rpms/openssh
7
0
Fork 1
Code Issues Pull Requests Releases Activity

Commit Graph

  • 3d742c1851 Add gssapi key exchange patch Jan F. Chadima 2009-11-20 15:06:47 +0000
  • 201f4ac5e9 Add public key agent patch Jan F. Chadima 2009-11-20 10:51:18 +0000
  • d2767e5768 Repair canohost patch to allow gssapi to work when host is acessed via pipe proxy Jan F. Chadima 2009-11-02 11:29:48 +0000
  • 5fb555b7fa Modify the init script to prevent it to hang during generating the keys Jan F. Chadima 2009-10-29 09:30:48 +0000
  • 838d936248 Add README.nss Jan F. Chadima 2009-10-27 13:48:48 +0000
  • e47cb00157 - Add pam_ssh_agent_auth module to a subpackage. Tomáš Mráz 2009-10-19 07:32:33 +0000
  • 2ed3f9b53a Renable audit. Jan F. Chadima 2009-10-17 07:46:49 +0000
  • c54a8b0af7 Upgrade to new wersion 5.3p1 Jan F. Chadima 2009-10-02 13:50:30 +0000
  • 35695c001b Upgrade to new wersion 5.3p1 Jan F. Chadima 2009-10-02 13:17:07 +0000
  • 71e8744e6a Resolve locking in ssh-add Jan F. Chadima 2009-09-30 06:43:43 +0000
  • f013bee3ec Repair initscript to be acord to guidelines Jan F. Chadima 2009-09-24 16:05:27 +0000
  • cee78eb11c Repair initscript to be acord to guidelines Jan F. Chadima 2009-09-24 12:34:16 +0000
  • 4330e6af2b Changed pam stack to password-auth Jan F. Chadima 2009-09-16 08:12:30 +0000
  • 3d51c727c3 Dropped homechroot path Jan F. Chadima 2009-09-11 08:10:13 +0000
  • 0447c9e3b7 Dropped homechrot patch Jan F. Chadima 2009-09-11 08:04:22 +0000
  • 257d66a4fb Add check for nosuid, nodev in homechroot Jan F. Chadima 2009-09-07 10:20:22 +0000
  • 49d0cf7e60 add correct patch for ip-opts Jan F. Chadima 2009-09-01 18:51:41 +0000
  • bd8eb961cd replace ip-opts patch by an upstream candidate version Jan F. Chadima 2009-09-01 14:02:15 +0000
  • ce94daebbc Upstream convergence Jan F. Chadima 2009-08-31 12:40:05 +0000
  • 726565c3b0 Upstream convergence Jan F. Chadima 2009-08-31 12:38:20 +0000
  • 56bb42082f rearange sesftp patch acording to upstream request Jan F. Chadima 2009-08-28 22:43:53 +0000
  • 15914f24ed rearange patches Jan F. Chadima 2009-08-28 21:46:27 +0000
  • 214b7b9738 minor change in sesftp patch Jan F. Chadima 2009-08-26 11:01:42 +0000
  • 170a775711 Minor repair of sesftp patch Jan F. Chadima 2009-08-26 10:44:57 +0000
  • 80bcb17706 - rebuilt with new openssl Tomáš Mráz 2009-08-21 15:08:09 +0000
  • 986cee7298 Added dnssec support. Jan F. Chadima 2009-07-30 08:29:01 +0000
  • 42c539189a - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild Jesse Keating 2009-07-25 20:53:38 +0000
  • aa89838a87 only INTERNAL_SFTP can be home-chrooted save _u and _r parts of context changing to sftpd_t Jan F. Chadima 2009-07-24 06:15:35 +0000
  • a827feebfb changed internal-sftp context to sftpd_t Jan F. Chadima 2009-07-22 14:22:03 +0000
  • f35d4ae72e changed internal-sftp context to sftpd_t Jan F. Chadima 2009-07-21 08:59:16 +0000
  • 3d6b00af7e changed internal-sftp context to sftpd_t Jan F. Chadima 2009-07-17 07:06:59 +0000
  • ca05b36451 create '~/.ssh/known_hosts' within proper context Jan F. Chadima 2009-06-30 10:26:13 +0000
  • f4b0b4b772 length of home path in ssh now limited by PATH_MAX Jan F. Chadima 2009-06-29 20:51:17 +0000
  • eca05fc45d final version chroot %%h (sftp only) Jan F. Chadima 2009-06-27 06:24:04 +0000
  • c1398b876e repair broken ls in chroot %%h Jan F. Chadima 2009-06-23 17:59:23 +0000
  • ecd8460a44 add XMODIFIERS to exported environment Jan F. Chadima 2009-06-12 12:57:27 +0000
  • 5341122cd7 add XMODIFIERS to exported environment Jan F. Chadima 2009-06-12 12:29:54 +0000
  • e45f2ca7df add XMODIFIERS to exported environment Jan F. Chadima 2009-06-12 12:12:51 +0000
  • 76f329ece1 - allow only protocol 2 in the FIPS mode Tomáš Mráz 2009-05-15 14:44:21 +0000
  • 685b6239bb - do integrity verification only on binaries which are part of the OpenSSH FIPS modules Tomáš Mráz 2009-04-30 12:03:29 +0000
  • 0a4fa5d1ed - log if FIPS mode is initialized - make aes-ctr cipher modes work in the FIPS mode Tomáš Mráz 2009-04-20 12:18:49 +0000
  • 3a94ae1476 *** empty log message *** Jan F. Chadima 2009-04-03 13:03:29 +0000
  • 061e214116 - fix logging after chroot - enable non root users to use chroot %h in internal-sftp Jan F. Chadima 2009-04-03 12:37:30 +0000
  • 0f07b4ad95 - add AES-CTR ciphers to the FIPS mode proposal Tomáš Mráz 2009-03-13 10:32:52 +0000
  • adad2a814e Upgrade to version 5.2p1 Jan F. Chadima 2009-03-10 13:39:03 +0000
  • 48bd443ba4 Upgrade to version 5.2p1 Jan F. Chadima 2009-03-10 12:21:29 +0000
  • 194f64351a Upgrade na version 5.2p1 Jan F. Chadima 2009-03-10 12:17:53 +0000
  • ed9a890257 bounce openssh to version 5.2p1 Jan F. Chadima 2009-03-10 12:07:37 +0000
  • a3ba41c854 Bounce openssh to version 5.2p1 Jan F. Chadima 2009-03-10 11:54:44 +0000
  • c5f25a5f48 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild Jesse Keating 2009-02-26 08:48:36 +0000
  • d93958db19 - drop obsolete triggers - add testing FIPS mode support - LSBize the initscript (#247014) Tomáš Mráz 2009-02-12 18:19:52 +0000
  • ff6d597308 - enable use of ssl engines (#481100) Tomáš Mráz 2009-01-30 15:44:41 +0000
  • 6a5e296ba7 - remove obsolete --with-rsh (#478298) - add pam_sepermit to allow blocking confined users in permissive mode (#471746) - move system-auth after pam_selinux in the session stack Tomáš Mráz 2009-01-15 10:52:07 +0000
  • 9e5c6ecd02 - set FD_CLOEXEC on channel sockets (#475866) - adjust summary - adjust nss-keys patch so it is applicable without selinux patches (#470859) Tomáš Mráz 2008-12-11 21:48:41 +0000
  • b9a07ad737 - fix compatibility with some servers (#466818) Tomáš Mráz 2008-10-17 08:34:36 +0000
  • 578f0d08a9 - fixed zero length banner problem (#457326) Tomáš Mráz 2008-07-31 09:22:18 +0000
  • ec5276165c - rediff for no fuzz Tomáš Mráz 2008-07-23 17:33:16 +0000
  • 09510adc7c - rediff for zero fuzz tolerance Tomáš Mráz 2008-07-23 16:30:14 +0000
  • 93a4744539 - upgrade to new upstream release - fixed a problem with public key authentication and explicitely specified SELinux role Tomáš Mráz 2008-07-23 14:50:23 +0000
  • 077dad7320 - pass the connection socket to ssh-keysign (#447680) Tomáš Mráz 2008-05-21 08:16:23 +0000
  • 1961bc12e6 - add LANGUAGE to accepted/sent environment variables (#443231) - use pam_selinux to obtain the user context instead of doing it itself - unbreak server keep alive settings (patch from upstream) - small addition to scp manpage Tomáš Mráz 2008-05-19 16:53:29 +0000
  • ca47f63941 - upgrade to new upstream (#441066) - prevent initscript from killing itself on halt with upstart (#438449) - initscript status should show that the daemon is running only when the main daemon is still alive (#430882) Tomáš Mráz 2008-04-07 20:14:31 +0000
  • 2cb0e73a4e - set FD_CLOEXEC on client socket - apply real fix for window size problem (#286181) from upstream - apply fix for the spurious failed bind from upstream - apply open handle leak in sftp fix from upstream Tomáš Mráz 2008-02-29 16:34:03 +0000
  • 91bdf496cd we build sparc32 sparcv9 by default now it needed adding to the -fPIE list Dennis Gilmore 2008-02-13 03:52:43 +0000
  • 993dd1a3db - fix gssapi auth with explicit selinux role requested (#427303) - patch by Nalin Dahyabhai Tomáš Mráz 2008-01-03 17:45:59 +0000
  • 3457e3e00f - explicitly source krb5-devel profile script Tomáš Mráz 2007-12-04 19:03:49 +0000
  • 2cc09c66ed - explicitly source krb5-devel profile script - rebuild for openssl bump Tomáš Mráz 2007-12-04 18:58:25 +0000
  • 9eac427785 - Rebuild for openssl bump Jesse Keating 2007-12-04 18:47:33 +0000
  • 320a1c8f0e - localtime in chroot no longer needed Tomáš Mráz 2007-11-20 18:38:37 +0000
  • 0a9a4072ef - must require ncurses-devel for libedit Tomáš Mráz 2007-11-20 18:26:30 +0000
  • b1ffa00b4c - version bump Tomáš Mráz 2007-11-20 15:04:37 +0000
  • 8b8c4dc83c - do not copy /etc/localtime into the chroot as it is not necessary anymore (#193184) - call setkeycreatecon when selinux context is established - test for NULL privk when freeing key (#391871) - patch by Pierre Ossman Tomáš Mráz 2007-11-20 14:53:45 +0000
  • 5d613bead0 makefile update to properly grab makefile.common Bill Nottingham 2007-10-15 19:12:18 +0000
  • 95be083504 - revert default window size adjustments (#286181) Tomáš Mráz 2007-09-17 21:33:02 +0000
  • c9833c96a4 - upgrade to latest upstream - use libedit in sftp (#203009) - fixed audit log injection problem (CVE-2007-3102) Tomáš Mráz 2007-09-06 19:49:16 +0000
  • f370730d3b - fix sftp client problems on write error (#247802) - allow disabling autocreation of server keys (#235466) Tomáš Mráz 2007-08-09 18:33:41 +0000
  • fc2f31df03 - oops committed testing only change Tomáš Mráz 2007-06-20 19:33:53 +0000
  • 0092bbd526 - add buildrequires nss-devel to build with the nss-keys patch Tomáš Mráz 2007-06-20 19:11:49 +0000
  • c3274ccb32 - experimental NSS keys support - correctly setup context when empty level requested (#234951) Tomáš Mráz 2007-06-20 17:47:18 +0000
  • 7210c0162a - mls level check must be done with default role same as requested Tomáš Mráz 2007-03-20 09:13:40 +0000
  • b40baab181 - make profile.d/gnome-ssh-askpass.* regular files (#226218) Tomáš Mráz 2007-03-19 11:57:36 +0000
  • 546fdd9f47 - reject connection if requested mls range is not obtained (#229278) Tomáš Mráz 2007-03-01 08:28:22 +0000
  • 9d725bd1ab - improve Buildroot - remove duplicate /etc/ssh from files Tomáš Mráz 2007-02-22 13:00:51 +0000
  • 73a8557dfd - fix some forward porting typos Tomáš Mráz 2007-01-16 21:20:04 +0000
  • c2b35d09c0 - support mls on labeled networks (#220487) - support mls level selection on unlabeled networks - allow / in usernames in scp (only beginning /, ./, and ../ is special) Tomáš Mráz 2007-01-16 20:58:00 +0000
  • 45f17da853 - buildrequire tcp_wrappers-devel Tomáš Mráz 2006-12-21 13:59:55 +0000
  • ad07b998ed - update to 4.5p1 (#212606) Tomáš Mráz 2006-12-21 13:42:47 +0000
  • 914284ff3f - fix gssapi with DNS loadbalanced clusters (#216857) Tomáš Mráz 2006-11-30 10:50:12 +0000
  • d63dc67db7 - improved pam_session patch so it doesn't regress, the patch is necessary for the pam_session_close to be called correctly as uid 0 Tomáš Mráz 2006-11-28 21:14:50 +0000
  • ad61b116d1 - CVE-2006-5794 - properly detect failed key verify in monitor (#214641) Tomáš Mráz 2006-11-10 10:00:04 +0000
  • 19675afc7c - merge sshd initscript patches - kill all ssh sessions when stop is called in halt or reboot runlevel - remove -TERM option from killproc so we don't race on sshd restart Tomáš Mráz 2006-11-02 13:33:37 +0000
  • 7114c4238b - improve gssapi-no-spnego patch (#208102) - CVE-2006-4924 - prevent DoS on deattack detector (#207957) - CVE-2006-5051 - don't call cleanups from signal handler (#208459) Tomáš Mráz 2006-10-02 17:35:50 +0000
  • ac4818c499 - don't report duplicate syslog messages, use correct local time (#189158) - don't allow spnego as gssapi mechanism (from upstream) - fixed memleaks found by Coverity (from upstream) - allow ip options except source routing (#202856) (patch by HP) Tomáš Mráz 2006-08-23 21:06:38 +0000
  • c12d6ba86c - drop the pam-session patch from the previous build (#201341) - don't set IPV6_V6ONLY sock opt when listening on wildcard addr (#201594) Tomáš Mráz 2006-08-08 11:58:33 +0000
  • 762e407bd5 - dropped old ssh obsoletes - call the pam_session_open/close from the monitor when privsep is enabled so it is always called as root (patch by Darren Tucker) Tomáš Mráz 2006-07-20 11:06:42 +0000
  • ef32423955 - improve selinux patch (by Jan Kiszka) - upstream patch for buffer append space error (#191940) - fixed typo in configure.ac (#198986) - added pam_keyinit to pam configuration (#198628) - improved error message when askpass dialog cannot grab keyboard input (#198332) - buildrequires xauth instead of xorg-x11-xauth - fixed a few rpmlint warnings Tomáš Mráz 2006-07-17 14:09:15 +0000
  • d446e97b50 bumped for rebuild Jesse Keating 2006-07-12 07:35:41 +0000
  • 7e1c558992 - don't request pseudoterminal allocation if stdin is not tty (#188983) Tomáš Mráz 2006-04-14 08:26:10 +0000
  • 5f29aca399 - allow access if audit is not compiled in kernel (#183243) Tomáš Mráz 2006-03-02 21:37:28 +0000
  • e01ed66930 - enable the subprocess in chroot to send messages to system log - sshd should prevent login if audit call fails Tomáš Mráz 2006-02-24 14:07:41 +0000