зеркало из https://github.com/Azure/sonic-openssh.git
34132e54cb
- [sshd.c sshd.8 sshconnect.c ssh.h ssh.c servconf.h servconf.c scp.1]
[scp.c packet.h packet.c login.c log.c canohost.c channels.c]
[hostfile.c sshd_config]
ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new
features: sshd allows multiple ListenAddress and Port options. note
that libwrap is not IPv6-ready. (based on patches from
fujiwara@rcac.tdi.co.jp)
- [ssh.c canohost.c]
more hints (hints.ai_socktype=SOCK_STREAM) for getaddrinfo,
from itojun@
- [channels.c]
listen on _all_ interfaces for X11-Fwd (hints.ai_flags = AI_PASSIVE)
- [packet.h]
allow auth-kerberos for IPv4 only
- [scp.1 sshd.8 servconf.h scp.c]
document -4, -6, and 'ssh -L 2022/::1/22'
- [ssh.c]
'ssh @host' is illegal (null user name), from
karsten@gedankenpolizei.de
- [sshconnect.c]
better error message
- [sshd.c]
allow auth-kerberos for IPv4 only
- Big IPv6 merge:
- Cleanup overrun in sockaddr copying on RHL 6.1
- Replacements for getaddrinfo, getnameinfo, etc based on versions
from patch from KIKUCHI Takahiro <kick@kyoto.wide.ad.jp>
- Replacement for missing structures on systems that lack IPv6
- record_login needed to know about AF_INET6 addresses
- Borrowed more code from OpenBSD: rresvport_af and requisites
|
||
|---|---|---|
| packages | ||
| COPYING.Ylonen | ||
| CREDITS | ||
| ChangeLog | ||
| INSTALL | ||
| Makefile.in | ||
| OVERVIEW | ||
| README | ||
| README.Ylonen | ||
| RFC.nroff | ||
| TODO | ||
| UPGRADING | ||
| acconfig.h | ||
| atomicio.c | ||
| auth-krb4.c | ||
| auth-pam.c | ||
| auth-pam.h | ||
| auth-passwd.c | ||
| auth-rh-rsa.c | ||
| auth-rhosts.c | ||
| auth-rsa.c | ||
| auth-skey.c | ||
| authfd.c | ||
| authfd.h | ||
| authfile.c | ||
| bsd-bindresvport.c | ||
| bsd-bindresvport.h | ||
| bsd-daemon.c | ||
| bsd-daemon.h | ||
| bsd-login.c | ||
| bsd-login.h | ||
| bsd-misc.c | ||
| bsd-misc.h | ||
| bsd-mktemp.c | ||
| bsd-mktemp.h | ||
| bsd-rresvport.c | ||
| bsd-rresvport.h | ||
| bsd-snprintf.c | ||
| bsd-snprintf.h | ||
| bsd-strlcat.c | ||
| bsd-strlcat.h | ||
| bsd-strlcpy.c | ||
| bsd-strlcpy.h | ||
| bufaux.c | ||
| bufaux.h | ||
| buffer.c | ||
| buffer.h | ||
| canohost.c | ||
| channels.c | ||
| channels.h | ||
| cipher.c | ||
| cipher.h | ||
| clientloop.c | ||
| compat.c | ||
| compat.h | ||
| compress.c | ||
| compress.h | ||
| config.guess | ||
| config.sub | ||
| configure.in | ||
| crc32.c | ||
| crc32.h | ||
| deattack.c | ||
| deattack.h | ||
| defines.h | ||
| fake-gai-errnos.h | ||
| fake-getaddrinfo.c | ||
| fake-getaddrinfo.h | ||
| fake-getnameinfo.c | ||
| fake-getnameinfo.h | ||
| fake-socket.h | ||
| fingerprint.c | ||
| fingerprint.h | ||
| fixpaths | ||
| getput.h | ||
| gnome-ssh-askpass.c | ||
| hostfile.c | ||
| includes.h | ||
| install-sh | ||
| log-client.c | ||
| log-server.c | ||
| log.c | ||
| login.c | ||
| match.c | ||
| md5crypt.c | ||
| md5crypt.h | ||
| mpaux.c | ||
| mpaux.h | ||
| nchan.c | ||
| nchan.h | ||
| nchan.ms | ||
| packet.c | ||
| packet.h | ||
| pty.c | ||
| pty.h | ||
| radix.c | ||
| readconf.c | ||
| readconf.h | ||
| readpass.c | ||
| rsa.c | ||
| rsa.h | ||
| scp.1.in | ||
| scp.c | ||
| servconf.c | ||
| servconf.h | ||
| serverloop.c | ||
| ssh-add.1.in | ||
| ssh-add.c | ||
| ssh-agent.1.in | ||
| ssh-agent.c | ||
| ssh-askpass | ||
| ssh-keygen.1.in | ||
| ssh-keygen.c | ||
| ssh.1.in | ||
| ssh.c | ||
| ssh.h | ||
| ssh_config.in | ||
| sshconnect.c | ||
| sshd.8.in | ||
| sshd.c | ||
| sshd.pam.generic | ||
| sshd_config.in | ||
| tildexpand.c | ||
| ttymodes.c | ||
| ttymodes.h | ||
| uidswap.c | ||
| uidswap.h | ||
| version.h | ||
| xmalloc.c | ||
| xmalloc.h | ||
README
This is the port of OpenBSD's excellent OpenSSH to Linux and other Unices. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed (to external libraries), all known security bugs fixed, new features reintroduced and many other clean-ups. More information about SSH itself can be found in the file README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a homepage at http://www.openssh.com/ This port consists of the re-introduction of autoconf support, PAM support (for Linux and Solaris), EGD[1] support, SOCKS support (using the Dante [6] libraries and replacements for OpenBSD library functions that are (regrettably) absent from other unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD and Irix. Support for AIX, SCO, NeXT and other Unices is underway. This version actively tracks changes in the OpenBSD CVS repository. The PAM support is now more functional than the popular packages of commercial ssh-1.2.x. It checks "account" and "session" modules for all logins, not just when using password authentication. All new code is released under a XFree style license, which is very liberal. Please refer to the source files for details. The code in bsd-*.[ch] is from the OpenBSD project and has its own license (again, see the source files for details). OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4] and Dante[6]. To build the GNOME[5] pass-phrase requester (--with-gnome-askpass), you will need the GNOME libraries installed. If you are building OpenSSH on a Unix which lacks a kernel random number pool (/dev/random), you will need to install EGD[1]. There is now several mailing lists for this port of OpenSSH. Please refer to http://violet.ibs.com.au/openssh/list.html for details on how to join. Please send bug reports and patches to the mailing list openssh-unix-dev@mindrot.org. The list is currently open to posting by unsubscribed users. Please refer to the INSTALL document for information on how to install OpenSSH on your system. The UPGRADING document details differences between this port of OpenSSH and F-Secure SSH 1.x. Damien Miller <djm@ibs.com.au> Internet Business Solutions Miscellania - This version of SSH is based upon code retrieved from the OpenBSD CVS repository which in turn was based on the last free version of SSH released by Tatu Ylonen. Code in bsd-misc.[ch] and gnome-ssh-askpass.c is Copyright 1999 Damien Miller & Internet Business Solutions and is released under a X11-style license (see source files for details). References - [1] http://www.lothar.com/tech/crypto/ [2] http://www.cdrom.com/pub/infozip/zlib/ [3] http://www.openssl.org/ [4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris) [5] http://www.gnome.org/ [6] http://www.inet.no/dante