Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | add LogLevel {QUIET, FATAL, ERROR, INFO, CHAT, DEBUG} to ssh/sshd, | 1999-11-10 | 1 | -7/+9 | ||
| | | | | obsoletes QuietMode and FascistLogging in sshd. | |||||
* | save a few lines when disabling rhosts-{rsa-}auth | 1999-10-28 | 1 | -9/+3 | ||
| | ||||||
* | don't define original_real_uid twice | 1999-10-26 | 1 | -3/+1 | ||
| | ||||||
* | fix old connect() race security-bug for ssh-agent and agent-forwarding | 1999-10-14 | 1 | -2/+2 | ||
| | | | | | | | | | | by removing the connect() junk, with the following restrictions: 1) change the version to "OpenSSH-1.1": agent-forwarding will work only between OpenSSH-1.1 client and OpenSSH-1.1 server 2) renamed the environment variable of OpenSSH-1.1 to "SSH_AUTH_SOCKET", since useing OpenSSH-1.0 ssh-add against the new ssh-agent does not work | |||||
* | -P/UsePrivilegedPort from 1.2.27, it turns of allocation of priv. port | 1999-10-12 | 1 | -2/+14 | ||
| | | | | and disabled rhosts/rhosts-rsa, ok deraadt@ | |||||
* | add code to detect DNS spoofing: | 1999-10-03 | 1 | -3/+6 | ||
| | | | | | | | | | | the main idea is to not only store the host key for the hostname but also for the according IP address. When we check the host key in the known_hosts file, we also check the key against the according IP address. When the server key changes, host_status = HOST_CHANGED. If check_host_in_hostfile() returns differing status for the IP address that means that either DNS was spoofed or that the IP address for the host and the host key changed at the same time. | |||||
* | reorder usage, like real ssh | 1999-09-30 | 1 | -2/+2 | ||
| | ||||||
* | better way to deal with authfile cipher; dugsong@ | 1999-09-30 | 1 | -3/+1 | ||
| | ||||||
* | remove ``none''. | 1999-09-30 | 1 | -11/+4 | ||
| | ||||||
* | "ssh is a very large program" -- anonymous | 1999-09-30 | 1 | -3/+1 | ||
| | ||||||
* | wringing out all the water | 1999-09-30 | 1 | -5/+1 | ||
| | ||||||
* | do not bother with dinosaur pacification | 1999-09-30 | 1 | -3/+1 | ||
| | ||||||
* | cull more ancient garbage from pre-POSIX days | 1999-09-30 | 1 | -7/+1 | ||
| | ||||||
* | more culling | 1999-09-30 | 1 | -6/+1 | ||
| | ||||||
* | rely on paths.h more | 1999-09-30 | 1 | -8/+4 | ||
| | ||||||
* | we have setsid | 1999-09-29 | 1 | -3/+1 | ||
| | ||||||
* | numerous sprintf, strncpy, strcpy cleanups | 1999-09-29 | 1 | -12/+8 | ||
| | ||||||
* | global original_real_uid | 1999-09-29 | 1 | -2/+3 | ||
| | ||||||
* | update krb4/AFS support to ssh-1.2.27-afs-kerberos-pl1 level, clean up unused variables, update manpages | 1999-09-29 | 1 | -11/+10 | ||
| | ||||||
* | -V in usage() | 1999-09-29 | 1 | -1/+2 | ||
| | ||||||
* | correct the usage, disable agent forwarding is -a | 1999-09-29 | 1 | -2/+2 | ||
| | ||||||
* | add -V option | 1999-09-29 | 1 | -1/+4 | ||
| | ||||||
* | test for RSA in the ssl library, real early on | 1999-09-29 | 1 | -1/+11 | ||
| | ||||||
* | GatewayPorts and ssh -g; markus.friedl@informatik.uni-erlangen.de | 1999-09-29 | 1 | -1/+6 | ||
| | ||||||
* | user@host; aaron | 1999-09-28 | 1 | -2/+8 | ||
| | ||||||
* | convert all uses of gmp to SSL bignum | 1999-09-28 | 1 | -32/+26 | ||
| | | | | | | convert all used of rsa to SSL rsa functions remove all use of randomstate to OpenBSD arc4random() and arc4_stir() all this done at a long long night in Canada. | |||||
* | i bet a lot of people didn't know what ssh 1.2.16 had a nice license. | 1999-09-26 | 1 | -0/+813 | ||
well, except for the patent issues. someone in sweden (forget their name at the moment) cleaned out most of the patented code, and now this code removes rsa code. when this is done, it will link against libssl, but the work isn't completely done yet. then we need to bring this up to modern days, featurewise. |