Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Feedback | Help | Search |
Name: openssh-clients | Distribution: Red Hat (FC-5) |
Version: 4.3p2 | Vendor: Red Hat, Inc. |
Release: 4.11.fc5 | Build date: Fri Nov 10 05:26:26 2006 |
Group: Applications/Internet | Build host: hs20-bc1-7.build.redhat.com |
Size: 835836 | Source RPM: openssh-4.3p2-4.11.fc5.src.rpm |
Packager: Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla> | |
Url: http://www.openssh.com/portable.html | |
Summary: The OpenSSH client applications |
OpenSSH is a free version of SSH (Secure SHell), a program for logging into and executing commands on a remote machine. This package includes the clients necessary to make encrypted connections to SSH servers. You'll also need to install the openssh package on OpenSSH clients.
BSD
internal MD5: e4e8b89f41d292bae3c27589ee13970c
GPG
* Fri Nov 10 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-4.11 - CVE-2006-5794 - properly detect failed key verify in monitor (#214641) - kill all ssh sessions when stop is called in halt or reboot runlevel (#213008) - remove -TERM option from killproc so we don't race on sshd restart (#213490) * Mon Oct 02 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-4.10 - improve gssapi-no-spnego patch (#208102) - CVE-2006-4924 - prevent DoS on deattack detector (#207957) - CVE-2006-5051 - don't call cleanups from signal handler (#208459) * Wed Sep 13 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-4.1 - sync with FC6 version - build for FC5 * Wed Aug 23 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-9 - don't report duplicate syslog messages, use correct local time (#189158) - don't allow spnego as gssapi mechanism (from upstream) - fixed memleaks found by Coverity (from upstream) - allow ip options except source routing (#202856) (patch by HP) * Tue Aug 08 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-8 - drop the pam-session patch from the previous build (#201341) - don't set IPV6_V6ONLY sock opt when listening on wildcard addr (#201594) * Thu Jul 20 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-7 - dropped old ssh obsoletes - call the pam_session_open/close from the monitor when privsep is enabled so it is always called as root (patch by Darren Tucker) * Mon Jul 17 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-6 - improve selinux patch (by Jan Kiszka) - upstream patch for buffer append space error (#191940) - fixed typo in configure.ac (#198986) - added pam_keyinit to pam configuration (#198628) - improved error message when askpass dialog cannot grab keyboard input (#198332) - buildrequires xauth instead of xorg-x11-xauth - fixed a few rpmlint warnings * Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 4.3p2-5.1 - rebuild * Fri Apr 14 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-5 - don't request pseudoterminal allocation if stdin is not tty (#188983) * Thu Mar 02 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-4 - allow access if audit is not compiled in kernel (#183243) * Fri Feb 24 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-3 - enable the subprocess in chroot to send messages to system log - sshd should prevent login if audit call fails * Tue Feb 21 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-2 - print error from scp if not remote (patch by Bjorn Augustsson #178923) * Mon Feb 13 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p2-1 - new version * Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 4.3p1-2.1 - bump again for double-long bug on ppc(64) * Mon Feb 06 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p1-2 - fixed another place where syslog was called in signal handler - pass locale environment variables to server, accept them there (#179851) * Wed Feb 01 2006 Tomas Mraz <tmraz@redhat.com> - 4.3p1-1 - new version, dropped obsolete patches * Tue Dec 20 2005 Tomas Mraz <tmraz@redhat.com> - 4.2p1-10 - hopefully make the askpass dialog less confusing (#174765) * Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com> - rebuilt * Tue Nov 22 2005 Tomas Mraz <tmraz@redhat.com> - 4.2p1-9 - drop x11-ssh-askpass from the package - drop old build_6x ifs from spec file - improve gnome-ssh-askpass so it doesn't reveal number of passphrase characters to person looking at the display - less hackish fix for the __USE_GNU problem * Fri Nov 18 2005 Nalin Dahyabhai <nalin@redhat.com> - 4.2p1-8 - work around missing gccmakedep by wrapping makedepend in a local script - remove now-obsolete build dependency on "xauth" * Thu Nov 17 2005 Warren Togami <wtogami@redhat.com> - 4.2p1-7 - xorg-x11-devel -> libXt-devel - rebuild for new xauth location so X forwarding works - buildreq audit-libs-devel - buildreq automake for aclocal - buildreq imake for xmkmf - -D_GNU_SOURCE in flags in order to get it to build Ugly hack to workaround openssh defining __USE_GNU which is not allowed and causes problems according to Ulrich Drepper fix this the correct way after FC5test1 * Wed Nov 09 2005 Jeremy Katz <katzj@redhat.com> - 4.2p1-6 - rebuild against new openssl * Fri Oct 28 2005 Tomas Mraz <tmraz@redhat.com> 4.2p1-5 - put back the possibility to skip SELinux patch - add patch for user login auditing by Steve Grubb * Tue Oct 18 2005 Dan Walsh <dwalsh@redhat.com> 4.2p1-4 - Change selinux patch to use get_default_context_with_rolelevel in libselinux. * Thu Oct 13 2005 Tomas Mraz <tmraz@redhat.com> 4.2p1-3 - Update selinux patch to use getseuserbyname * Fri Oct 07 2005 Tomas Mraz <tmraz@redhat.com> 4.2p1-2 - use include instead of pam_stack in pam config - use fork+exec instead of system in scp - CVE-2006-0225 (#168167) - upstream patch for displaying authentication errors * Tue Sep 06 2005 Tomas Mraz <tmraz@redhat.com> 4.2p1-1 - upgrade to a new upstream version * Tue Aug 16 2005 Tomas Mraz <tmraz@redhat.com> 4.1p1-5 - use x11-ssh-askpass if openssh-askpass-gnome is not installed (#165207) - install ssh-copy-id from contrib (#88707) * Wed Jul 27 2005 Tomas Mraz <tmraz@redhat.com> 4.1p1-4 - don't deadlock on exit with multiple X forwarded channels (#152432) - don't use X11 port which can't be bound on all IP families (#163732) * Wed Jun 29 2005 Tomas Mraz <tmraz@redhat.com> 4.1p1-3 - fix small regression caused by the nologin patch (#161956) - fix race in getpeername error checking (mindrot #1054) * Thu Jun 09 2005 Tomas Mraz <tmraz@redhat.com> 4.1p1-2 - use only pam_nologin for nologin testing * Mon Jun 06 2005 Tomas Mraz <tmraz@redhat.com> 4.1p1-1 - upgrade to a new upstream version - call pam_loginuid as a pam session module * Mon May 16 2005 Tomas Mraz <tmraz@redhat.com> 4.0p1-3 - link libselinux only to sshd (#157678) * Mon Apr 04 2005 Tomas Mraz <tmraz@redhat.com> 4.0p1-2 - fixed Local/RemoteForward in ssh_config.5 manpage - fix fatal when Local/RemoteForward is used and scp run (#153258) - don't leak user validity when using krb5 authentication * Thu Mar 24 2005 Tomas Mraz <tmraz@redhat.com> 4.0p1-1 - upgrade to 4.0p1 - remove obsolete groups patch * Wed Mar 16 2005 Elliot Lee <sopwith@redhat.com> - rebuilt * Mon Feb 28 2005 Nalin Dahyabhai <nalin@redhat.com> 3.9p1-12 - rebuild so that configure can detect that krb5_init_ets is gone now * Mon Feb 21 2005 Tomas Mraz <tmraz@redhat.com> 3.9p1-11 - don't call syslog in signal handler - allow password authentication when copying from remote to remote machine (#103364) * Wed Feb 09 2005 Tomas Mraz <tmraz@redhat.com> - add spaces to messages in initscript (#138508) * Tue Feb 08 2005 Tomas Mraz <tmraz@redhat.com> 3.9p1-10 - enable trusted forwarding by default if X11 forwarding is required by user (#137685 and duplicates) - disable protocol 1 support by default in sshd server config (#88329) - keep the gnome-askpass dialog above others (#69131) * Fri Feb 04 2005 Tomas Mraz <tmraz@redhat.com> - change permissions on pam.d/sshd to 0644 (#64697) - patch initscript so it doesn't kill opened sessions if the sshd daemon isn't running anymore (#67624) * Mon Jan 03 2005 Bill Nottingham <notting@redhat.com> 3.9p1-9 - don't use initlog * Mon Nov 29 2004 Thomas Woerner <twoerner@redhat.com> 3.9p1-8.1 - fixed PIE build for all architectures * Mon Oct 04 2004 Nalin Dahyabhai <nalin@redhat.com> 3.9p1-8 - add a --enable-vendor-patchlevel option which allows a ShowPatchLevel option to enable display of a vendor patch level during version exchange (#120285) - configure with --disable-strip to build useful debuginfo subpackages * Mon Sep 20 2004 Bill Nottingham <notting@redhat.com> 3.9p1-7 - when using gtk2 for askpass, don't buildprereq gnome-libs-devel * Tue Sep 14 2004 Nalin Dahyabhai <nalin@redhat.com> 3.9p1-6 - build * Mon Sep 13 2004 Nalin Dahyabhai <nalin@redhat.com> - disable ACSS support * Thu Sep 02 2004 Daniel Walsh <dwalsh@redhat.com> 3.9p1-5 - Change selinux patch to use get_default_context_with_role in libselinux. * Thu Sep 02 2004 Daniel Walsh <dwalsh@redhat.com> 3.9p1-4 - Fix patch * Bad debug statement. * Handle root/sysadm_r:kerberos * Thu Sep 02 2004 Daniel Walsh <dwalsh@redhat.com> 3.9p1-3 - Modify Colin Walter's patch to allow specifying rule during connection * Tue Aug 31 2004 Daniel Walsh <dwalsh@redhat.com> 3.9p1-2 - Fix TTY handling for SELinux * Tue Aug 24 2004 Daniel Walsh <dwalsh@redhat.com> 3.9p1-1 - Update to upstream * Sun Aug 01 2004 Alan Cox <alan@redhat.com> 3.8.1p1-5 - Apply buildreq fixup patch (#125296) * Tue Jun 15 2004 Daniel Walsh <dwalsh@redhat.com> 3.8.1p1-4 - Clean up patch for upstream submission. * Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com> - rebuilt * Wed Jun 09 2004 Daniel Walsh <dwalsh@redhat.com> 3.8.1p1-2 - Remove use of pam_selinux and patch selinux in directly. * Mon Jun 07 2004 Nalin Dahyabhai <nalin@redhat.com> 3.8.1p1-1 - request gssapi-with-mic by default but not delegation (flag day for anyone who used previous gssapi patches) - no longer request x11 forwarding by default * Thu Jun 03 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-36 - Change pam file to use open and close with pam_selinux * Tue Jun 01 2004 Nalin Dahyabhai <nalin@redhat.com> 3.8.1p1-0 - update to 3.8.1p1 - add workaround from CVS to reintroduce passwordauth using pam * Tue Jun 01 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-35 - Remove CLOSEXEC on STDERR * Tue Mar 16 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-34 * Wed Mar 03 2004 Phil Knirsch <pknirsch@redhat.com> 3.6.1p2-33.30.1 - Built RHLE3 U2 update package. * Wed Mar 03 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-33 - Close file descriptors on exec * Mon Mar 01 2004 Thomas Woerner <twoerner@redhat.com> 3.6.1p2-32 - fixed pie build * Thu Feb 26 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-31 - Add restorecon to startup scripts * Thu Feb 26 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-30 - Add multiple qualified to openssh * Mon Feb 23 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-29 - Eliminate selinux code and use pam_selinux * Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com> - rebuilt * Mon Jan 26 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-27 - turn off pie on ppc * Mon Jan 26 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-26 - fix is_selinux_enabled * Wed Jan 14 2004 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-25 - Rebuild to grab shared libselinux * Wed Dec 03 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-24 - turn on selinux * Tue Nov 18 2003 Nalin Dahyabhai <nalin@redhat.com> - un#ifdef out code for reporting password expiration in non-privsep mode (#83585) * Mon Nov 10 2003 Nalin Dahyabhai <nalin@redhat.com> - add machinery to build with/without -fpie/-pie, default to doing so * Thu Nov 06 2003 David Woodhouse <dwmw2@redhat.com> 3.6.1p2-23 - Don't whinge about getsockopt failing (#109161) * Fri Oct 24 2003 Nalin Dahyabhai <nalin@redhat.com> - add missing buildprereq on zlib-devel (#104558) * Mon Oct 13 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-22 - turn selinux off * Mon Oct 13 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-21.sel - turn selinux on * Fri Sep 19 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-21 - turn selinux off * Fri Sep 19 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-20.sel - turn selinux on * Fri Sep 19 2003 Nalin Dahyabhai <nalin@redhat.com> - additional fix for apparently-never-happens double-free in buffer_free() - extend fix for #103998 to cover SSH1 * Wed Sep 17 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-19 - rebuild * Wed Sep 17 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-18 - additional buffer manipulation cleanups from Solar Designer * Wed Sep 17 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-17 - turn selinux off * Wed Sep 17 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-16.sel - turn selinux on * Tue Sep 16 2003 Bill Nottingham <notting@redhat.com> 3.6.1p2-15 - rebuild * Tue Sep 16 2003 Bill Nottingham <notting@redhat.com> 3.6.1p2-14 - additional buffer manipulation fixes (CAN-2003-0695) * Tue Sep 16 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-13.sel - turn selinux on * Tue Sep 16 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-12 - rebuild * Tue Sep 16 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-11 - apply patch to store the correct buffer size in allocated buffers (CAN-2003-0693) - skip the initial PAM authentication attempt with an empty password if empty passwords are not permitted in our configuration (#103998) * Fri Sep 05 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-10 - turn selinux off * Fri Sep 05 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-9.sel - turn selinux on * Tue Aug 26 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-8 - Add BuildPreReq gtk2-devel if gtk2 * Tue Aug 12 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-7 - rebuild * Tue Aug 12 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-6 - modify patch which clears the supplemental group list at startup to only complain if setgroups() fails if sshd has euid == 0 - handle krb5 installed in %{_prefix} or elsewhere by using krb5-config * Mon Jul 28 2003 Daniel Walsh <dwalsh@redhat.com> 3.6.1p2-5 - Add SELinux patch * Tue Jul 22 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-4 - rebuild * Mon Jun 16 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-3 - rebuild * Mon Jun 16 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-2 - rebuild * Thu Jun 05 2003 Nalin Dahyabhai <nalin@redhat.com> 3.6.1p2-1 - update to 3.6.1p2 * Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com> - rebuilt * Mon Mar 24 2003 Florian La Roche <Florian.LaRoche@redhat.de> - add patch for getsockopt() call to work on bigendian 64bit archs * Fri Feb 14 2003 Nalin Dahyabhai <nalin@redhat.com> 3.5p1-6 - move scp to the -clients subpackage, because it directly depends on ssh which is also in -clients (#84329) * Mon Feb 10 2003 Nalin Dahyabhai <nalin@redhat.com> 3.5p1-5 - rebuild * Wed Jan 22 2003 Tim Powers <timp@redhat.com> - rebuilt * Tue Jan 07 2003 Nalin Dahyabhai <nalin@redhat.com> 3.5p1-3 - rebuild * Tue Nov 12 2002 Nalin Dahyabhai <nalin@redhat.com> 3.5p1-2 - patch PAM configuration to use relative path names for the modules, allowing us to not worry about which arch the modules are built for on multilib systems * Tue Oct 15 2002 Nalin Dahyabhai <nalin@redhat.com> 3.5p1-1 - update to 3.5p1, merging in filelist/perm changes from the upstream spec * Fri Oct 04 2002 Nalin Dahyabhai <nalin@redhat.com> 3.4p1-3 - merge * Thu Sep 12 2002 Than Ngo <than@redhat.com> 3.4p1-2.1 - fix to build on multilib systems * Thu Aug 29 2002 Curtis Zinzilieta <curtisz@redhat.com> 3.4p1-2gss - added gssapi patches and uncommented patch here * Wed Aug 14 2002 Nalin Dahyabhai <nalin@redhat.com> 3.4p1-2 - pull patch from CVS to fix too-early free in ssh-keysign (#70009) * Thu Jun 27 2002 Nalin Dahyabhai <nalin@redhat.com> 3.4p1-1 - 3.4p1 - drop anon mmap patch * Tue Jun 25 2002 Nalin Dahyabhai <nalin@redhat.com> 3.3p1-2 - rework the close-on-exit docs - include configuration file man pages - make use of nologin as the privsep shell optional * Mon Jun 24 2002 Nalin Dahyabhai <nalin@redhat.com> 3.3p1-1 - update to 3.3p1 - merge in spec file changes from upstream (remove setuid from ssh, ssh-keysign) - disable gtk2 askpass - require pam-devel by filename rather than by package for erratum - include patch from Solar Designer to work around anonymous mmap failures * Fri Jun 21 2002 Tim Powers <timp@redhat.com> - automated rebuild * Fri Jun 07 2002 Nalin Dahyabhai <nalin@redhat.com> 3.2.3p1-3 - don't require autoconf any more * Fri May 31 2002 Nalin Dahyabhai <nalin@redhat.com> 3.2.3p1-2 - build gnome-ssh-askpass with gtk2 * Tue May 28 2002 Nalin Dahyabhai <nalin@redhat.com> 3.2.3p1-1 - update to 3.2.3p1 - merge in spec file changes from upstream * Fri May 17 2002 Nalin Dahyabhai <nalin@redhat.com> 3.2.2p1-1 - update to 3.2.2p1 * Fri May 17 2002 Nalin Dahyabhai <nalin@redhat.com> 3.1p1-4 - drop buildreq on db1-devel - require pam-devel by package name - require autoconf instead of autoconf253 again * Tue Apr 02 2002 Nalin Dahyabhai <nalin@redhat.com> 3.1p1-3 - pull patch from CVS to avoid printing error messages when some of the default keys aren't available when running ssh-add - refresh to current revisions of Simon's patches * Thu Mar 21 2002 Nalin Dahyabhai <nalin@redhat.com> 3.1p1-2gss - reintroduce Simon's gssapi patches - add buildprereq for autoconf253, which is needed to regenerate configure after applying the gssapi patches - refresh to the latest version of Markus's patch to build properly with older versions of OpenSSL * Thu Mar 07 2002 Nalin Dahyabhai <nalin@redhat.com> 3.1p1-2 - bump and grind (through the build system) * Thu Mar 07 2002 Nalin Dahyabhai <nalin@redhat.com> 3.1p1-1 - require sharutils for building (mindrot #137) - require db1-devel only when building for 6.x (#55105), which probably won't work anyway (3.1 requires OpenSSL 0.9.6 to build), but what the heck - require pam-devel by file (not by package name) again - add Markus's patch to compile with OpenSSL 0.9.5a (from http://bugzilla.mindrot.org/show_bug.cgi?id=141) and apply it if we're building for 6.x * Thu Mar 07 2002 Nalin Dahyabhai <nalin@redhat.com> 3.1p1-0 - update to 3.1p1 * Tue Mar 05 2002 Nalin Dahyabhai <nalin@redhat.com> SNAP-20020305 - update to SNAP-20020305 - drop debug patch, fixed upstream * Wed Feb 20 2002 Nalin Dahyabhai <nalin@redhat.com> SNAP-20020220 - update to SNAP-20020220 for testing purposes (you've been warned, if there's anything to be warned about, gss patches won't apply, I don't mind) * Wed Feb 13 2002 Nalin Dahyabhai <nalin@redhat.com> 3.0.2p1-3 - add patches from Simon Wilkinson and Nicolas Williams for GSSAPI key exchange, authentication, and named key support * Wed Jan 23 2002 Nalin Dahyabhai <nalin@redhat.com> 3.0.2p1-2 - remove dependency on db1-devel, which has just been swallowed up whole by gnome-libs-devel * Sat Dec 29 2001 Nalin Dahyabhai <nalin@redhat.com> - adjust build dependencies so that build6x actually works right (fix from Hugo van der Kooij) * Tue Dec 04 2001 Nalin Dahyabhai <nalin@redhat.com> 3.0.2p1-1 - update to 3.0.2p1 * Fri Nov 16 2001 Nalin Dahyabhai <nalin@redhat.com> 3.0.1p1-1 - update to 3.0.1p1 * Tue Nov 13 2001 Nalin Dahyabhai <nalin@redhat.com> - update to current CVS (not for use in distribution) * Thu Nov 08 2001 Nalin Dahyabhai <nalin@redhat.com> 3.0p1-1 - merge some of Damien Miller <djm@mindrot.org> changes from the upstream 3.0p1 spec file and init script * Wed Nov 07 2001 Nalin Dahyabhai <nalin@redhat.com> - update to 3.0p1 - update to x11-ssh-askpass 1.2.4.1 - change build dependency on a file from pam-devel to the pam-devel package - replace primes with moduli * Thu Sep 27 2001 Nalin Dahyabhai <nalin@redhat.com> 2.9p2-9 - incorporate fix from Markus Friedl's advisory for IP-based authorization bugs * Thu Sep 13 2001 Bernhard Rosenkraenzer <bero@redhat.com> 2.9p2-8 - Merge changes to rescue build from current sysadmin survival cd * Thu Sep 06 2001 Nalin Dahyabhai <nalin@redhat.com> 2.9p2-7 - fix scp's server's reporting of file sizes, and build with the proper preprocessor define to get large-file capable open(), stat(), etc. (sftp has been doing this correctly all along) (#51827) - configure without --with-ipv4-default on RHL 7.x and newer (#45987,#52247) - pull cvs patch to fix support for /etc/nologin for non-PAM logins (#47298) - mark profile.d scriptlets as config files (#42337) - refer to Jason Stone's mail for zsh workaround for exit-hanging quasi-bug - change a couple of log() statements to debug() statements (#50751) - pull cvs patch to add -t flag to sshd (#28611) - clear fd_sets correctly (one bit per FD, not one byte per FD) (#43221) * Mon Aug 20 2001 Nalin Dahyabhai <nalin@redhat.com> 2.9p2-6 - add db1-devel as a BuildPrerequisite (noted by Hans Ecke) * Thu Aug 16 2001 Nalin Dahyabhai <nalin@redhat.com> - pull cvs patch to fix remote port forwarding with protocol 2 * Thu Aug 09 2001 Nalin Dahyabhai <nalin@redhat.com> - pull cvs patch to add session initialization to no-pty sessions - pull cvs patch to not cut off challengeresponse auth needlessly - refuse to do X11 forwarding if xauth isn't there, handy if you enable it by default on a system that doesn't have X installed (#49263) * Wed Aug 08 2001 Nalin Dahyabhai <nalin@redhat.com> - don't apply patches to code we don't intend to build (spotted by Matt Galgoci) * Mon Aug 06 2001 Nalin Dahyabhai <nalin@redhat.com> - pass OPTIONS correctly to initlog (#50151) * Wed Jul 25 2001 Nalin Dahyabhai <nalin@redhat.com> - switch to x11-ssh-askpass 1.2.2 * Wed Jul 11 2001 Nalin Dahyabhai <nalin@redhat.com> - rebuild in new environment * Mon Jun 25 2001 Nalin Dahyabhai <nalin@redhat.com> - disable the gssapi patch * Mon Jun 18 2001 Nalin Dahyabhai <nalin@redhat.com> - update to 2.9p2 - refresh to a new version of the gssapi patch * Thu Jun 07 2001 Nalin Dahyabhai <nalin@redhat.com> - change Copyright: BSD to License: BSD - add Markus Friedl's unverified patch for the cookie file deletion problem so that we can verify it - drop patch to check if xauth is present (was folded into cookie patch) - don't apply gssapi patches for the errata candidate - clear supplemental groups list at startup * Fri May 25 2001 Nalin Dahyabhai <nalin@redhat.com> - fix an error parsing the new default sshd_config - add a fix from Markus Friedl (via openssh-unix-dev) for ssh-keygen not dealing with comments right * Thu May 24 2001 Nalin Dahyabhai <nalin@redhat.com> - add in Simon Wilkinson's GSSAPI patch to give it some testing in-house, to be removed before the next beta cycle because it's a big departure from the upstream version * Thu May 03 2001 Nalin Dahyabhai <nalin@redhat.com> - finish marking strings in the init script for translation - modify init script to source /etc/sysconfig/sshd and pass $OPTIONS to sshd at startup (change merged from openssh.com init script, originally by Pekka Savola) - refuse to do X11 forwarding if xauth isn't there, handy if you enable it by default on a system that doesn't have X installed * Wed May 02 2001 Nalin Dahyabhai <nalin@redhat.com> - update to 2.9 - drop various patches that came from or went upstream or to or from CVS * Wed Apr 18 2001 Nalin Dahyabhai <nalin@redhat.com> - only require initscripts 5.00 on 6.2 (reported by Peter Bieringer) * Sun Apr 08 2001 Preston Brown <pbrown@redhat.com> - remove explicit openssl requirement, fixes builddistro issue - make initscript stop() function wait until sshd really dead to avoid races in condrestart * Mon Apr 02 2001 Nalin Dahyabhai <nalin@redhat.com> - mention that challengereponse supports PAM, so disabling password doesn't limit users to pubkey and rsa auth (#34378) - bypass the daemon() function in the init script and call initlog directly, because daemon() won't start a daemon it detects is already running (like open connections) - require the version of openssl we had when we were built * Fri Mar 23 2001 Nalin Dahyabhai <nalin@redhat.com> - make do_pam_setcred() smart enough to know when to establish creds and when to reinitialize them - add in a couple of other fixes from Damien for inclusion in the errata * Thu Mar 22 2001 Nalin Dahyabhai <nalin@redhat.com> - update to 2.5.2p2 - call setcred() again after initgroups, because the "creds" could actually be group memberships * Tue Mar 20 2001 Nalin Dahyabhai <nalin@redhat.com> - update to 2.5.2p1 (includes endianness fixes in the rijndael implementation) - don't enable challenge-response by default until we find a way to not have too many userauth requests (we may make up to six pubkey and up to three password attempts as it is) - remove build dependency on rsh to match openssh.com's packages more closely * Sat Mar 03 2001 Nalin Dahyabhai <nalin@redhat.com> - remove dependency on openssl -- would need to be too precise * Fri Mar 02 2001 Nalin Dahyabhai <nalin@redhat.com> - rebuild in new environment * Mon Feb 26 2001 Nalin Dahyabhai <nalin@redhat.com> - Revert the patch to move pam_open_session. - Init script and spec file changes from Pekka Savola. (#28750) - Patch sftp to recognize '-o protocol' arguments. (#29540) * Thu Feb 22 2001 Nalin Dahyabhai <nalin@redhat.com> - Chuck the closing patch. - Add a trigger to add host keys for protocol 2 to the config file, now that configuration file syntax requires us to specify it with HostKey if we specify any other HostKey values, which we do. * Tue Feb 20 2001 Nalin Dahyabhai <nalin@redhat.com> - Redo patch to move pam_open_session after the server setuid()s to the user. - Rework the nopam patch to use be picked up by autoconf. * Mon Feb 19 2001 Nalin Dahyabhai <nalin@redhat.com> - Update for 2.5.1p1. - Add init script mods from Pekka Savola. - Tweak the init script to match the CVS contrib script more closely. - Redo patch to ssh-add to try to adding both identity and id_dsa to also try adding id_rsa. * Fri Feb 16 2001 Nalin Dahyabhai <nalin@redhat.com> - Update for 2.5.0p1. - Use $RPM_OPT_FLAGS instead of -O when building gnome-ssh-askpass - Resync with parts of Damien Miller's openssh.spec from CVS, including update of x11 askpass to 1.2.0. - Only require openssl (don't prereq) because we generate keys in the init script now. * Tue Feb 13 2001 Nalin Dahyabhai <nalin@redhat.com> - Don't open a PAM session until we've forked and become the user (#25690). - Apply Andrew Bartlett's patch for letting pam_authenticate() know which host the user is attempting a login from. - Resync with parts of Damien Miller's openssh.spec from CVS. - Don't expose KbdInt responses in debug messages (from CVS). - Detect and handle errors in rsa_{public,private}_decrypt (from CVS). * Wed Feb 07 2001 Trond Eivind Glomsrxd <teg@redhat.com> - i18n-tweak to initscript. * Tue Jan 23 2001 Nalin Dahyabhai <nalin@redhat.com> - More gettextizing. - Close all files after going into daemon mode (needs more testing). - Extract patch from CVS to handle auth banners (in the client). - Extract patch from CVS to handle compat weirdness. * Fri Jan 19 2001 Nalin Dahyabhai <nalin@redhat.com> - Finish with the gettextizing. * Thu Jan 18 2001 Nalin Dahyabhai <nalin@redhat.com> - Fix a bug in auth2-pam.c (#23877) - Gettextize the init script. * Wed Dec 20 2000 Nalin Dahyabhai <nalin@redhat.com> - Incorporate a switch for using PAM configs for 6.x, just in case. * Tue Dec 05 2000 Nalin Dahyabhai <nalin@redhat.com> - Incorporate Bero's changes for a build specifically for rescue CDs. * Wed Nov 29 2000 Nalin Dahyabhai <nalin@redhat.com> - Don't treat pam_setcred() failure as fatal unless pam_authenticate() has succeeded, to allow public-key authentication after a failure with "none" authentication. (#21268) * Tue Nov 28 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to x11-askpass 1.1.1. (#21301) - Don't second-guess fixpaths, which causes paths to get fixed twice. (#21290) * Mon Nov 27 2000 Nalin Dahyabhai <nalin@redhat.com> - Merge multiple PAM text messages into subsequent prompts when possible when doing keyboard-interactive authentication. * Sun Nov 26 2000 Nalin Dahyabhai <nalin@redhat.com> - Disable the built-in MD5 password support. We're using PAM. - Take a crack at doing keyboard-interactive authentication with PAM, and enable use of it in the default client configuration so that the client will try it when the server disallows password authentication. - Build with debugging flags. Build root policies strip all binaries anyway. * Tue Nov 21 2000 Nalin Dahyabhai <nalin@redhat.com> - Use DESTDIR instead of %makeinstall. - Remove /usr/X11R6/bin from the path-fixing patch. * Mon Nov 20 2000 Nalin Dahyabhai <nalin@redhat.com> - Add the primes file from the latest snapshot to the main package (#20884). - Add the dev package to the prereq list (#19984). - Remove the default path and mimic login's behavior in the server itself. * Fri Nov 17 2000 Nalin Dahyabhai <nalin@redhat.com> - Resync with conditional options in Damien Miller's .spec file for an errata. - Change libexecdir from %{_libexecdir}/ssh to %{_libexecdir}/openssh. * Tue Nov 07 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to OpenSSH 2.3.0p1. - Update to x11-askpass 1.1.0. - Enable keyboard-interactive authentication. * Mon Oct 30 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to ssh-askpass-x11 1.0.3. - Change authentication related messages to be private (#19966). * Tue Oct 10 2000 Nalin Dahyabhai <nalin@redhat.com> - Patch ssh-keygen to be able to list signatures for DSA public key files it generates. * Thu Oct 05 2000 Nalin Dahyabhai <nalin@redhat.com> - Add BuildPreReq on /usr/include/security/pam_appl.h to be sure we always build PAM authentication in. - Try setting SSH_ASKPASS if gnome-ssh-askpass is installed. - Clean out no-longer-used patches. - Patch ssh-add to try to add both identity and id_dsa, and to error only when neither exists. * Mon Oct 02 2000 Nalin Dahyabhai <nalin@redhat.com> - Update x11-askpass to 1.0.2. (#17835) - Add BuildPreReqs for /bin/login and /usr/bin/rsh so that configure will always find them in the right place. (#17909) - Set the default path to be the same as the one supplied by /bin/login, but add /usr/X11R6/bin. (#17909) - Try to handle obsoletion of ssh-server more cleanly. Package names are different, but init script name isn't. (#17865) * Wed Sep 06 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to 2.2.0p1. (#17835) - Tweak the init script to allow proper restarting. (#18023) * Wed Aug 23 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to 20000823 snapshot. - Change subpackage requirements from %{version} to %{version}-%{release} - Back out the pipe patch. * Mon Jul 17 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to 2.1.1p4, which includes fixes for config file parsing problems. - Move the init script back. - Add Damien's quick fix for wackiness. * Wed Jul 12 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to 2.1.1p3, which includes fixes for X11 forwarding and strtok(). * Thu Jul 06 2000 Nalin Dahyabhai <nalin@redhat.com> - Move condrestart to server postun. - Move key generation to init script. - Actually use the right patch for moving the key generation to the init script. - Clean up the init script a bit. * Wed Jul 05 2000 Nalin Dahyabhai <nalin@redhat.com> - Fix X11 forwarding, from mail post by Chan Shih-Ping Richard. * Sun Jul 02 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to 2.1.1p2. - Use of strtok() considered harmful. * Sat Jul 01 2000 Nalin Dahyabhai <nalin@redhat.com> - Get the build root out of the man pages. * Thu Jun 29 2000 Nalin Dahyabhai <nalin@redhat.com> - Add and use condrestart support in the init script. - Add newer initscripts as a prereq. * Tue Jun 27 2000 Nalin Dahyabhai <nalin@redhat.com> - Build in new environment (release 2) - Move -clients subpackage to Applications/Internet group * Fri Jun 09 2000 Nalin Dahyabhai <nalin@redhat.com> - Update to 2.2.1p1 * Sat Jun 03 2000 Nalin Dahyabhai <nalin@redhat.com> - Patch to build with neither RSA nor RSAref. - Miscellaneous FHS-compliance tweaks. - Fix for possibly-compressed man pages. * Wed Mar 15 2000 Damien Miller <djm@ibs.com.au> - Updated for new location - Updated for new gnome-ssh-askpass build * Sun Dec 26 1999 Damien Miller <djm@mindrot.org> - Added Jim Knoble's <jmknoble@pobox.com> askpass * Mon Nov 15 1999 Damien Miller <djm@mindrot.org> - Split subpackages further based on patch from jim knoble <jmknoble@pobox.com> * Sat Nov 13 1999 Damien Miller <djm@mindrot.org> - Added 'Obsoletes' directives * Tue Nov 09 1999 Damien Miller <djm@ibs.com.au> - Use make install - Subpackages * Mon Nov 08 1999 Damien Miller <djm@ibs.com.au> - Added links for slogin - Fixed perms on manpages * Sat Oct 30 1999 Damien Miller <djm@ibs.com.au> - Renamed init script * Fri Oct 29 1999 Damien Miller <djm@ibs.com.au> - Back to old binary names * Thu Oct 28 1999 Damien Miller <djm@ibs.com.au> - Use autoconf - New binary names * Wed Oct 27 1999 Damien Miller <djm@ibs.com.au> - Initial RPMification, based on Jan "Yenya" Kasprzak's <kas@fi.muni.cz> spec.
/etc/ssh/ssh_config /usr/bin/scp /usr/bin/sftp /usr/bin/slogin /usr/bin/ssh /usr/bin/ssh-add /usr/bin/ssh-agent /usr/bin/ssh-copy-id /usr/bin/ssh-keyscan /usr/share/man/man1/scp.1.gz /usr/share/man/man1/sftp.1.gz /usr/share/man/man1/slogin.1.gz /usr/share/man/man1/ssh-add.1.gz /usr/share/man/man1/ssh-agent.1.gz /usr/share/man/man1/ssh-copy-id.1.gz /usr/share/man/man1/ssh-keyscan.1.gz /usr/share/man/man1/ssh.1.gz /usr/share/man/man5/ssh_config.5.gz
Generated by rpm2html 1.9.2
webmaster@wesmo.com, Wed Mar 21 12:13:11 2007