Mercurial > dropbear
annotate CHANGES @ 421:dbb607d72d01 channel-fix
propagate from branch 'au.asn.ucc.matt.dropbear' (head eac2a177021cfa0cbf365d5821fe6c8a0a5dc758)
to branch 'au.asn.ucc.matt.dropbear.channel-fix' (head be0d837816e2e985c7b2d80614d5df3496028e94)
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Sun, 11 Feb 2007 10:46:57 +0000 (2007-02-11) |
| parents | bfa09e369e0e |
| children | 67689b7ceaf0 |
| rev | line source |
|---|---|
| 337 | 1 0.49 - Tues 13 June 2003 |
| 2 | |
| 3 - Return immediately for "sleep 10 & echo foo", rather than waiting | |
| 4 for the sleep to return (pointed out by Rob Landley) | |
| 5 | |
| 6 - Added -P pidfile argument to the server (from Swen Schillig) | |
| 7 | |
| 8 - Compile fixes, make sure that all variable definitions are at the start | |
| 9 of a scope. | |
| 10 | |
| 11 - Use $HOME in preference to that from /etc/passwd, so that it | |
| 12 dbclient can still work on systems with a broken setup. | |
| 13 | |
| 14 - Add -N dbclient option for "no command" | |
| 15 | |
| 16 - Add -f dbclient option for "background after auth" | |
| 17 | |
| 18 - Try to finally fix ss_family compilation problems | |
| 19 | |
| 295 | 20 0.48.1 - Sat 11 March 2006 |
| 21 | |
| 22 - Compile fix for scp | |
| 23 | |
| 291 | 24 0.48 - Thurs 9 March 2006 |
| 290 | 25 |
| 26 - Check that the circular buffer is properly empty before | |
| 27 closing a channel, which could cause truncated transfers | |
| 28 (thanks to Tomas Vanek for helping track it down) | |
| 29 | |
| 30 - Implement per-IP pre-authentication connection limits | |
| 31 (after some poking from Pablo Fernandez) | |
| 32 | |
| 33 - Exit gracefully if trying to connect to as SSH v1 server | |
| 34 (reported by Rushi Lala) | |
| 35 | |
| 36 - Only read /dev/random once at startup when in non-inetd mode | |
| 37 | |
| 38 - Allow ctrl-c to close a dbclient password prompt (may | |
| 39 still have to press enter on some platforms) | |
| 40 | |
| 41 - Merged in uClinux patch for inetd mode | |
| 42 | |
| 43 - Updated to scp from OpenSSH 4.3p2 - fixes a security issue | |
| 44 where use of system() could cause users to execute arbitrary | |
| 45 code through malformed filenames, ref CVE-2006-0225 | |
| 46 | |
|
265
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
47 0.47 - Thurs Dec 8 2005 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
48 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
49 - SECURITY: fix for buffer allocation error in server code, could potentially |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
50 allow authenticated users to gain elevated privileges. All multi-user systems |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
51 running the server should upgrade (or apply the patch available on the |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
52 Dropbear webpage). |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
53 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
54 - Fix channel handling code so that redirecting to /dev/null doesn't use |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
55 100% CPU. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
56 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
57 - Turn on zlib compression for dbclient. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
58 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
59 - Set "low delay" TOS bit, can significantly improve interactivity |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
60 over some links. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
61 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
62 - Added client keyboard-interactive mode support, allows operation with |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
63 newer OpenSSH servers in default config. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
64 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
65 - Log when pubkey auth fails because of bad ~/.ssh/authorized_keys permissions |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
66 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
67 - Improve logging of assertions |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
68 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
69 - Added aes-256 cipher and sha1-96 hmac. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
70 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
71 - Fix twofish so that it actually works. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
72 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
73 - Improve PAM prompt comparison. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
74 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
75 - Added -g (dbclient) and -a (dropbear server) options to allow |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
76 connections to listening forwarded ports from remote machines. |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
77 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
78 - Various other minor fixes |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
79 |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
80 - Compile fixes for glibc 2.1 (ss_family vs __ss_family) and NetBSD |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
81 (netinet/in_systm.h needs to be included). |
|
9b9664204b97
* Update changelogs for 0.47 release
Matt Johnston <matt@ucc.asn.au>
parents:
224
diff
changeset
|
82 |
| 223 | 83 0.46 - Sat July 9 2005 |
| 193 | 84 |
| 85 - Fix long-standing bug which caused connections to be closed if an ssh-agent | |
| 86 socket was no longer available | |
| 87 | |
|
220
9089929fb2b7
* preparing for 0.46 release
Matt Johnston <matt@ucc.asn.au>
parents:
193
diff
changeset
|
88 - Print a warning if we seem to be blocking on /dev/random |