summaryrefslogtreecommitdiff
path: root/servconf.c
Commit message (Collapse)AuthorAgeFilesLines
* - (djm) Warn and disable compression on platforms which can't handle bothDamien Miller2002-06-211-0/+10
| | | | useprivilegeseparation=yes and compression=yes
* - markus@cvs.openbsd.org 2002/06/20 23:05:56Ben Lindstrom2002-06-211-2/+10
| | | | | [servconf.c servconf.h session.c sshd.c] allow Compression=yes/no in sshd_config
* - markus@cvs.openbsd.org 2002/05/15 21:56:38Ben Lindstrom2002-06-061-3/+3
| | | | | [servconf.c sshd.8 sshd_config] re-enable privsep and disable setuid for post-3.2.2
* - markus@cvs.openbsd.org 2002/05/15 21:02:53Ben Lindstrom2002-05-151-3/+3
| | | | | [servconf.c sshd.8 sshd_config] disable privsep and enable setuid for the 3.2.2 release
* - deraadt@cvs.openbsd.org 2002/05/04 02:39:35Ben Lindstrom2002-05-151-3/+3
| | | | | | [servconf.c sshd.8 sshd_config] enable privsep by default; provos ok (historical)
* - markus@cvs.openbsd.org 2002/04/22 16:16:53Damien Miller2002-04-231-2/+2
| | | | | [servconf.c sshd.8 sshd_config] do not auto-enable KerberosAuthentication; ok djm@, provos@, deraadt@
* - (djm) OpenBSD CVS SyncDamien Miller2002-04-231-2/+2
| | | | | | - deraadt@cvs.openbsd.org 2002/04/20 09:02:03 [servconf.c] No, afs requires explicit enabling
* - (djm) Add KrbV support patch from Simon Wilkinson <simon@sxw.org.uk>Damien Miller2002-04-131-1/+10
|
* - stevesk@cvs.openbsd.org 2002/03/20 19:12:25Ben Lindstrom2002-03-221-19/+2
| | | | | | [servconf.c servconf.h ssh.h sshd.c] for unprivileged user, group do: pw=getpwnam(SSH_PRIVSEP_USER); do_setusercontext(pw). ok provos@
* - stevesk@cvs.openbsd.org 2002/03/19 03:03:43Ben Lindstrom2002-03-221-10/+2
| | | | | [pathnames.h servconf.c servconf.h sshd.c] _PATH_PRIVSEP_CHROOT_DIR; ok provos@
* - stevesk@cvs.openbsd.org 2002/03/18 23:52:51Ben Lindstrom2002-03-221-3/+3
| | | | | | [servconf.c] UnprivUser/UnprivGroup usable now--specify numeric user/group; ok provos@
* - provos@cvs.openbsd.org 2002/03/18 17:50:31Ben Lindstrom2002-03-221-1/+41
| | | | | | | | | | | [auth-bsdauth.c auth-options.c auth-rh-rsa.c auth-rsa.c auth-skey.c auth.h auth1.c auth2-chall.c auth2.c kex.c kex.h kexdh.c kexgex.c servconf.c session.h servconf.h serverloop.c session.c sshd.c] integrate privilege separated openssh; its turned off by default for now. work done by me and markus@ applied, but outside of ensure that smaller code bits migrated with their owners.. no work was tried to 'fix' it to work. =) Later project!
* Stupid djm commits experimental code to head instead of branchDamien Miller2002-03-131-15/+0
| | | | revert
* Import of Niels Provos' 20020312 ssh-complete.diffDamien Miller2002-03-131-0/+15
| | | | PAM, Cygwin and OSF SIA will not work for sure
* - markus@cvs.openbsd.org 2002/02/04 12:15:25Damien Miller2002-02-051-7/+7
| | | | | | [log.c log.h readconf.c servconf.c] add SYSLOG_FACILITY_NOT_SET = -1, SYSLOG_LEVEL_NOT_SET = -1, fixes arm/netbsd; based on patch from bjh21@netbsd.org; ok djm@
* - markus@cvs.openbsd.org 2002/01/29 14:32:03Damien Miller2002-02-051-8/+9
| | | | | [auth2.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c canohost.c servconf.c servconf.h session.c sshd.8 sshd_config] s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@
* - stevesk@cvs.openbsd.org 2002/01/27 14:57:46Damien Miller2002-02-051-2/+10
| | | | | [channels.c servconf.c servconf.h session.c sshd.8 sshd_config] add X11UseLocalhost; ok markus@
* - stevesk@cvs.openbsd.org 2002/01/22 02:52:41Damien Miller2002-01-221-2/+2
| | | | | [servconf.c] typo in error message; from djast@cs.toronto.edu
* - stevesk@cvs.openbsd.org 2002/01/04 18:14:16Damien Miller2002-01-221-4/+9
| | | | | | [servconf.c sshd.8] protocol 2 HostKey code default is now /etc/ssh_host_rsa_key and /etc/ssh_host_dsa_key like we have in sshd_config. ok markus@
* - stevesk@cvs.openbsd.org 2002/01/04 17:59:17Damien Miller2002-01-221-3/+1
| | | | | [readconf.c servconf.c] remove #ifdef _PATH_XAUTH/#endif; ok markus@
* - deraadt@cvs.openbsd.org 2001/12/19 07:18:56Damien Miller2001-12-211-10/+10
| | | | | | | | | | | | [auth1.c auth2.c auth2-chall.c auth-bsdauth.c auth.c authfile.c auth.h] [auth-krb4.c auth-rhosts.c auth-skey.c bufaux.c canohost.c channels.c] [cipher.c clientloop.c compat.c compress.c deattack.c key.c log.c mac.c] [match.c misc.c nchan.c packet.c readconf.c rijndael.c rijndael.h scard.c] [servconf.c servconf.h serverloop.c session.c sftp.c sftp-client.c] [sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c] [sshconnect1.c sshconnect2.c sshconnect.c sshd.8 sshd.c sshd_config] [ssh-keygen.c sshlogin.c sshpty.c sshtty.c ttymodes.c uidswap.c] basic KNF done while i was looking for something else
* - markus@cvs.openbsd.org 2001/12/06 13:30:06Ben Lindstrom2001-12-061-439/+449
| | | | | | [servconf.c servconf.h sshd.8 sshd.c] add -o to sshd, too. ok deraadt@ - (bal) Minor white space fix up in servconf.c
* - deraadt@cvs.openbsd.org 2001/12/05 10:06:12Ben Lindstrom2001-12-061-4/+4
| | | | | | | [authfd.c authfile.c bufaux.c channels.c compat.c kex.c kexgex.c key.c misc.c packet.c servconf.c ssh-agent.c sshconnect2.c sshconnect.c sshd.c ssh-dss.c ssh-keygen.c ssh-rsa.c] minor KNF
* - stevesk@cvs.openbsd.org 2001/11/17 19:14:34Ben Lindstrom2001-12-061-2/+2
| | | | | [auth2.c auth.c readconf.c servconf.c ssh-agent.c ssh-keygen.c] enum/int type cleanup where it made sense to do so; ok markus@
* - markus@cvs.openbsd.org 2001/11/12 11:17:07Damien Miller2001-11-141-3/+1
| | | | | [servconf.c] enable authorized_keys2 again. tested by fries@
* - (djm) Reorder portable-specific server options so that they come first.Damien Miller2001-11-121-9/+24
| | | | | This should help reduce diff collisions for new server options (as they will appear at the end)
* - markus@cvs.openbsd.org 2001/11/11 13:02:31Damien Miller2001-11-121-3/+10
| | | | | [servconf.c] make AuthorizedKeysFile2 fallback to AuthorizedKeysFile if AuthorizedKeysFile is specified.
* - jakob@cvs.openbsd.org 2001/08/16 19:18:34Ben Lindstrom2001-09-121-11/+11
| | | | | [servconf.c servconf.h session.c sshd.8] deprecate CheckMail. ok markus@
* - itojun@cvs.openbsd.org 2001/07/11 00:24:53Damien Miller2001-07-141-2/+2
| | | | | | | | [servconf.c] make it compilable in all 4 combination of KRB4/KRB5 settings. dugsong ok XXX isn't it sensitive to the order of -I/usr/include/kerberosIV and -I/usr/include/kerberosV?
* - OpenBSD CVS SyncDamien Miller2001-07-141-9/+11
| | | | | | - stevesk@cvs.openbsd.org 2001/07/08 15:23:38 [servconf.c] fix ``MaxStartups max''; ok markus@
* whitespace syncKevin Steves2001-07-041-2/+2
|
* - dugsong@cvs.openbsd.org 2001/06/26 17:41:49Ben Lindstrom2001-07-041-1/+4
| | | | | [servconf.c] #include <kafs.h>
* - dugsong@cvs.openbsd.org 2001/06/26 16:15:25Ben Lindstrom2001-07-041-19/+24
| | | | | | | [auth1.c auth.h auth-krb4.c auth-passwd.c readconf.c readconf.h servconf.c servconf.h session.c sshconnect1.c sshd.c] Kerberos v5 support for SSH1, mostly from Assar Westerlund <assar@freebsd.org> and Bjorn Gronvall <bg@sics.se>. markus@ ok
* - itojun@cvs.openbsd.org 2001/06/23 15:12:20Ben Lindstrom2001-06-251-5/+5
| | | | | | | | | | | | | [auth1.c auth2.c auth2-chall.c authfd.c authfile.c auth-rhosts.c canohost.c channels.c cipher.c clientloop.c deattack.c dh.c hostfile.c kex.c kexdh.c kexgex.c key.c nchan.c packet.c radix.c readpass.c scp.c servconf.c serverloop.c session.c sftp.c sftp-client.c sftp-glob.c sftp-int.c sftp-server.c ssh-add.c ssh-agent.c ssh.c sshconnect1.c sshconnect2.c sshconnect.c sshd.c ssh-keygen.c ssh-keyscan.c] more strict prototypes. raise warning level in Makefile.inc. markus ok'ed TODO; cleanup headers
* - markus@cvs.openbsd.org 2001/06/08 15:25:40Ben Lindstrom2001-06-091-4/+4
| | | | | [includes.h pathnames.h readconf.c servconf.c] move the path for xauth to pathnames.h
* - markus@cvs.openbsd.org 2001/05/20 17:20:36Ben Lindstrom2001-06-051-2/+23
| | | | | | | [auth-rsa.c auth.c auth.h auth2.c servconf.c servconf.h sshd.8 sshd_config] configurable authorized_keys{,2} location; originally from peter@; ok djm@
* - stevesk@cvs.openbsd.org 2001/05/19 19:43:57Ben Lindstrom2001-06-051-4/+17
| | | | | | | | | | | | | | [misc.c misc.h servconf.c sshd.8 sshd.c] sshd command-line arguments and configuration file options that specify time may be expressed using a sequence of the form: time[qualifier], where time is a positive integer value and qualifier is one of the following: <none>,s,m,h,d,w Examples: 600 600 seconds (10 minutes) 10m 10 minutes 1h30m 1 hour 30 minutes (90 minutes) ok markus@
* - markus@cvs.openbsd.org 2001/05/18 14:13:29Ben Lindstrom2001-06-051-5/+5
| | | | | | [auth-chall.c auth.h auth1.c auth2-chall.c auth2.c readconf.c readconf.h servconf.c servconf.h sshconnect1.c sshconnect2.c sshd.c] improved kbd-interactive support. work by per@appgate.com and me
* - stevesk@cvs.openbsd.org 2001/05/03 21:43:01Ben Lindstrom2001-05-031-2/+2
| | | | | [servconf.c] remove "\n" from fatal()
* - (djm) Add new server configuration directive 'PAMAuthenticationViaKbdInt'Damien Miller2001-04-251-1/+9
| | | | | (default: off), implies KbdInteractiveAuthentication. Suggestion from markus@
* - stevesk@cvs.openbsd.org 2001/04/15 21:28:35Ben Lindstrom2001-04-161-50/+31
| | | | | [readconf.c servconf.c] use fatal() or error() vs. fprintf(); ok markus@
* - beck@cvs.openbsd.org 2001/04/13 22:46:54Ben Lindstrom2001-04-131-3/+17
| | | | | | | | | | [channels.c channels.h servconf.c servconf.h serverloop.c sshd.8] Add options ClientAliveInterval and ClientAliveCountMax to sshd. This gives the ability to do a "keepalive" via the encrypted channel which can't be spoofed (unlike TCP keepalives). Useful for when you want to use ssh connections to authenticate people for something, and know relatively quickly when they are no longer authenticated. Disabled by default (of course). ok markus@
* - stevesk@cvs.openbsd.org 2001/04/12 20:09:38Ben Lindstrom2001-04-121-14/+18
| | | | | [misc.c misc.h readconf.c servconf.c ssh.c sshd.c] robust port validation; ok markus@ jakob@
* - markus@cvs.openbsd.org 2001/04/12 19:15:26Ben Lindstrom2001-04-121-2/+19
| | | | | | | | | | [auth-rhosts.c auth.h auth2.c buffer.c canohost.c canohost.h compat.c compat.h hostfile.c pathnames.h readconf.c readconf.h servconf.c servconf.h ssh.c sshconnect.c sshconnect.h sshconnect1.c sshconnect2.c sshd_config] implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2) similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :)
* - stevesk@cvs.openbsd.org 2001/04/06 22:25:25Ben Lindstrom2001-04-071-25/+59
| | | | | | | | | | [servconf.c] in addition to: ListenAddress host|ipv4_addr|ipv6_addr permit: ListenAddress [host|ipv4_addr|ipv6_addr]:port ListenAddress host|ipv4_addr:port sshd.8 updates coming. ok markus@
* - stevesk@cvs.openbsd.org 2001/04/02 14:20:23Ben Lindstrom2001-04-021-3/+2
| | | | | [readconf.c servconf.c] correct comment; ok markus@
* - stevesk@cvs.openbsd.org 2001/03/25 13:16:11Ben Lindstrom2001-03-261-2/+11
| | | | | | [servconf.c servconf.h session.c sshd.8 sshd_config] PrintLastLog option; from chip@valinux.com with some minor changes by me. ok markus@
* - stevesk@cvs.openbsd.org 2001/03/05 15:44:51Ben Lindstrom2001-03-061-3/+4
| | | | | [servconf.c] sync error message; ok markus@
* - millert@cvs.openbsd.org 2001/03/04 17:42:28Ben Lindstrom2001-03-051-11/+11
| | | | | | | | [authfd.c channels.c dh.c log.c readconf.c servconf.c sftp-int.c ssh.c sshconnect.c sshd.c] log functions should not be passed strings that end in newline as they get passed on to syslog() and when logging to stderr, do_log() appends its own newline.
* - stevesk@cvs.openbsd.org 2001/03/04 11:16:06Ben Lindstrom2001-03-051-9/+2
| | | | | [servconf.c sshd.8] kill obsolete RandomSeed; ok markus@ deraadt@
View Lorry Controller Status