d42cabc52fad3099 show more ... misc.c misc.h mux.c readconf.c readpass.c ssh-agent.c ssh.c sshconnect.c sshd.c
1286981d	03-Oct-2020	djm@openbsd.org	upstream: enable UpdateHostkeys by default when the configuration has not overridden UserKnownHostsFile; ok markus@ "The timing is perfect" deraadt@ OpenBSD-Commit-ID: 62df71c9c upstream: enable UpdateHostkeys by default when the configuration has not overridden UserKnownHostsFile; ok markus@ "The timing is perfect" deraadt@ OpenBSD-Commit-ID: 62df71c9c5242da5763cb473c2a2deefbd0cef60 show more ... readconf.c ssh_config.5
332f2153	03-Oct-2020	djm@openbsd.org	upstream: disable UpdateHostkeys when a wildcard hostname pattern is encountered or when a certificate host key is in use. feedback/ok markus@ OpenBSD-Commit-ID: b6e5575af7e6732322b upstream: disable UpdateHostkeys when a wildcard hostname pattern is encountered or when a certificate host key is in use. feedback/ok markus@ OpenBSD-Commit-ID: b6e5575af7e6732322be82ec299e09051a5413bd show more ... clientloop.c
13cee44e	03-Oct-2020	djm@openbsd.org	upstream: record when the host key checking code downgrades a certificate host key to a plain key. This occurs when the user connects to a host with a certificate host key but no corresp upstream: record when the host key checking code downgrades a certificate host key to a plain key. This occurs when the user connects to a host with a certificate host key but no corresponding CA key configured in known_hosts; feedback and ok markus@ OpenBSD-Commit-ID: 2ada81853ff9ee7824c62f440bcf4ad62030c901 show more ... kex.h sshconnect.c sshconnect.h sshconnect2.c
12ae8f95	03-Oct-2020	djm@openbsd.org	upstream: prefer ed25519 signature algorithm variants to ECDSA; ok markus@ OpenBSD-Commit-ID: 82187926fca96d35a5b5afbc091afa84e0966e5b myproposal.h ssh_config.5 sshd_config.5
e5ed753a	02-Oct-2020	djm@openbsd.org	upstream: want time.h here too OpenBSD-Commit-ID: fafee8f1108c64ad8b282f9a1ed5ea830d8c58a7 sk-usbhid.c
66bd9fdf	02-Oct-2020	deraadt@openbsd.org	upstream: split introductory paragraph, and insert ominous words about the glob issue, which cannot be fully fixed and really requires completely replacing scp with a completely differen upstream: split introductory paragraph, and insert ominous words about the glob issue, which cannot be fully fixed and really requires completely replacing scp with a completely different subsystem. team effort to find the right words.. OpenBSD-Commit-ID: 58e1f72d292687f63eb357183036ee242513691c show more ... scp.1
86cc8ce0	02-Oct-2020	Damien Miller	use relative rather than system include here openbsd-compat/sha2.c
922cfac5	02-Oct-2020	Damien Miller	add some openbsd-compat licenses we missed LICENCE
ce941c75	02-Oct-2020	Philip Hands	un-nest $() to make ksh cheerful contrib/ssh-copy-id
18ea5f4b	02-Oct-2020	Philip Hands	ksh doesn't grok 'local' and AFAICT it's not actually doing anything useful in the code, so let's see how things go without it. contrib/ssh-copy-id
d9e727dc	01-Oct-2020	Oleg	Fix `EOF: command not found` error in ssh-copy-id contrib/ssh-copy-id
a1a856d5	30-Sep-2020	dtucker@openbsd.org	upstream: Regen moduli. OpenBSD-Commit-ID: 04967f8c43e9854ac34b917bcd6f5ac96c53a693 moduli
fa1fe3ea	27-Sep-2020	HARUYAMA Seigo	Restore first section title of INSTALL INSTALL
279261e1	27-Sep-2020	Damien Miller	update version numbers README contrib/redhat/openssh.spec contrib/suse/openssh.spec
58ca6ab6	27-Sep-2020	djm@openbsd.org	upstream: openssh 8.4 OpenBSD-Commit-ID: a29e5b372d2c00e297da8a35a3b87c9beb3b4a58 version.h
9bb8a303	21-Sep-2020	Damien Miller	sync with upstream ssh-copy-id rev f0da1a1b7 contrib/ssh-copy-id contrib/ssh-copy-id.1
1 2 345 6 7 8 9 10 >>...431