aboutsummaryrefslogtreecommitdiff
path: root/secure/usr.bin/ssh
Commit message (Collapse)AuthorAgeFilesLines
...
* X11BASE is not used any more and has been killed by the x11 team.Eitan Adler2012-03-191-13/+0
| | | | | | | | | Reviewed by: ??? Approved by: ??? MFC after: 3 days Notes: svn path=/head/; revision=233136
* Upgrade to OpenSSH 5.4p1.Dag-Erling Smørgrav2010-03-091-1/+1
| | | | | | | MFC after: 1 month Notes: svn path=/head/; revision=204917
* Upgrade to OpenSSH 5.3p1.Dag-Erling Smørgrav2009-10-011-1/+4
| | | | Notes: svn path=/head/; revision=197679
* Upgrade to OpenSSH 5.1p1.Dag-Erling Smørgrav2008-08-011-1/+1
| | | | | | | | | | | | | I have worked hard to reduce diffs against the vendor branch. One notable change in that respect is that we no longer prefer DSA over RSA - the reasons for doing so went away years ago. This may cause some surprises, as ssh will warn about unknown host keys even for hosts whose keys haven't changed. MFC after: 6 weeks Notes: svn path=/head/; revision=181111
* For users of FreeBSD <= 6.2 we recommend during the x.org 7.x upgradeKris Kennaway2008-03-051-1/+10
| | | | | | | | | | | | | | | | | | | | | | | | that they add X11BASE=${LOCALBASE} to /etc/make.conf since X11BASE was hard-wired to the now-wrong location in old releases. However, both X11BASE and LOCALBASE have moved out of scope of src/ into ports/ now, which causes problems for upgraded users who have old make.conf files still containing the above setting. X11BASE becomes null and we instruct ssh and sshd to look for xauth in /bin/xauth where it is unlikely to be found. Instead, provide a copy of the default LOCALBASE?=/usr/local setting here. We also have to deal with the case where the user only overrides LOCALBASE and doesn't set an explicit X11BASE (in ports it will be set implicitly but not here), which will also move the location of xauth. MFC after: 3 days Reported by: rwatson Notes: svn path=/head/; revision=176844
* Add a manual dependency on ssh_namespace.h.Dag-Erling Smørgrav2006-05-131-0/+2
| | | | | | | Discussed with: ru Notes: svn path=/head/; revision=158529
* Introduce a namespace munging hack inspired by NetBSD to avoid pollutingDag-Erling Smørgrav2006-05-131-1/+1
| | | | | | | | | | | the namespace of applications which inadvertantly link in libssh (usually through pam_ssh) Suggested by: lukem@netbsd.org MFC after: 6 weeks Notes: svn path=/head/; revision=158519
* Reimplementation of world/kernel build options. For details, see:Ruslan Ermilov2006-03-171-1/+3
| | | | | | | | | | | http://lists.freebsd.org/pipermail/freebsd-current/2006-March/061725.html The src.conf(5) manpage is to follow in a few days. Brought to you by: imp, jhb, kris, phk, ru (all bugs are mine) Notes: svn path=/head/; revision=156813
* Add a new extensible GSS-API layer which can support GSS-API plugins,Doug Rabson2005-12-291-3/+3
| | | | | | | | | | | | similar the the Solaris implementation. Repackage the krb5 GSS mechanism as a plugin library for the new implementation. This also includes a comprehensive set of manpages for the GSS-API functions with text mostly taken from the RFC. Reviewed by: Love Hörnquist Åstrand <lha@it.su.se>, ru (build system), des (openssh parts) Notes: svn path=/head/; revision=153838
* Revert the commits that made libssh an INTERNALLIB; they caused too muchDag-Erling Smørgrav2005-06-071-4/+4
| | | | | | | | | trouble, especially on amd64. Requested by: ru Notes: svn path=/head/; revision=147098
* Make libssh an INTERNALLIB like it is in {Net,Open}BSD.Dag-Erling Smørgrav2005-06-061-4/+4
| | | | Notes: svn path=/head/; revision=147056
* Update for OpenSSH 4.1p1.Dag-Erling Smørgrav2005-06-051-1/+1
| | | | Notes: svn path=/head/; revision=147007
* Update for 3.8p1, including workaround for a bug in gss-genr.c.Dag-Erling Smørgrav2004-02-261-1/+2
| | | | Notes: svn path=/head/; revision=126282
* Fixed static linkage.Ruslan Ermilov2004-01-081-2/+5
| | | | | | | Reviewed by: des Notes: svn path=/head/; revision=124249
* Enable GSSAPI support. [1]Dag-Erling Smørgrav2004-01-081-4/+4
| | | | | | | | | Also remove some duplicates from ssh's SRCS. Submitted by: [1] Björn Grönvall <bg@sics.se> Notes: svn path=/head/; revision=124242
* Update Makefiles for OpenSSH 3.7.1p2.Dag-Erling Smørgrav2004-01-071-2/+2
| | | | Notes: svn path=/head/; revision=124212
* Fixed "make checkdpadd".Ruslan Ermilov2003-07-021-2/+2
| | | | | | | OK'ed by: markm Notes: svn path=/head/; revision=117181
* Turn MAKE_KERBEROS5 into NO_KERBEROS by negating the logic. Some extraMark Murray2003-05-051-1/+1
| | | | | | | | cleanups were necessary in release/Makefile, and the tinderbox code was syntax checked, not run checked. Notes: svn path=/head/; revision=114709
* We no longer have a separate kerberos distribution. Its now justMark Murray2003-04-301-1/+0
| | | | | | | part of the regular security dist. Notes: svn path=/head/; revision=114302
* Update for 3.6.1p1; also remove Kerberos IV shims.Dag-Erling Smørgrav2003-04-231-7/+0
| | | | Notes: svn path=/head/; revision=113915
* Update for OpenSSH 3.5p1.Dag-Erling Smørgrav2002-10-291-1/+1
| | | | Notes: svn path=/head/; revision=106132
* ssh-keysign(8) belongs in /usr/libexec, not in /usr/bin, and needs to beDag-Erling Smørgrav2002-07-051-3/+0
| | | | | | | | | | setuid so ssh(1) doesn't have to be. Pointy hat to: des Submitted by: Katsuyuki TATEISHI <katsu@iec.hiroshima-u.ac.jp> Notes: svn path=/head/; revision=99430
* No guts, no glory. Switch to OpenSSH-portable.Dag-Erling Smørgrav2002-06-251-1/+2
| | | | | | | Sponsored by: DARPA, NAI Labs Notes: svn path=/head/; revision=98820
* Previous commit made no sense.Dag-Erling Smørgrav2002-06-241-1/+2
| | | | Notes: svn path=/head/; revision=98740
* Install the new man pages.Dag-Erling Smørgrav2002-06-231-1/+1
| | | | Notes: svn path=/head/; revision=98707
* Milestone #1 in cross-arch make releases.Ruslan Ermilov2002-04-261-6/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Do not install games and profiled libraries to the ${CHROOTDIR} with the initial installworld. Eliminate the need in the second installworld. For that, make sure _everything_ is built in the "world" environment, using the right tool chain. Added SUBDIR_OVERRIDE helper stuff to Makefile.inc1. Split the buildworld process into stages, and skip some stages when SUBDIR_OVERRIDE is set (used to build crypto, krb4, and krb5 dists). Added NO_MAKEDB_RUN knob to Makefile.inc1 to avoid running makewhatis(1) at the end of installworld (used when making crypto, krb4, and krb5 dists). In release/scripts/doFS.sh, ensure that the correct boot blocks are used. Moved the creation of the "crypto" dist from release.5 to release.2. In release.3 and doMFSKERN, build kernels in the "world" environment. KERNELS now means "additional" kernels, GENERIC is always built. Ensure we build crunched binaries in the "world" environment. Obfuscate release/Makefile some more (WMAKEENV) to achieve this. Inline createBOOTMFS target. Use already built GENERIC kernel modules to augment mfsfd's /stand/modules. GC doMODULES as such. Assorted fixes: Get rid of the "afterdistribute" target by moving the single use of it from sys/Makefile to etc/Makefile's "distribute". Makefile.inc1: apparently "etc" no longer needs to be last for "distribute" to succeed. gnu/usr.bin/perl/library/Makefile.inc: do not override the "install" and "distribute" targets, do it the "canonical" way. release/scripts/{man,cat}pages-make.sh: make sure Perl manpages and catpages appear in the right dists. Note that because Perl does not respect the MANBUILDCAT (and NOMAN), this results in a loss of /usr/share/perl/man/cat* empty directories. This will be fixed soon. Turn MAKE_KERBEROS4 into a plain boolean variable (if it is set it means "make KerberosIV"), as documented in the make.conf(5) manpage. Most of the userland makefiles did not test it for "YES" anyway. XXX Should specialized kerberized libpam versions be included into the krb4 and krb5 dists? (libpam.a would be incorrect anyway if both krb4 and krb5 dists were choosen.) Make sure "games" dist is made before "catpages", otherwise games catpages settle in the wrong dist. Fast build machine provided by: Igor Kucherenko <kivvy@sunbay.com> Notes: svn path=/head/; revision=95509
* Add pam_ssh support to the static PAM library, libpam.a:Ruslan Ermilov2002-01-231-1/+1
| | | | | | | | | | | | | | - Spam /usr/lib some more by making libssh a standard library. - Tweak ${LIBPAM} and ${MINUSLPAM}. - Garbage collect unused libssh_pic.a. - Add fake -lz dependency to secure/ makefiles needed for dynamic linkage with -lssh. Reviewed by: des, markm Approved by: markm Notes: svn path=/head/; revision=89705
* Follow the OpenSSH 2.9 upgrade with the infrastructure. Two newBrian Feldman2001-05-041-2/+2
| | | | | | | programs are now included: sftp(1) and ssh-keyscan(1). Notes: svn path=/head/; revision=76264
* secure/ build fixes:Ruslan Ermilov2001-03-261-11/+4
| | | | | | | | | | | | | | | | | | | | | | | - TELNETOBJDIR is gone. `buildworld' already installs libtelnet.a in ${WORLDTMP}/usr/lib, and we have LIBRARY_PATH pointing there. - SSHDIR (formerly SSHSRC) is now shared between all SSH modules. New LIBSSH is introduced for libssh.a (an internal static lib). Previously, build without prior `obj' was broken; SSH modules always looked for libssh.a in ${.OBJDIR}. Also, the dependancies on the libssh.a were missing. - libtelnet/ did not install the crypto version of telnet.h into /usr/include/arpa. - Removed BINOWN, BINMODE, BINDIR and SRCS with default values. Reviewed by: markm - MAN[1-9] -> MAN. Notes: svn path=/head/; revision=74818
* Disable /usr/bin/ssh being setuid root by default. Let the variableBrian Feldman2000-11-141-0/+2
| | | | | | | | | | | | | ENABLE_SUID_SSH being defined reenable it for those that want it. This follows discussion favoring the change from September. It is not usually necessary to be setuid root, possibly less safe, and less convenient (cannot use $HOSTALIASES, for example). Submitted by: jedgar Notes: svn path=/head/; revision=68705
* Update for OpenSSH 2.2.0Kris Kennaway2000-09-101-2/+2
| | | | Notes: svn path=/head/; revision=65675
* Add missing quotes around xauth pathAndrey A. Chernov2000-08-231-1/+1
| | | | Notes: svn path=/head/; revision=65029
* Respect X11BASE to derive the location of xauth(1)Kris Kennaway2000-08-231-0/+4
| | | | | | | | PR: 17818 Submitted by: Bjoern Fischer <bfischer@Techfak.Uni-Bielefeld.DE> Notes: svn path=/head/; revision=65020
* Update for OpenSSH 2.1Kris Kennaway2000-05-151-1/+2
| | | | Notes: svn path=/head/; revision=60577
* Update for latest OpenSSHKris Kennaway2000-03-261-1/+1
| | | | Notes: svn path=/head/; revision=58586
* MFI: Make ssh and sshd link in the krb5 part of make release.John Hay2000-03-031-2/+2
| | | | | | | Reviewed by: markm Notes: svn path=/head/; revision=57743
* New distribution names.Mark Murray2000-02-281-2/+4
| | | | Notes: svn path=/head/; revision=57569
* Don't pull in libRSAglue for the rsaref case. Since this is linkedPeter Wemm2000-02-251-4/+0
| | | | | | | | dynamically by default, we use the dlopen() calls to load librsaref.so on US code trees. Notes: svn path=/head/; revision=57475
* Add the OpenSSH userland-building Makefiles.Mark Murray2000-02-241-0/+41
Notes: svn path=/head/; revision=57434
generated by cgit v1.3 (git 2.53.0) at 2026-04-06 12:59:50 +0000