| Commit message (Collapse) | Author | Files | Lines |
|---|
|
Submitted by: sascha@schumann.cx
Notes:
svn path=/head/; revision=23462
|
|
Suggested by: kris
Notes:
svn path=/head/; revision=23423
|
|
Notes:
svn path=/head/; revision=23404
|
|
A Perl interface to the PAM library.
PR: 14137
Submitted by: Matt Behrens <matt@zigg.com>
Notes:
svn path=/head/; revision=23403
|
|
Notes:
svn path=/head/; revision=23333
|
|
Submitted by: Issei Suzuki <issei@jp.freebsd.org>
Notes:
svn path=/head/; revision=23332
|
|
PR: 15059
Submitted by: Maintainer
Notes:
svn path=/head/; revision=23303
|
|
Notes:
svn path=/head/; revision=23297
|
|
obsoleting a couple patches (it's the same code, though, except for
additions).
This also brings in KNFization of everything (please hold the cheering
down :) and made me reroll all my patches.
My patches have been almost entirely rewritten. The places are the
same, but the code's rewritten. It fits with the style (KNF) now,
and looks better.
I've also added strlcat.c to the build, which, just like strlcpy.c, is
necessary for compatibility with older libcs. After strlcat() snuck
into the OpenSSH code recently, this would prevent OpenSSH from
building on (e.g.) FreeBSD 3.2. Adding it to ssh/lib/ makes it work
yet again :)
Notes:
svn path=/head/; revision=23296
|
|
Submitted by: Larry Baird <lab@gta.com>
Notes:
svn path=/head/; revision=23275
|
|
syntax. Run ssh-keygen for ssh_host_key on port install, not just
package install.
Notes:
svn path=/head/; revision=23263
|
|
mirroring system. The tarball was fine, but the extraction was not
Notes:
svn path=/head/; revision=23262
|
|
Submitted by: markm
Notes:
svn path=/head/; revision=23253
|
|
* Added "firewall mode" timing optimizations which can decrease the
amount of time neccessary to SYN or connect scan some heavily filtered
hosts.
* Changed "TCP Ping" to use a random ACK value rather than 0 (an IDS
called Snort was using this to detect Nmap TCP pings).
* better FDDI support
* changes which should lead to tremendous speedups against some firewalled
hosts.
Notes:
svn path=/head/; revision=23252
|
|
Notes:
svn path=/head/; revision=23245
|
|
Add "ignorelogin" login.conf functionality to sshd.
The biggest change: new port functionality. Making "fetchsrctarball"
will soon work for those of you who cannot use CVS to get OpenSSH.
Mark Murray, the savior he is :), will use "make makesrctarball" and
put the snapshots of OpenSSH source in the proper place.
The current ${MASTER_SITES} is just a guess at where the snapshot
files could be hosted; something definite should be worked out very
soon.
Notes:
svn path=/head/; revision=23238
|
|
transform.
Prompted by: deraadt
Notes:
svn path=/head/; revision=23223
|
|
OpenSSH. Users desiring the old functionality can edit their
sshd-config files by hand for new installs.
Notes:
svn path=/head/; revision=23216
|
|
Submitted by: peter
Notes:
svn path=/head/; revision=23210
|
|
Notes:
svn path=/head/; revision=23209
|
|
Notes:
svn path=/head/; revision=23208
|
|
Put sshd.sh installation in the pre-install, ssh_host_key generation
back in the PLIST, and check for ssh_config, too. This port now
works much better as a package. The configuration files and sshd.sh
are also part of the package, and as such removed on deinstall.
The proper upgrade procedure from one OpenSSH version to a newer one is:
chflags schg /usr/local/etc/ssh* # preserve them from deletion
cd /usr/ports/security/openssh
make all deinstall reinstall clean
Partially submitted by: peter
Notes:
svn path=/head/; revision=23206
|
|
Notes:
svn path=/head/; revision=23203
|
|
code tree is the addition of the SSH_CMSG_MAX_PACKET_SIZE command.
Really big tiny change: PermitRootLogin is now DISABLED by default. This
change has been specifically okayed.
Reviewed by: imp
Notes:
svn path=/head/; revision=23202
|
|
Submitted by: Jeroen Ruigrok van der Werven <asmodai@bart.nl>
Notes:
svn path=/head/; revision=23184
|
|
Move sshd.sh to files and ${INSTALL_SCRIPT}/${PERL} -pi it.
Clean up the Makefile's style a bit (MNF anyone? :)
Add WWW: to pkg/DESCR.
Change MASTER_SITES back to CVS_SITES to avoid problems with
MASTER_SITE_OVERRIDE.
Parts submitted by: Christian Weisgerber <naddy@mips.rhein-neckar.de>, Robert Muir <rmuir@gibralter.net>
Notes:
svn path=/head/; revision=23178
|
|
that the port is broken.
Thanks to Charles "spork" <spork@super-g.com>
Notes:
svn path=/head/; revision=23177
|
|
CVS_SITE is now MASTER_SITES, and each is tried if the previous fails
Include a :pserver: as one of the CVS repositories, so those inside firewalls
should be able to fetch SSH. If this doesn't work for everyone, I've still
got a trick up my sleeve.
Fix rlimit-related warnings people are seeing by moving the setclasscontext()
to before the switching of uids. Let me know if this does not work, as I
never got the warnings in the first place.
Don't clobber sshd_config, etc. Instead, if they're there, just warn of
their existance.
Take the config files and sshd.sh out of the pkg/PLIST, mainly so you don't
lose your configuration files by doing a "make deinstall reinstall clean"
update.
Parts submitted by: Robert Muir <rmuir@gibralter.net>, Travis Mikalson <bofh@terranova.net>
Notes:
svn path=/head/; revision=23167
|
|
is now done in post-patch.
Submitted by: Anton Berezin <tobez@plab.ku.dk>, Christian Weisgerber <naddy@unix-ag.uni-kl.de>
Notes:
svn path=/head/; revision=23166
|
|
Notes:
svn path=/head/; revision=23159
|
|
Update to to the current time for OpenSSH. The notable commit given to me
for this new date is:
(provos@cvs.openbsd.org)
usr.bin/ssh : hostfile.c
in known_hosts key lookup the entry for the bits does not need to match, all
the information is contained in n and e. This solves the problem with buggy
servers announcing the wrong modulus length. markus and me.
Notes:
svn path=/head/; revision=23158
|
|
PR: 14792
Notes:
svn path=/head/; revision=23155
|
|
Submitted by: drow@false.org
Reviewed by: ache
PR: 14749
Notes:
svn path=/head/; revision=23147
|
|
files. Also, CVS_RSH can now be specified (to override the ignored
environmental CVS_RSH) as PORTS_CVS_RSH. For instance, you can use ssh
to check out ssh ( :] ) with "PORTS_CVS_RSH=ssh make fetch".
Notes:
svn path=/head/; revision=23137
|
|
nonexistant). Also, add the Makefile hooks for AFS, Kerberos, and S/Key.
Notes:
svn path=/head/; revision=23135
|
|
and umask. Also support /var/run/nologin, copyright, and support motd
correctly. The PR was used as a base, thanks!
PR: 14859
Submitted by: Dan Harnett <danh@wzrd.com>
Notes:
svn path=/head/; revision=23057
|
|
PR: ports/14605
Submitted by: Will Andrews <andrews@technologist.com>
Notes:
svn path=/head/; revision=23053
|
|
1. Makefile cleanups, pkg/DESCR original comment (obrien)
2. sshd.sh and automatic host key generation when installed
(Christian Weisgerber <naddy@unix-ag.uni-kl.de>)
3. Completely redone downloading procedure:
* CVS is used to download the source (${CVS_CMD} defaults to
cvs -z3)
* MD5 checksums and a specific ${CVS_DATE} are used to get
a specific source tree and verify it; ${CVS_DATE} and
checksums can easily be rolled forward once tested.
* Source is checked out to distfiles like other ports,
and is only updated when ${CVS_DATE} changes.
Rebuilding the port doesn't require another cvs co.
Enjoy!
Reviewed mostly by: obrien
Notes:
svn path=/head/; revision=23051
|
|
Notes:
svn path=/head/; revision=23036
|
|
Notes:
svn path=/head/; revision=23033
|
|
Add "/usr/local/bin" to _PATH_STDPATH (makes scp work inbound, for instance.)
Fetch OpenSSH from OpenBSD's src tree. This uses a script and ftp(1).
Add strlcpy.c to ssh/lib, so this port should build on 3.X now.
Make TCP_WRAPPERS conditional on /usr/include/tcpd.h like the PR, so it
should build on older RELEASEs without TCP Wrappers.
The PR is still open because I am taking more from it.
PR: ports/14653
Notes:
svn path=/head/; revision=23032
|
|
in no way cryptographically encumbered code. The fact that it's
redistributed by me from freefall is completely coincidental.
Submitted by: obrien, Christian Weisgerber <naddy@unix-ag.uni-kl.de>
Notes:
svn path=/head/; revision=22988
|
|
Notes:
svn path=/head/; revision=22984
|
|
Notes:
svn path=/head/; revision=22964
|
|
is actively maintained by members of the OpenBSD project.
Notes:
svn path=/head/; revision=22963
|
|
Notes:
svn path=/head/; revision=22962
|
|
because openssl also builds shared libraries, now.
Notes:
svn path=/head/; revision=22957
|
|
Submitted by: Issei Suzuki <issei@jp.freebsd.org>
Notes:
svn path=/head/; revision=22956
|
|
PREFIX handling.
OK'ed by: MAINTAINER (a few days ago)
Notes:
svn path=/head/; revision=22949
|
|
some time ago).
Notes:
svn path=/head/; revision=22944
|
