SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for openssh-server-3.5p1-11.rhel3.dag.i386.rpm :

* Thu Sep 18 2003 Nalin Dahyabhai 3.5p1-11- additional buffer manipulation cleanups from Solar Designer- this update goes to 11
* Wed Sep 17 2003 Bill Nottingham 3.5p1-10- additional buffer manipulation fixes (CAN-2003-0695)
* Wed Sep 17 2003 Nalin Dahyabhai 3.5p1-9- apply patch to store the correct buffer size in allocated buffers (CAN-2003-0693)- skip the initial PAM authentication attempt with an empty password if empty passwords are not permitted in our configuration (#103998)
* Fri Jun 06 2003 Nalin Dahyabhai 3.5p1-6.9- backport patch to close timing attacks when PAM authentication is short-circuited by other checks
* Fri Feb 14 2003 Nalin Dahyabhai 3.5p1-6- move scp to the -clients subpackage, because it directly depends on ssh which is also in -clients (#84329)
* Mon Feb 10 2003 Nalin Dahyabhai 3.5p1-5- rebuild
* Wed Jan 22 2003 Tim Powers - rebuilt
* Tue Jan 07 2003 Nalin Dahyabhai 3.5p1-3- rebuild
* Tue Nov 12 2002 Nalin Dahyabhai 3.5p1-2- patch PAM configuration to use relative path names for the modules, allowing us to not worry about which arch the modules are built for on multilib systems
* Wed Oct 16 2002 Nalin Dahyabhai 3.5p1-1- update to 3.5p1, merging in filelist/perm changes from the upstream spec
* Sat Oct 05 2002 Nalin Dahyabhai 3.4p1-3- merge
* Fri Sep 13 2002 Than Ngo 3.4p1-2.1- fix to build on multilib systems
* Fri Aug 30 2002 Curtis Zinzilieta 3.4p1-2gss- added gssapi patches and uncommented patch here
* Thu Aug 15 2002 Nalin Dahyabhai 3.4p1-2- pull patch from CVS to fix too-early free in ssh-keysign (#70009)
* Fri Jun 28 2002 Nalin Dahyabhai 3.4p1-1- 3.4p1- drop anon mmap patch
* Wed Jun 26 2002 Nalin Dahyabhai 3.3p1-2- rework the close-on-exit docs- include configuration file man pages- make use of nologin as the privsep shell optional
* Tue Jun 25 2002 Nalin Dahyabhai 3.3p1-1- update to 3.3p1- merge in spec file changes from upstream (remove setuid from ssh, ssh-keysign)- disable gtk2 askpass- require pam-devel by filename rather than by package for erratum- include patch from Solar Designer to work around anonymous mmap failures
* Sat Jun 22 2002 Tim Powers - automated rebuild
* Sat Jun 08 2002 Nalin Dahyabhai 3.2.3p1-3- don\'t require autoconf any more
* Sat Jun 01 2002 Nalin Dahyabhai 3.2.3p1-2- build gnome-ssh-askpass with gtk2
* Wed May 29 2002 Nalin Dahyabhai 3.2.3p1-1- update to 3.2.3p1- merge in spec file changes from upstream
* Sat May 18 2002 Nalin Dahyabhai 3.2.2p1-1- update to 3.2.2p1
* Sat May 18 2002 Nalin Dahyabhai 3.1p1-4- drop buildreq on db1-devel- require pam-devel by package name- require autoconf instead of autoconf253 again
* Wed Apr 03 2002 Nalin Dahyabhai 3.1p1-3- pull patch from CVS to avoid printing error messages when some of the default keys aren\'t available when running ssh-add- refresh to current revisions of Simon\'s patches
* Thu Mar 21 2002 Nalin Dahyabhai 3.1p1-2gss- reintroduce Simon\'s gssapi patches- add buildprereq for autoconf253, which is needed to regenerate configure after applying the gssapi patches- refresh to the latest version of Markus\'s patch to build properly with older versions of OpenSSL
* Thu Mar 07 2002 Nalin Dahyabhai 3.1p1-2- bump and grind (through the build system)
* Thu Mar 07 2002 Nalin Dahyabhai 3.1p1-1- require sharutils for building (mindrot #137)- require db1-devel only when building for 6.x (#55105), which probably won\'t work anyway (3.1 requires OpenSSL 0.9.6 to build), but what the heck- require pam-devel by file (not by package name) again- add Markus\'s patch to compile with OpenSSL 0.9.5a (from http://bugzilla.mindrot.org/show_bug.cgi?id=141) and apply it if we\'re building for 6.x
* Thu Mar 07 2002 Nalin Dahyabhai 3.1p1-0- update to 3.1p1
* Tue Mar 05 2002 Nalin Dahyabhai SNAP-20020305- update to SNAP-20020305- drop debug patch, fixed upstream
* Wed Feb 20 2002 Nalin Dahyabhai SNAP-20020220- update to SNAP-20020220 for testing purposes (you\'ve been warned, if there\'s anything to be warned about, gss patches won\'t apply, I don\'t mind)
* Wed Feb 13 2002 Nalin Dahyabhai 3.0.2p1-3- add patches from Simon Wilkinson and Nicolas Williams for GSSAPI key exchange, authentication, and named key support
* Wed Jan 23 2002 Nalin Dahyabhai 3.0.2p1-2- remove dependency on db1-devel, which has just been swallowed up whole by gnome-libs-devel
* Sat Dec 29 2001 Nalin Dahyabhai - adjust build dependencies so that build6x actually works right (fix from Hugo van der Kooij)
* Tue Dec 04 2001 Nalin Dahyabhai 3.0.2p1-1- update to 3.0.2p1
* Fri Nov 16 2001 Nalin Dahyabhai 3.0.1p1-1- update to 3.0.1p1
* Tue Nov 13 2001 Nalin Dahyabhai - update to current CVS (not for use in distribution)
* Thu Nov 08 2001 Nalin Dahyabhai 3.0p1-1- merge some of Damien Miller changes from the upstream 3.0p1 spec file and init script
* Wed Nov 07 2001 Nalin Dahyabhai - update to 3.0p1- update to x11-ssh-askpass 1.2.4.1- change build dependency on a file from pam-devel to the pam-devel package- replace primes with moduli
* Fri Sep 28 2001 Nalin Dahyabhai 2.9p2-9- incorporate fix from Markus Friedl\'s advisory for IP-based authorization bugs
* Fri Sep 14 2001 Bernhard Rosenkraenzer 2.9p2-8- Merge changes to rescue build from current sysadmin survival cd
* Fri Sep 07 2001 Nalin Dahyabhai 2.9p2-7- fix scp\'s server\'s reporting of file sizes, and build with the proper preprocessor define to get large-file capable open(), stat(), etc. (sftp has been doing this correctly all along) (#51827)- configure without --with-ipv4-default on RHL 7.x and newer (#45987,#52247)- pull cvs patch to fix support for /etc/nologin for non-PAM logins (#47298)- mark profile.d scriptlets as config files (#42337)- refer to Jason Stone\'s mail for zsh workaround for exit-hanging quasi-bug- change a couple of log() statements to debug() statements (#50751)- pull cvs patch to add -t flag to sshd (#28611)- clear fd_sets correctly (one bit per FD, not one byte per FD) (#43221)
* Tue Aug 21 2001 Nalin Dahyabhai 2.9p2-6- add db1-devel as a BuildPrerequisite (noted by Hans Ecke)
* Fri Aug 17 2001 Nalin Dahyabhai - pull cvs patch to fix remote port forwarding with protocol 2
* Fri Aug 10 2001 Nalin Dahyabhai - pull cvs patch to add session initialization to no-pty sessions- pull cvs patch to not cut off challengeresponse auth needlessly- refuse to do X11 forwarding if xauth isn\'t there, handy if you enable it by default on a system that doesn\'t have X installed (#49263)
* Thu Aug 09 2001 Nalin Dahyabhai - don\'t apply patches to code we don\'t intend to build (spotted by Matt Galgoci)
* Tue Aug 07 2001 Nalin Dahyabhai - pass OPTIONS correctly to initlog (#50151)
* Thu Jul 26 2001 Nalin Dahyabhai - switch to x11-ssh-askpass 1.2.2
* Thu Jul 12 2001 Nalin Dahyabhai - rebuild in new environment
* Tue Jun 26 2001 Nalin Dahyabhai - disable the gssapi patch
* Tue Jun 19 2001 Nalin Dahyabhai - update to 2.9p2- refresh to a new version of the gssapi patch
* Fri Jun 08 2001 Nalin Dahyabhai - change Copyright: BSD to License: BSD- add Markus Friedl\'s unverified patch for the cookie file deletion problem so that we can verify it- drop patch to check if xauth is present (was folded into cookie patch)- don\'t apply gssapi patches for the errata candidate- clear supplemental groups list at startup
* Sat May 26 2001 Nalin Dahyabhai - fix an error parsing the new default sshd_config- add a fix from Markus Friedl (via openssh-unix-dev) for ssh-keygen not dealing with comments right
* Fri May 25 2001 Nalin Dahyabhai - add in Simon Wilkinson\'s GSSAPI patch to give it some testing in-house, to be removed before the next beta cycle because it\'s a big departure from the upstream version
* Fri May 04 2001 Nalin Dahyabhai - finish marking strings in the init script for translation- modify init script to source /etc/sysconfig/sshd and pass $OPTIONS to sshd at startup (change merged from openssh.com init script, originally by Pekka Savola)- refuse to do X11 forwarding if xauth isn\'t there, handy if you enable it by default on a system that doesn\'t have X installed
* Thu May 03 2001 Nalin Dahyabhai - update to 2.9- drop various patches that came from or went upstream or to or from CVS
* Thu Apr 19 2001 Nalin Dahyabhai - only require initscripts 5.00 on 6.2 (reported by Peter Bieringer)
* Mon Apr 09 2001 Preston Brown - remove explicit openssl requirement, fixes builddistro issue- make initscript stop() function wait until sshd really dead to avoid races in condrestart
* Tue Apr 03 2001 Nalin Dahyabhai - mention that challengereponse supports PAM, so disabling password doesn\'t limit users to pubkey and rsa auth (#34378)- bypass the daemon() function in the init script and call initlog directly, because daemon() won\'t start a daemon it detects is already running (like open connections)- require the version of openssl we had when we were built
* Fri Mar 23 2001 Nalin Dahyabhai - make do_pam_setcred() smart enough to know when to establish creds and when to reinitialize them- add in a couple of other fixes from Damien for inclusion in the errata
* Thu Mar 22 2001 Nalin Dahyabhai - update to 2.5.2p2- call setcred() again after initgroups, because the \"creds\" could actually be group memberships
* Tue Mar 20 2001 Nalin Dahyabhai - update to 2.5.2p1 (includes endianness fixes in the rijndael implementation)- don\'t enable challenge-response by default until we find a way to not have too many userauth requests (we may make up to six pubkey and up to three password attempts as it is)- remove build dependency on rsh to match openssh.com\'s packages more closely
* Sat Mar 03 2001 Nalin Dahyabhai - remove dependency on openssl -- would need to be too precise
* Fri Mar 02 2001 Nalin Dahyabhai - rebuild in new environment
* Mon Feb 26 2001 Nalin Dahyabhai - Revert the patch to move pam_open_session.- Init script and spec file changes from Pekka Savola. (#28750)- Patch sftp to recognize \'-o protocol\' arguments. (#29540)
* Thu Feb 22 2001 Nalin Dahyabhai - Chuck the closing patch.- Add a trigger to add host keys for protocol 2 to the config file, now that configuration file syntax requires us to specify it with HostKey if we specify any other HostKey values, which we do.
* Tue Feb 20 2001 Nalin Dahyabhai - Redo patch to move pam_open_session after the server setuid()s to the user.- Rework the nopam patch to use be picked up by autoconf.
* Mon Feb 19 2001 Nalin Dahyabhai - Update for 2.5.1p1.- Add init script mods from Pekka Savola.- Tweak the init script to match the CVS contrib script more closely.- Redo patch to ssh-add to try to adding both identity and id_dsa to also try adding id_rsa.
* Fri Feb 16 2001 Nalin Dahyabhai - Update for 2.5.0p1.- Use $RPM_OPT_FLAGS instead of -O when building gnome-ssh-askpass- Resync with parts of Damien Miller\'s openssh.spec from CVS, including update of x11 askpass to 1.2.0.- Only require openssl (don\'t prereq) because we generate keys in the init script now.
* Tue Feb 13 2001 Nalin Dahyabhai - Don\'t open a PAM session until we\'ve forked and become the user (#25690).- Apply Andrew Bartlett\'s patch for letting pam_authenticate() know which host the user is attempting a login from.- Resync with parts of Damien Miller\'s openssh.spec from CVS.- Don\'t expose KbdInt responses in debug messages (from CVS).- Detect and handle errors in rsa_{public,private}_decrypt (from CVS).
* Wed Feb 07 2001 Trond Eivind Glomsrxd - i18n-tweak to initscript.
* Tue Jan 23 2001 Nalin Dahyabhai - More gettextizing.- Close all files after going into daemon mode (needs more testing).- Extract patch from CVS to handle auth banners (in the client).- Extract patch from CVS to handle compat weirdness.
* Fri Jan 19 2001 Nalin Dahyabhai - Finish with the gettextizing.
* Thu Jan 18 2001 Nalin Dahyabhai - Fix a bug in auth2-pam.c (#23877)- Gettextize the init script.
* Wed Dec 20 2000 Nalin Dahyabhai - Incorporate a switch for using PAM configs for 6.x, just in case.
* Tue Dec 05 2000 Nalin Dahyabhai - Incorporate Bero\'s changes for a build specifically for rescue CDs.
* Wed Nov 29 2000 Nalin Dahyabhai - Don\'t treat pam_setcred() failure as fatal unless pam_authenticate() has succeeded, to allow public-key authentication after a failure with \"none\" authentication. (#21268)
* Tue Nov 28 2000 Nalin Dahyabhai - Update to x11-askpass 1.1.1. (#21301)- Don\'t second-guess fixpaths, which causes paths to get fixed twice. (#21290)
* Mon Nov 27 2000 Nalin Dahyabhai - Merge multiple PAM text messages into subsequent prompts when possible when doing keyboard-interactive authentication.
* Sun Nov 26 2000 Nalin Dahyabhai - Disable the built-in MD5 password support. We\'re using PAM.- Take a crack at doing keyboard-interactive authentication with PAM, and enable use of it in the default client configuration so that the client will try it when the server disallows password authentication.- Build with debugging flags. Build root policies strip all binaries anyway.
* Tue Nov 21 2000 Nalin Dahyabhai - Use DESTDIR instead of %makeinstall.- Remove /usr/X11R6/bin from the path-fixing patch.
* Mon Nov 20 2000 Nalin Dahyabhai - Add the primes file from the latest snapshot to the main package (#20884).- Add the dev package to the prereq list (#19984).- Remove the default path and mimic login\'s behavior in the server itself.
* Fri Nov 17 2000 Nalin Dahyabhai - Resync with conditional options in Damien Miller\'s .spec file for an errata.- Change libexecdir from %{_libexecdir}/ssh to %{_libexecdir}/openssh.
* Tue Nov 07 2000 Nalin Dahyabhai - Update to OpenSSH 2.3.0p1.- Update to x11-askpass 1.1.0.- Enable keyboard-interactive authentication.
* Mon Oct 30 2000 Nalin Dahyabhai - Update to ssh-askpass-x11 1.0.3.- Change authentication related messages to be private (#19966).
* Wed Oct 11 2000 Nalin Dahyabhai - Patch ssh-keygen to be able to list signatures for DSA public key files it generates.
* Fri Oct 06 2000 Nalin Dahyabhai - Add BuildPreReq on /usr/include/security/pam_appl.h to be sure we always build PAM authentication in.- Try setting SSH_ASKPASS if gnome-ssh-askpass is installed.- Clean out no-longer-used patches.- Patch ssh-add to try to add both identity and id_dsa, and to error only when neither exists.
* Tue Oct 03 2000 Nalin Dahyabhai - Update x11-askpass to 1.0.2. (#17835)- Add BuildPreReqs for /bin/login and /usr/bin/rsh so that configure will always find them in the right place. (#17909)- Set the default path to be the same as the one supplied by /bin/login, but add /usr/X11R6/bin. (#17909)- Try to handle obsoletion of ssh-server more cleanly. Package names are different, but init script name isn\'t. (#17865)
* Thu Sep 07 2000 Nalin Dahyabhai - Update to 2.2.0p1. (#17835)- Tweak the init script to allow proper restarting. (#18023)
* Thu Aug 24 2000 Nalin Dahyabhai - Update to 20000823 snapshot.- Change subpackage requirements from %{version} to %{version}-%{release}- Back out the pipe patch.
* Tue Jul 18 2000 Nalin Dahyabhai - Update to 2.1.1p4, which includes fixes for config file parsing problems.- Move the init script back.- Add Damien\'s quick fix for wackiness.
* Thu Jul 13 2000 Nalin Dahyabhai - Update to 2.1.1p3, which includes fixes for X11 forwarding and strtok().
* Fri Jul 07 2000 Nalin Dahyabhai - Move condrestart to server postun.- Move key generation to init script.- Actually use the right patch for moving the key generation to the init script.- Clean up the init script a bit.
* Thu Jul 06 2000 Nalin Dahyabhai - Fix X11 forwarding, from mail post by Chan Shih-Ping Richard.
* Mon Jul 03 2000 Nalin Dahyabhai - Update to 2.1.1p2.- Use of strtok() considered harmful.
* Sun Jul 02 2000 Nalin Dahyabhai - Get the build root out of the man pages.
* Fri Jun 30 2000 Nalin Dahyabhai - Add and use condrestart support in the init script.- Add newer initscripts as a prereq.
* Wed Jun 28 2000 Nalin Dahyabhai - Build in new environment (release 2)- Move -clients subpackage to Applications/Internet group
* Sat Jun 10 2000 Nalin Dahyabhai - Update to 2.2.1p1
* Sun Jun 04 2000 Nalin Dahyabhai - Patch to build with neither RSA nor RSAref.- Miscellaneous FHS-compliance tweaks.- Fix for possibly-compressed man pages.
* Wed Mar 15 2000 Damien Miller - Updated for new location- Updated for new gnome-ssh-askpass build
* Sun Dec 26 1999 Damien Miller - Added Jim Knoble\'s askpass
* Mon Nov 15 1999 Damien Miller - Split subpackages further based on patch from jim knoble
* Sat Nov 13 1999 Damien Miller - Added \'Obsoletes\' directives
* Tue Nov 09 1999 Damien Miller - Use make install- Subpackages
* Mon Nov 08 1999 Damien Miller - Added links for slogin- Fixed perms on manpages
* Sun Oct 31 1999 Damien Miller - Renamed init script
* Sat Oct 30 1999 Damien Miller - Back to old binary names
* Fri Oct 29 1999 Damien Miller - Use autoconf- New binary names
* Thu Oct 28 1999 Damien Miller - Initial RPMification, based on Jan \"Yenya\" Kasprzak\'s spec.
  
ICM