rpms
/
openssh
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
505 Commits 32 Branches 239 Tags 9.6 MiB
Commit Graph

505 Commits

Author SHA1 Message Date
Petr Lautrbach dea4ec84f7 prevent a server from skipping SSHFP lookup (#1081338) 
CVE-2014-2653
 2014-05-19 13:31:13 +02:00
Petr Lautrbach 7126dda63a make /etc/ssh/moduli file public (#1043661) 2014-05-19 12:50:05 +02:00
Petr Lautrbach 37a151ef1a use tty allocation for a remote scp 2014-05-19 12:41:44 +02:00
Petr Lautrbach 36116fbf1f Run ssh-copy-id in the legacy mode when SSH_COPY_ID_LEGACY variable is set 2014-05-19 12:39:27 +02:00
Petr Lautrbach 5eab591ecf fix fatal() cleanup in the audit patch (#1029074) 2014-05-19 12:34:23 +02:00
Petr Lautrbach fbb4501051 fix parsing logic of ldap.conf file (#1033662) 2014-05-19 11:28:25 +02:00
Petr Lautrbach 39e9abc944 6.2p2-7 + 0.9.3-5 2013-12-11 15:45:21 +01:00
Petr Lautrbach 963137cbfb sshd-keygen - create an ecdsa host key with 640 permissions (#1023945) 2013-12-09 11:19:32 +01:00
Petr Lautrbach de69b66ff7 minor change in HOWTO.ssh-keycat - s/AuthorizedKeysCommandRunAs/AuthorizedKeysCommandUser/ 2013-11-25 15:55:24 +01:00
Petr Lautrbach 45ce750683 6.2p2-6 + 0.9.3-5 2013-11-18 12:21:30 +01:00
Petr Lautrbach 7ead42662f sshd-keygen to generate ECDSA keys <i.grok@comcast.net> (#1019222) 2013-11-18 12:21:22 +01:00
Petr Lautrbach 0269d39f77 Increase the size of the Diffie-Hellman groups requested for a each symmetric key size. New values from NIST Special Publication 800-57 with the upper limit specified by RFC4419. Pointed out by Peter Backes, ok djm@. (#1010607) 2013-11-18 12:21:09 +01:00
Petr Lautrbach 631ffb2c5b 6.2p2-5 + 0.9.3-5 2013-08-01 09:50:41 +02:00
Petr Lautrbach b20efed7e1 gssapi credentials need to be stored before a pam session opened (#987792) 2013-08-01 09:35:58 +02:00
Petr Lautrbach 115aad3f92 6.2p2-4 + 0.9.3-5 2013-07-23 16:01:17 +02:00
Petr Lautrbach 17df27c668 don't show Success for EAI_SYSTEM (#985964) 2013-07-23 12:07:49 +02:00
Petr Lautrbach 2ee6810919 make sftp's libedit interface marginally multibyte aware (#841771) 2013-06-19 17:10:49 +02:00
Petr Lautrbach 66608a1ded 6.2p2-3 + 0.9.3-5 2013-06-17 17:30:04 +02:00
Petr Lautrbach aacd017a6d move kerberos cache to /run/user/<uid>/ by default (#848228) 
fix kerberos cache handling to allow sucessful ticket forwarding
 2013-06-17 17:29:55 +02:00
Petr Lautrbach e6dbb83190 make an object class filter configurable <charles@dyfis.net> (#963281) 2013-06-07 15:12:40 +02:00
Petr Lautrbach e99c4840f1 6.2p2-2 + 0.9.3-5 2013-05-21 18:38:15 +02:00
Petr Lautrbach 678b8081f1 add socket activated sshd units to the package (#963268) 2013-05-21 18:37:18 +02:00
Petr Lautrbach f5022aa5ae fix the example in the HOWTO.ldap-keys 2013-05-20 15:03:49 +02:00
Petr Lautrbach f29f755295 remove unused openssh-6.2p1-track-IdentifyFile.patch 2013-05-20 10:25:32 +02:00
Petr Lautrbach 21acbc4795 6.2p2-1 + 0.9.3-5 2013-05-20 09:31:57 +02:00
Petr Lautrbach d48f1a7bde always use /sbin/nologin as privsep user's shell 2013-04-24 18:08:00 +02:00
Petr Lautrbach a92d7445da 6.2p1-4 + 0.9.3-4 2013-04-17 17:12:32 +02:00
Petr Lautrbach 1a246a3ad0 don't use export in sysconfig file (#953111) 2013-04-17 16:46:47 +02:00
Petr Lautrbach df630eaccf don't use GPLv3 versions of config.{sub,guess} 2013-04-17 16:29:14 +02:00
Petr Lautrbach 1d76d11f64 cleanup spec file and patches 2013-04-16 18:30:43 +02:00
Petr Lautrbach c276d31b49 6.2p1-3 + 0.9.3-4 2013-04-16 18:15:20 +02:00
Petr Lautrbach 894ab5eaaf add latest config.{sub,guess} to support aarch64 (#926284) 2013-04-16 18:12:15 +02:00
Petr Lautrbach 383e3516fc sshd.service: use KillMode=process (#890376) 2013-04-12 15:15:45 +02:00
Petr Lautrbach 1042786f58 6.2p1-2 + 0.9.3-4 2013-04-09 23:25:17 +02:00
Petr Lautrbach fcef7f6231 keep track of which IndentityFile options were manually supplied and which were default options, and don't warn if the latter are missing. (mindrot#2084) 2013-04-09 23:22:42 +02:00
Petr Lautrbach 2f45e7c61b fix sources 2013-04-09 00:14:11 +02:00
Petr Lautrbach b6f89abe5c 6.2p1-1 + 0.9.3-4 2013-04-09 00:07:04 +02:00
Petr Lautrbach 014fe81ce3 fix several issues with empty MAC in openssh-6.2p1-audit.patch 2013-04-08 23:45:04 +02:00
Petr Lautrbach d3d59da0b5 merge all -audit* patches together 2013-04-08 17:17:10 +02:00
Petr Lautrbach 8d97022c57 build regress/modpipe tests with $(CFLAGS) 2013-04-04 16:50:06 +02:00
Petr Lautrbach 8a29dedfa7 rebase to openssh-6.2p1 (#924727) 
ACSS was removed from upstream sources
 2013-04-04 16:49:30 +02:00
Petr Lautrbach 811ec1dd36 allow specification of alternate host key location(s) via /etc/sysconfig/sshd 
<john_florian@dart.biz> (#865803)
 2013-03-26 15:43:28 +01:00
Petr Lautrbach 1b95bc38df 6.1p1-7 + 0.9.3-3 2013-03-06 10:41:50 +01:00
Petr Lautrbach 338e71981d use SELinux type sshd_net_t for [net] childs (#915085) 2013-03-06 10:40:28 +01:00
Petr Lautrbach 2a7883d153 6.1p1-6 + 0.9.3-3 2013-02-14 18:08:21 +01:00
Petr Lautrbach c9e43cd2f8 fix AuthorizedKeysCommand option and adopt latest upstream changes 2013-02-14 18:06:17 +01:00
Petr Lautrbach d2b3b9a27e pam_ssh_agent_auth - change paths from %{_lib} to %{_libdir} 2013-02-12 09:42:54 +01:00
Petr Lautrbach 19725a9954 fix bogus day names in changelog dates 2013-02-08 15:44:40 +01:00
Petr Lautrbach cab7f53408 6.1p1-5 + 0.9.3-3 2013-02-08 14:56:47 +01:00
Petr Lautrbach 5bc906c19a change default value of MaxStartups - CVE-2010-5107 - #908707 2013-02-08 14:32:20 +01:00