Jakub Jelen
751cd9acc7
Use OpenSSL high-level API to produce and verify signatures
...
Resolves: rhbz#1707485
2019-05-14 13:32:04 +02:00
Jakub Jelen
6caa973459
Mention crypto-policies in the manual pages instead of the hardcoded defaults
...
Resolves: rhbz#1668325
2019-05-13 14:22:21 +02:00
Jakub Jelen
4feb6a973f
Verify SCP vulnerabilities are fixed in the package testsuite
2019-05-10 14:34:35 +02:00
Jakub Jelen
b33caef080
Drop unused patch
2019-05-07 13:45:34 +02:00
Jakub Jelen
def1debf2e
openssh-8.0p1-1 + 0.10.3-7
...
Resolves rhbz#1701072
2019-04-29 14:12:13 +02:00
Jakub Jelen
f51d092120
Remove unused parts of spec file
2019-03-27 13:20:32 +01:00
Jakub Jelen
91aa3d4921
openssh-7.9p1-5 + 0.10.3.6
2019-03-12 15:16:35 +01:00
Jakub Jelen
1341391c78
Update cached passwd structure after PAM authentication
2019-03-11 17:17:49 +01:00
Jakub Jelen
7295e97cd1
openssh-7.9p1-4 + 0.10.3.6
2019-02-06 17:19:52 +01:00
Jakub Jelen
d711f557f7
Log when a client requests an interactive session and only sftp is allowed
2019-02-06 17:18:30 +01:00
Jakub Jelen
e8524ac3f4
ssh-copy-id: Minor issues found by shellcheck
2019-02-06 17:18:30 +01:00
Jakub Jelen
8622e384ef
ssh-copy-id: Do not fail in case remote system is out of space
2019-02-06 17:18:30 +01:00
Fedora Release Engineering
4e5f61c2a0
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-02-01 17:32:05 +00:00
Igor Gnatenko
7c726e0a13
Remove obsolete Group tag
...
References: https://fedoraproject.org/wiki/Changes/Remove_Group_Tag
2019-01-28 20:24:24 +01:00
Björn Esser
018ac8d1d9
Rebuilt for libcrypt.so.2 ( #1666033 )
2019-01-14 19:11:16 +01:00
Jakub Jelen
311908c042
openssh-7.9p1-3 + 0.10.3-6
2019-01-14 15:39:08 +01:00
Jakub Jelen
40d2a04909
CVE-2018-20685 ( #1665786 )
2019-01-14 11:05:35 +01:00
Jakub Jelen
322896958a
Backport several fixes from 7_9 branch ( #1665611 )
2019-01-14 11:05:35 +01:00
Jakub Jelen
d6cc5f4740
Backport Match final so the crypto-policies do not break canonicalization ( #1630166 )
2018-11-26 10:16:35 +01:00
Jakub Jelen
a4c0a26cd4
openssh-7.9p1-2 + 0.10.3-6
2018-11-14 09:57:17 +01:00
Jakub Jelen
57e280d1f4
Allow to disable RSA signatures with SHA-1
2018-11-14 09:54:54 +01:00
Jakub Jelen
9f2c8b948c
openssh-7.9p1-1 + 0.10.3-6
2018-10-19 11:46:02 +02:00
Jakub Jelen
6666c19414
Do not break gssapi-kex authentication method
2018-10-19 11:41:34 +02:00
Jakub Jelen
eaa7af2e41
rebase patches to openssh-7.9p1
2018-10-19 11:41:07 +02:00
Jakub Jelen
6c9d993869
Follow the system-wide PATH settings
...
https://fedoraproject.org/wiki/Features/SbinSanity
2018-10-03 11:00:12 +02:00
Jakub Jelen
97ee52c0a3
openssh-7.8p1-3 + 0.10.3-5
2018-09-24 15:25:57 +02:00
Jakub Jelen
8ebb9915a3
Cleanup specfile comments
2018-09-24 15:25:40 +02:00
Jakub Jelen
84d3ff9306
Do not let OpenSSH control our hardening flags
2018-09-21 17:22:35 +02:00
Jakub Jelen
8b9448c5ba
openssh-7.8p1-2 + 0.10.3-5
2018-08-31 13:32:02 +02:00
Jakub Jelen
9409715f65
Unbreak scp between two IPv6 hosts ( #1620333 )
2018-08-31 13:26:44 +02:00
Jakub Jelen
afaf23f6c3
Drop unused patch
2018-08-28 10:51:37 +02:00
Jakub Jelen
bbf61daf97
openssh-7.8p1-1 + 0.10.3-5
...
New upstream release including:
* Dropping entropy patch
* Remove default support for MD5 fingerprints
* Porting all the downstream patches and pam_ssh_agent_auth
to new sshbuf and sshkey API
* pam_ssh_agent_auth is no longer using MD5 fingerprints
2018-08-24 23:16:24 +02:00
Jakub Jelen
01ba761e18
7.7p1-6 + 0.10.3-4
2018-08-09 14:14:18 +02:00
Jakub Jelen
44e2032a0a
fips: Show real list of kex algoritms in FIPS
2018-08-08 10:18:27 +02:00
Fedora Release Engineering
600d4011b5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-07-13 15:11:56 +00:00
Jakub Jelen
e1d855438b
7.7p1-5 + 0.10.3-4
2018-07-03 11:27:15 +02:00
Jakub Jelen
6c68d655b2
Disable manual reading of MOTD by default
2018-07-03 11:26:01 +02:00
Jakub Jelen
62f1736470
7.7p1-4 + 0.10.3-4
2018-06-27 14:09:27 +02:00
Jakub Jelen
1176788778
Improve kerberos credential cache handling ( #1566494 )
2018-06-27 13:40:48 +02:00
Jakub Jelen
04ca5e7b0b
7.7p1-3 + 0.10.3-4
2018-04-16 11:15:43 +02:00
Jakub Jelen
48cef7a0b8
Opening tun devices fails + other regressions in OpenSSH v7.7 fixed upstream
2018-04-16 11:15:37 +02:00
Jakub Jelen
836590e795
7.7p1-2 + 0.10.3-4
2018-04-12 10:35:14 +02:00
Jakub Jelen
b0815ca514
7.7p1-1 + 0.10.3-4
2018-04-04 16:59:45 +02:00
Jakub Jelen
273086d13a
Need a p11-kit to allow default pkcs11 proxy
2018-04-04 16:59:45 +02:00
Jakub Jelen
7e9748a2b5
PKCS#11: Support ECDSA keys and PKCS#11 URIs
...
Based on the patches in upstream bugzilla:
ECDSA:
https://bugzilla.mindrot.org/show_bug.cgi?id=2474
PKCS#11 URI:
https://bugzilla.mindrot.org/show_bug.cgi?id=2817
2018-04-04 16:56:59 +02:00
Jakub Jelen
3cd4899257
Rebase to latest OpenSSH 7.7p1 ( #1563223 )
2018-04-04 16:50:43 +02:00
Jakub Jelen
cbb6ca5123
openssh-7.6p1-7 + 0.10.3-3
2018-03-06 14:37:01 +01:00
Jakub Jelen
bd5b563008
Require crypto policies
2018-03-06 13:53:02 +01:00
Jakub Jelen
c2a9e41702
Recommend crypto policies also for a server
2018-02-19 12:10:48 +01:00
Jakub Jelen
07c951f665
Require gcc
...
https://fedoraproject.org/wiki/Changes/Remove_GCC_from_BuildRoot
2018-02-19 12:10:48 +01:00