sonic-openssh

Перейти к файлу

Damien Miller c30d35ce32 - (djm) Periodically rekey arc4random - (djm) Clean up diff against OpenBSD.		2000-08-30 09:40:09 +11:00
contrib	- (djm) Add Solaris package support from Rip Loomis <loomisg@cist.saic.com>	2000-08-18 14:43:41 +10:00
COPYING.Ylonen	Updated COPYING file with usage of RC4	1999-10-30 09:46:20 +10:00
CREDITS	- (djm) Add Solaris package support from Rip Loomis <loomisg@cist.saic.com>	2000-08-18 14:43:41 +10:00
ChangeLog	- (djm) Periodically rekey arc4random	2000-08-30 09:40:09 +11:00
INSTALL	- (djm) Minor doc tweaks	2000-06-10 08:33:38 +10:00
Makefile.in	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
OVERVIEW	- [OVERVIEW README] typos; green@freebsd	1999-11-21 18:31:57 +11:00
README	- (djm) Make EGD failures non-fatal if OpenSSL's entropy pool is still OK	2000-06-26 13:01:33 +10:00
README.Ylonen	- OpenBSD CVS update	2000-03-26 13:04:51 +10:00
README.openssh2	bad checkin mode	2000-05-09 15:05:45 +10:00
RFC.nroff	Initial revision	1999-10-27 13:42:43 +10:00
TODO	- (djm) NeXT tweaks from Ben Lindstrom <mouring@pconline.com>	2000-08-29 14:30:37 +11:00
UPGRADING	- Clarified --with-default-path option.	2000-03-17 10:54:15 +11:00
acconfig.h	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
aclocal.m4	- Better fix to aclocal tests from Garrick James <garrick@james.net>	2000-06-26 10:20:19 +10:00
atomicio.c	- (djm) Handle EWOULDBLOCK returns from read() and write() in atomicio.c	2000-07-08 10:57:08 +10:00
auth-krb4.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
auth-options.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
auth-options.h	- OpenBSD CVS updates:	2000-06-18 14:50:44 +10:00
auth-pam.c	- (djm) Fix pam sprintf fix	2000-07-09 22:42:32 +10:00
auth-pam.h	Add const to suppress compiler warning	2000-01-27 10:55:38 +11:00
auth-passwd.c	- (djm) Added patch from Chris Adams <cmadams@hiwaay.net> to add OSF SIA	2000-06-28 15:22:41 +10:00
auth-rh-rsa.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
auth-rhosts.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
auth-rsa.c	- (djm) OpenBSD CVS updates:	2000-07-11 17:31:38 +10:00
auth-skey.c	- (djm) Use standard OpenSSL functions in auth-skey.c. Patch from	2000-07-02 19:13:56 +10:00
auth.c	- (djm) OpenBSD CVS changes:	2000-08-18 13:59:06 +10:00
auth.h	- (djm) OpenBSD CVS updates:	2000-07-11 17:31:38 +10:00
auth1.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
auth2.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
authfd.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
authfd.h	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
authfile.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
authfile.h	- Merge big update to OpenSSH-2.0 from OpenBSD CVS	2000-04-29 23:57:08 +10:00
bsd-arc4random.c	- (djm) Periodically rekey arc4random	2000-08-30 09:40:09 +11:00
bsd-arc4random.h	- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc)	2000-08-16 10:35:58 +10:00
bsd-base64.c	- Cleanup of bsd-base64 headers, bugfix definitions of __b64_*. Reported	2000-05-09 15:28:41 +10:00
bsd-base64.h	- Cleanup of bsd-base64 headers, bugfix definitions of __b64_*. Reported	2000-05-09 15:28:41 +10:00
bsd-bindresvport.c	- (djm) Fix autoconf typo: HAVE_BINRESVPORT_AF -> HAVE_BINDRESVPORT_AF	2000-07-25 09:04:37 +10:00
bsd-bindresvport.h	- (djm) Fix autoconf typo: HAVE_BINRESVPORT_AF -> HAVE_BINDRESVPORT_AF	2000-07-25 09:04:37 +10:00
bsd-daemon.c	- (djm) Compile warning fixes from Mark Miller <markm@swoon.net>	2000-08-30 09:21:22 +11:00
bsd-daemon.h	- Renamed BSD helper function files to bsd-*	1999-11-19 15:32:34 +11:00
bsd-inet_aton.c	- (djm) Replace in_addr_t with u_int32_t in bsd-inet_aton.c. Report from	2000-07-12 11:12:55 +10:00
bsd-inet_aton.h	- (djm) Added bsd-inet_aton and configure support for NeXT	2000-07-11 14:54:22 +10:00
bsd-inet_ntoa.c	- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc)	2000-08-16 10:35:58 +10:00
bsd-inet_ntoa.h	- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc)	2000-08-16 10:35:58 +10:00
bsd-misc.c	- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc)	2000-08-16 10:35:58 +10:00
bsd-misc.h	- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc)	2000-08-16 10:35:58 +10:00
bsd-mktemp.c	- (djm) Compile warning fixes from Mark Miller <markm@swoon.net>	2000-08-30 09:21:22 +11:00
bsd-mktemp.h	- Renamed BSD helper function files to bsd-*	1999-11-19 15:32:34 +11:00
bsd-rresvport.c	- (djm) Match prototype and function declaration for rresvport_af.	2000-07-09 21:23:52 +10:00
bsd-rresvport.h	- (djm) Use sa_family_t in prototype for rresvport_af. Patch from	2000-06-23 08:23:34 +10:00
bsd-setenv.c	- Better tests for OpenSSL w/ RSAref	2000-03-26 12:12:34 +10:00
bsd-setenv.h	- Better tests for OpenSSL w/ RSAref	2000-03-26 12:12:34 +10:00
bsd-sigaction.c	- (djm) More NeXT compatibility from Ben Lindstrom <mouring@pconline.com>	2000-07-09 23:26:27 +10:00
bsd-sigaction.h	Doh - forgot to commit	2000-07-11 12:55:49 +10:00
bsd-snprintf.c	- (djm) Compile warning fixes from Mark Miller <markm@swoon.net>	2000-08-30 09:21:22 +11:00
bsd-snprintf.h	Added missing ;	2000-07-11 12:50:08 +10:00
bsd-strlcat.c	- Added OpenBSD bsd-strlcat.c, created bsd-strlcat.h	1999-11-22 13:57:07 +11:00
bsd-strlcat.h	- Added OpenBSD bsd-strlcat.c, created bsd-strlcat.h	1999-11-22 13:57:07 +11:00
bsd-strlcpy.c	- Renamed BSD helper function files to bsd-*	1999-11-19 15:32:34 +11:00
bsd-strlcpy.h	- Renamed BSD helper function files to bsd-*	1999-11-19 15:32:34 +11:00
bsd-strsep.c	- (djm) Add strsep function from OpenBSD libc for systems that lack it	2000-07-11 21:34:34 +10:00
bsd-strsep.h	- (djm) Add strsep function from OpenBSD libc for systems that lack it	2000-07-11 21:34:34 +10:00
bufaux.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
bufaux.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
buffer.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
buffer.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
canohost.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
channels.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
channels.h	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
cipher.c	- (djm) OpenBSD CVS updates:	2000-07-11 17:31:38 +10:00
cipher.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
clientloop.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
compat.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
compat.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
compress.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
compress.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
config.guess	Latest versions	2000-06-12 23:01:02 +10:00
config.sub	Latest versions	2000-06-12 23:01:02 +10:00
configure.in	- (djm) NeXT tweaks from Ben Lindstrom <mouring@pconline.com>	2000-08-29 14:30:37 +11:00
crc32.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
crc32.h	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
deattack.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
deattack.h	- Merged very large OpenBSD source code reformat	1999-11-25 00:26:21 +11:00
defines.h	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
dispatch.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
dispatch.h	- Big OpenBSD CVS update (mainly beginnings of SSH2 infrastructure)	2000-04-01 11:09:21 +10:00
dsa.c	- (djm) OpenBSD CVS updates:	2000-07-21 10:19:44 +10:00
dsa.h	- Merge big update to OpenSSH-2.0 from OpenBSD CVS	2000-04-29 23:57:08 +10:00
entropy.c	- Fixes for SunOS 4.1.4 from Gordon Atwood <gordon@cs.ualberta.ca>	2000-07-15 14:59:14 +10:00
entropy.h	- (djm) Fix pam sprintf fix	2000-07-09 22:42:32 +10:00
fake-gai-errnos.h	- Merged OpenBSD IPv6 patch:	2000-01-14 15:45:46 +11:00
fake-getaddrinfo.c	- (djm) Fix broken inet_ntoa check and ut_user/ut_name confusion, report	2000-07-11 12:15:54 +10:00
fake-getaddrinfo.h	- Compilation fix from Kiyokazu SUTO <suto@ks-and-ks.ne.jp>	2000-01-16 18:19:25 +11:00
fake-getnameinfo.c	- Cleanup of auth.c, login.c and fake-*	2000-05-31 11:20:11 +10:00
fake-getnameinfo.h	- Cleanup of auth.c, login.c and fake-*	2000-05-31 11:20:11 +10:00
fake-socket.h	- Cleanup of auth.c, login.c and fake-*	2000-05-31 11:20:11 +10:00
fixpaths	- Make fixpaths work with perl4, patch from Andre Lucas	2000-04-20 07:33:24 +10:00
fixprogs	Doh - forgot to import fixprogs	2000-05-18 23:12:50 +10:00
getput.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
hmac.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
hmac.h	- OpenBSD CVS update:	2000-04-04 14:38:59 +10:00
hostfile.c	- (djm) Fix rsh path in RPMs. Report from Jason L Tibbitts III	2000-06-07 19:55:44 +10:00
hostfile.h	- OpenBSD CVS updates.	2000-04-16 11:18:38 +10:00
includes.h	- (djm) SUN_LEN macro for systems which lack it	2000-08-18 14:59:59 +10:00
install-sh	- Added BSD compatible install program and autoconf test, thanks to	1999-11-25 12:31:26 +11:00
kex.c	- (djm) OpenBSD CVS updates:	2000-07-11 17:31:38 +10:00
kex.h	- OpenBSD CVS updates:	2000-05-30 13:44:51 +10:00
key.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
key.h	- (djm) Periodically rekey arc4random	2000-08-30 09:40:09 +11:00
log-client.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
log-server.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
log.c	- Merged OpenBSD IPv6 patch:	2000-01-14 15:45:46 +11:00
login.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
loginrec.c	- (djm) NeXT tweaks from Ben Lindstrom <mouring@pconline.com>	2000-08-29 14:30:37 +11:00
loginrec.h	- (djm) Formatting	2000-06-27 11:18:27 +10:00
logintest.c	Added some extra timings to help spot lastlog problems	2000-06-19 08:25:36 +00:00
match.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
match.h	- (djm) Fix rsh path in RPMs. Report from Jason L Tibbitts III	2000-06-07 19:55:44 +10:00
md5crypt.c	- Reduce diff against OpenBSD source	2000-04-16 12:31:48 +10:00
md5crypt.h	- Portability fixes for Irix 5.3 (now compiles OK!)	1999-12-28 15:09:35 +11:00
mkinstalldirs	- HPUX and Configure fixes from Lutz Jaenicke	2000-05-20 15:33:44 +10:00
mpaux.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
mpaux.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
myproposal.h	- OpenBSD CVS updates:	2000-05-30 13:44:51 +10:00
nchan.c	- (djm) Suppress error messages on channel close shutdown() failurs	2000-08-07 15:47:48 +10:00
nchan.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
nchan.ms	- Merged OpenBSD IPv6 patch:	2000-01-14 15:45:46 +11:00
nchan2.ms	- OpenBSD CVS update:	2000-04-04 14:38:59 +10:00
next-posix.c	- (djm) NeXT tweaks from Ben Lindstrom <mouring@pconline.com>	2000-08-29 14:30:37 +11:00
next-posix.h	- (djm) NeXT: dirent structures to get scp working from Ben Lindstrom	2000-07-11 12:02:36 +10:00
openbsd-compat.h	- (djm) Replacement for inet_ntoa for Irix (which breaks on gcc)	2000-08-16 10:35:58 +10:00
packet.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
packet.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
pty.c	- (djm) Check for SCO pty naming style (ptyp%d/ttyp%d). Based on fix from	2000-08-29 11:52:38 +11:00
pty.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
radix.c	- OpenBSD CVS Updates:	2000-06-23 10:16:38 +10:00
readconf.c	- (djm) OpenBSD CVS changes:	2000-08-18 13:59:06 +10:00
readconf.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
readpass.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
rsa.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
rsa.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
scp.1	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
scp.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
servconf.c	- (djm) OpenBSD CVS changes:	2000-08-18 13:59:06 +10:00
servconf.h	- (djm) OpenBSD CVS changes:	2000-08-18 13:59:06 +10:00
serverloop.c	- (djm) OpenBSD CVS updates:	2000-07-11 17:31:38 +10:00
session.c	- (djm) Compile warning fixes from Mark Miller <markm@swoon.net>	2000-08-30 09:21:22 +11:00
session.h	- More large OpenBSD CVS updates:	2000-04-12 18:45:05 +10:00
ssh-add.1	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
ssh-add.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
ssh-agent.1	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
ssh-agent.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
ssh-keygen.1	- (djm) OpenBSD CVS updates:	2000-07-11 17:31:38 +10:00
ssh-keygen.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
ssh.1	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
ssh.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
ssh.h	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
ssh2.h	- OpenBSD CVS update:	2000-05-17 22:34:22 +10:00
ssh_config	- (djm) Periodically rekey arc4random	2000-08-30 09:40:09 +11:00
ssh_prng_cmds.in	- (djm) Add some more entropy collection commands from Lutz Jaenicke	2000-08-07 15:54:39 +10:00
sshconnect.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
sshconnect.h	- Merge big update to OpenSSH-2.0 from OpenBSD CVS	2000-04-29 23:57:08 +10:00
sshconnect1.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
sshconnect2.c	- (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers	2000-08-23 10:46:23 +10:00
sshd.8	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
sshd.c	- (djm) Fix ^C ignored issue on Solaris. Diagnosis from Gert	2000-08-29 11:05:50 +11:00
sshd_config	- (djm) Periodically rekey arc4random	2000-08-30 09:40:09 +11:00
tildexpand.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
ttymodes.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
ttymodes.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
uidswap.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
uidswap.h	- OpenBSD CVS updates.	2000-04-16 11:18:38 +10:00
util.c	- More OpenBSD updates:	2000-08-29 11:33:50 +11:00
uuencode.c	- OpenBSD CVS Updates:	2000-06-23 10:16:38 +10:00
uuencode.h	- Remove references to SSLeay.	2000-05-07 12:03:14 +10:00
version.h	- (djm) Add local version to version.h	2000-08-23 10:52:50 +10:00
xmalloc.c	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00
xmalloc.h	- OpenBSD CVS Updates:	2000-06-22 21:32:31 +10:00

README

[ A Japanese translation of this document is available at
[ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html
[ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp>

******* IMPORTANT
* On systmes which lack a /dev/random driver, version of this port
* prior to 1.2.2 were not correctly seeding OpenSSL's random number
* pool. This resulted in lower quality RSA keys being generated. If
* you generated host or user keys with v1.2.2 or previous versions,
* please generate new ones using a more recent version.

This is the port of OpenBSD's excellent OpenSSH to Linux and other
Unices.

OpenSSH is based on the last free version of Tatu Ylonen's SSH with
all patent-encumbered algorithms removed (to external libraries), all
known security bugs fixed, new features reintroduced and many other
clean-ups. More information about SSH itself can be found in the file
README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck,
Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a
homepage at http://www.openssh.com/

This port consists of the re-introduction of autoconf support, PAM
support (for Linux and Solaris), EGD[1] support and replacements for
OpenBSD library functions that are (regrettably) absent from other
unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD
and Irix. Support for AIX, SCO, NeXT and other Unices is underway.
This version actively tracks changes in the OpenBSD CVS repository.

The PAM support is now more functional than the popular packages of
commercial ssh-1.2.x. It checks "account" and "session" modules for
all logins, not just when using password authentication.

OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4].

There is now several mailing lists for this port of OpenSSH. Please
refer to http://www.openssh.com/list.html for details on how to join.

Please send bug reports and patches to the mailing list
openssh-unix-dev@mindrot.org. The list is open to posting by
unsubscribed users.

If you are a citizen of the USA or another country which restricts
export of cryptographic products, then please refrain from sending
crypto-related code or patches to the list. We cannot accept them.
Other code contribution are accepted, but please follow the OpenBSD
style guidelines[5].

Please refer to the INSTALL document for information on how to install
OpenSSH on your system. The UPGRADING document details differences
between this port of OpenSSH and F-Secure SSH 1.x.

Damien Miller <djm@ibs.com.au>
Internet Business Solutions

Miscellania -

This version of SSH is based upon code retrieved from the OpenBSD CVS
repository which in turn was based on the last free
version of SSH released by Tatu Ylonen.

References -

[1] http://www.lothar.com/tech/crypto/
[2] ftp://ftp.freesoftware.com/pub/infozip/zlib/
[3] http://www.openssl.org/
[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
[5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current