# HG changeset patch # User Matt Johnston # Date 1172159217 0 # Node ID 7319d229799a9044ebbbdc0f5886ed6da70a6bce # Parent 7282370416a03dbade0e6f03bcf6de6069c28046 0.49 probably done diff -r 7282370416a0 -r 7319d229799a CHANGES --- a/CHANGES Thu Feb 22 15:29:32 2007 +0000 +++ b/CHANGES Thu Feb 22 15:46:57 2007 +0000 @@ -1,4 +1,8 @@ -0.49test1 - Mon 12 February 2007 +0.49 - Fri 23 February 2007 + +- Security: dbclient previously would prompt to confirm a + mismatching hostkey but wouldn't warn loudly. It will now + exit upon a mismatch. - Compile fixes, make sure that all variable definitions are at the start of a scope. @@ -9,6 +13,9 @@ - Add -f dbclient option for "background after auth" +- Add ability to limit binding to particular addresses, use + -p [address:]port, patch from Max-Gerd Retzlaff. + - Try to finally fix ss_family compilation problems (for old glibc systems) diff -r 7282370416a0 -r 7319d229799a dbclient.1 --- a/dbclient.1 Thu Feb 22 15:29:32 2007 +0000 +++ b/dbclient.1 Thu Feb 22 15:46:57 2007 +0000 @@ -70,6 +70,10 @@ Allow non-local hosts to connect to forwarded ports. Applies to -L and -R forwarded ports, though remote connections to -R forwarded ports may be limited by the ssh server. +.TP +.B \-y +Always accept hostkeys if they are unknown. If a hostkey mismatch occurs the +connection will abort as normal. .SH AUTHOR Matt Johnston (matt@ucc.asn.au). .br diff -r 7282370416a0 -r 7319d229799a debian/changelog --- a/debian/changelog Thu Feb 22 15:29:32 2007 +0000 +++ b/debian/changelog Thu Feb 22 15:46:57 2007 +0000 @@ -1,8 +1,8 @@ -dropbear (0.49test1-0.1) unstable; urgency=low +dropbear (0.49-0.1) unstable; urgency=low * New upstream release. - -- Matt Johnston Mon, 12 Feb 2007 23:59:00 +0900 + -- Matt Johnston Fri, 23 Feb 2007 00:44:00 +0900 dropbear (0.48.1-1) unstable; urgency=medium diff -r 7282370416a0 -r 7319d229799a options.h --- a/options.h Thu Feb 22 15:29:32 2007 +0000 +++ b/options.h Thu Feb 22 15:46:57 2007 +0000 @@ -133,7 +133,7 @@ * You can't enable both PASSWORD and PAM. */ #define ENABLE_SVR_PASSWORD_AUTH -/*#define ENABLE_SVR_PAM_AUTH */ +/*#define ENABLE_SVR_PAM_AUTH */ /* requires ./configure --enable-pam */ #define ENABLE_SVR_PUBKEY_AUTH #define ENABLE_CLI_PASSWORD_AUTH @@ -182,7 +182,8 @@ #define MAX_AUTH_TRIES 10 #endif -/* The file to store the daemon's process ID, for shutdown scripts etc */ +/* The default file to store the daemon's process ID, for shutdown + scripts etc. This can be overridden with the -P flag */ #ifndef DROPBEAR_PIDFILE #define DROPBEAR_PIDFILE "/var/run/dropbear.pid" #endif @@ -214,7 +215,7 @@ *******************************************************************/ #ifndef DROPBEAR_VERSION -#define DROPBEAR_VERSION "0.49test1" +#define DROPBEAR_VERSION "0.49" #endif #define LOCAL_IDENT "SSH-2.0-dropbear_" DROPBEAR_VERSION