summaryrefslogtreecommitdiffstats
path: root/usr.bin/ssh/auth.h (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* introduce a generic %foo expansion function. replace existing % expansion anddjm2005-06-061-2/+1
| | | | add expansion to ControlPath; ok markus@
* Add MaxAuthTries sshd config option; ok markus@dtucker2004-05-231-3/+1
|
* support for password change; ok dtucker@markus2004-01-301-1/+2
| | | | (set password-dead=1w in login.conf to use this).
* standardise arguments to auth methods - they should all take authctxt.djm2003-11-041-3/+3
| | | | check authctxt->valid rather then pw != NULL; ok markus@
* replace fatal_cleanup() and linked list of fatal callbacks with staticmarkus2003-09-231-7/+4
| | | | | | cleanup_exit() function. re-refine cleanup_exit() where appropriate, allocate sshd's authctxt eary to allow simpler cleanup in sshd. tested by many, ok deraadt@
* remove kerberos support from ssh1, since it has been replaced with GSSAPI;markus2003-08-281-2/+1
| | | | but keep kerberos passwd auth for ssh1 and 2; ok djm, hin, henning, ...
* fix passwd auth for 'username leaks via timing'; with djm@, original patches from solarmarkus2003-08-261-1/+3
|
* support GSS API user authentication; patches from Simon Wilkinson,markus2003-08-221-1/+2
| | | | stripped down and tested by Jakob and myself.
* remove (already disabled) KRB4/AFS support, re-enable -k in ssh(1);markus2003-07-221-18/+1
| | | | test+ok henning@
* document struct Authctxt; with solarmarkus2003-04-161-5/+11
|
* krb4 + privsep; ok dugsong@, deraadt@markus2002-09-261-2/+2
|
* kerberos support for privsep. confirmed to work by lha@stacken.kth.seitojun2002-09-091-2/+2
| | | | patch from markus
* move Authmethod definitons to per-method file.markus2002-05-311-8/+8
|
* split auth2.c into one file per method; ok provos@/deraadt@markus2002-05-251-1/+8
|
* move the packet_send_debug handling from auth-options.c to auth.c; ok provos@markus2002-05-131-1/+6
|
* Fix sshd Banner option for privsep; ok markus@ provos@djm2002-05-121-1/+3
|
* clean up prototypesmarkus2002-03-191-2/+19
|
* integrate privilege separated openssh; its turned off by default for now.provos2002-03-181-1/+4
| | | | work done by me and markus@
* have the authentication functions return the authentication contextprovos2002-03-181-3/+3
| | | | and then do_authenticated; okay millert@
* getpwnamallow returns struct passwd * only if user valid; okay markus@provos2002-03-171-1/+2
|
* split auth_rhosts_rsa(), ok provos@markus2002-03-161-2/+2
|
* split auth_rsa() for better readability and privsep; ok provos@markus2002-03-141-2/+2
|
* $OpenBSD$ and RCSID() cleanup: don't use RCSID() in .h files; addstevesk2002-03-041-1/+3
| | | | | missing RCSID() to .c files and remove dup /*$OpenBSD$*/ from .c files. ok markus@
* Manual cleanup of remaining userland __P use (excluding packages maintained outside the tree)millert2002-02-171-4/+3
|
* Part one of userland __P removal. Done with a simple regexp with some minor hand editing to make comments line up correctly. Another pass is forthcoming that handles the cases that could not be done automatically.millert2002-02-161-4/+4
|
* auth_rhosts_rsa now accept generic keys.markus2001-12-271-2/+2
|
* basic KNF done while i was looking for something elsederaadt2001-12-191-3/+3
|
* remove auth_rsa_read_key, make hostfile_ready_key non static; ok markus@jakob2001-12-181-2/+1
|
* add auth2_challenge_stop(), simplifies cleanup of kbd-int sessions,markus2001-12-091-1/+2
| | | | fixes memleak.
* remove comments from .h, since they are cut&paste from the .c filesmarkus2001-06-261-52/+8
| | | | and out of sync
* Kerberos v5 support for SSH1, mostly from Assar Westerlund <assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ okdugsong2001-06-261-17/+36
|
* prototype pedant. not very creative...itojun2001-06-261-29/+27
| | | | | - () -> (void) - no variable names
* terminate secure_filename checking after checking homedir. that way itprovos2001-06-251-2/+3
| | | | works on AFS. okay markus@
* *known_hosts2 is obsolete for hostbased authentication andmarkus2001-06-231-2/+8
| | | | | only used for backward compat. merge ssh1/2 hostkey check and move it to auth.c
* configurable authorized_keys{,2} location; originally from peter@; ok djm@markus2001-05-201-1/+11
|
* improved kbd-interactive support. work by per@appgate.com and memarkus2001-05-181-3/+24
|
* implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2)markus2001-04-121-1/+6
| | | | | similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :)
* check auth_root_allowed for kbd-int auth, too.markus2001-03-281-2/+2
|
* add changes need for BSD_AUTH plus disabled BSD_AUTH codemarkus2001-03-201-2/+12
|
* use pwcopy in ssh.c, toomarkus2001-02-221-2/+1
|
* PermitRootLogin={yes,without-password,forced-commands-only,no}markus2001-02-121-2/+2
| | | | (before this change, root could login even if PermitRootLogin==no)
* split ssh.h and try to cleanup the #include mess. remove unnecessary #includes.markus2001-01-211-1/+65
| | | | rename util.[ch] -> misc.[ch]
* 1) removes fake skey from sshd, since this will be muchmarkus2001-01-181-3/+12
| | | | | | | harder with /usr/libexec/auth/login_XXX 2) share/unify code used in ssh-1 and ssh-2 authentication (server side) 3) make addition of BSD_AUTH and other challenge reponse methods easier.
* count authentication failures onlymarkus2000-12-281-1/+2
|
* Add idents for files which lack themdjm2000-10-161-0/+2
| | | | Fix idents Id -> OpenBSD for the rest
* add support for s/key (kbd-interactive) to ssh2, based on work by mkiernan@avantgo.com and memarkus2000-10-111-4/+16
|
* cleanup copyright notices on all files. I have attempted to be accurate withderaadt2000-09-071-0/+23
| | | | | | | the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate.
* KNFderaadt2000-07-091-1/+1
|
* split auth/sshconnect in one file per protocol versionmarkus2000-04-261-0/+7
|
* ssh2 server side, see README.openssh2; enable with 'sshd -2'markus2000-04-061-0/+4
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.