SOURCES: openssh-sigpipe.patch, openssh-config.patch, openssh-chroot.patch, ...
arekm
arekm at pld-linux.org
Tue Jul 22 11:01:03 CEST 2008
Author: arekm Date: Tue Jul 22 09:01:01 2008 GMT
Module: SOURCES Tag: HEAD
---- Log message:
- up to 5.1
---- Files affected:
SOURCES:
openssh-sigpipe.patch (1.9 -> 1.10) , openssh-config.patch (1.2 -> 1.3) , openssh-chroot.patch (1.9 -> 1.10) , openssh-blacklist.diff (1.1 -> 1.2) , openssh-unbreakalive.patch (1.3 -> NONE) (REMOVED), openssh-linux-ipv6.patch (1.3 -> NONE) (REMOVED)
---- Diffs:
================================================================
Index: SOURCES/openssh-sigpipe.patch
diff -u SOURCES/openssh-sigpipe.patch:1.9 SOURCES/openssh-sigpipe.patch:1.10
--- SOURCES/openssh-sigpipe.patch:1.9 Mon Oct 22 08:38:07 2007
+++ SOURCES/openssh-sigpipe.patch Tue Jul 22 11:00:53 2008
@@ -74,12 +74,12 @@
" [-D [bind_address:]port] [-e escape_char] [-F configfile]\n"
" [-i identity_file] [-L [bind_address:]port:host:hostport]\n"
" [-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port]\n"
-@@ -244,7 +247,7 @@
+@@ -275,7 +275,7 @@
- again:
- while ((opt = getopt(ac, av,
-- "1246ab:c:e:fgi:kl:m:no:p:qstvxACD:F:I:KL:MNO:PR:S:TVw:XY")) != -1) {
-+ "1246ab:c:e:fgi:kl:m:no:p:qstvxABCD:F:I:KL:MNO:PR:S:TVw:XY")) != -1) {
+ again:
+ while ((opt = getopt(ac, av, "1246ab:c:e:fgi:kl:m:no:p:qstvx"
+- "ACD:F:I:KL:MNO:PR:S:TVw:XY")) != -1) {
++ "ABCD:F:I:KL:MNO:PR:S:TVw:XY")) != -1) {
switch (opt) {
case '1':
options.protocol = SSH_PROTO_1;
================================================================
Index: SOURCES/openssh-config.patch
diff -u SOURCES/openssh-config.patch:1.2 SOURCES/openssh-config.patch:1.3
--- SOURCES/openssh-config.patch:1.2 Mon Oct 22 08:38:07 2007
+++ SOURCES/openssh-config.patch Tue Jul 22 11:00:55 2008
@@ -31,17 +31,15 @@
# Set this to 'yes' to enable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
-@@ -78,8 +79,16 @@
+@@ -89,10 +89,12 @@
+ # If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and ChallengeResponseAuthentication to 'no'.
- #UsePAM no
+-#UsePAM no
+UsePAM yes
-+
-+# Set this to 'yes' to enable support for chrooted user environment.
-+# You must create such environment before you can use this feature.
-+#UseChroot yes
- #AllowTcpForwarding yes
+ #AllowAgentForwarding yes
+-#AllowTcpForwarding yes
+# Security advisory:
+# http://securitytracker.com/alerts/2004/Sep/1011143.html
+AllowTcpForwarding no
================================================================
Index: SOURCES/openssh-chroot.patch
diff -u SOURCES/openssh-chroot.patch:1.9 SOURCES/openssh-chroot.patch:1.10
--- SOURCES/openssh-chroot.patch:1.9 Mon May 5 16:41:50 2008
+++ SOURCES/openssh-chroot.patch Tue Jul 22 11:00:55 2008
@@ -106,17 +106,17 @@
perror("unable to set user context (setuser)");
--- openssh-3.7.1p2/sshd_config 2003-09-02 14:51:18.000000000 +0200
+++ openssh-3.7.1p2.pius/sshd_config 2003-10-07 20:49:08.000000000 +0200
-@@ -71,6 +71,10 @@
- # bypass the setting of 'PasswordAuthentication'
- #UsePAM yes
+@@ -91,6 +91,10 @@
+ # and ChallengeResponseAuthentication to 'no'.
+ UsePAM yes
+# Set this to 'yes' to enable support for chrooted user environment.
-+# You must create such environment before you can use this feature.
++# You must create such environment before you can use this feature.
+#UseChroot yes
+
- #AllowTcpForwarding yes
- #GatewayPorts no
- #X11Forwarding no
+ #AllowAgentForwarding yes
+ # Security advisory:
+ # http://securitytracker.com/alerts/2004/Sep/1011143.html
--- openssh-4.4p1/sshd_config.0.orig 2006-09-26 13:03:48.000000000 +0200
+++ openssh-4.4p1/sshd_config.0 2006-10-05 10:11:41.615971000 +0200
@@ -451,6 +451,16 @@
================================================================
Index: SOURCES/openssh-blacklist.diff
diff -u SOURCES/openssh-blacklist.diff:1.1 SOURCES/openssh-blacklist.diff:1.2
--- SOURCES/openssh-blacklist.diff:1.1 Tue May 20 15:15:28 2008
+++ SOURCES/openssh-blacklist.diff Tue Jul 22 11:00:56 2008
@@ -127,12 +127,12 @@
canohost.o channels.o cipher.o cipher-acss.o cipher-aes.o \
@@ -88,8 +88,8 @@
loginrec.o auth-pam.o auth-shadow.o auth-sia.o md5crypt.o \
- audit.o audit-bsm.o platform.o
+ audit.o audit-bsm.o platform.o sftp-server.o sftp-common.o
--MANPAGES = scp.1.out ssh-add.1.out ssh-agent.1.out ssh-keygen.1.out ssh-keyscan.1.out ssh.1.out sshd.8.out sftp-server.8.out sftp.1.out ssh-rand-helper.8.out ssh-keysign.8.out sshd_config.5.out ssh_config.5.out
--MANPAGES_IN = scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh.1 sshd.8 sftp-server.8 sftp.1 ssh-rand-helper.8 ssh-keysign.8 sshd_config.5 ssh_config.5
-+MANPAGES = scp.1.out ssh-add.1.out ssh-agent.1.out ssh-keygen.1.out ssh-keyscan.1.out ssh.1.out sshd.8.out sftp-server.8.out sftp.1.out ssh-rand-helper.8.out ssh-keysign.8.out ssh-vulnkey.1.out sshd_config.5.out ssh_config.5.out
-+MANPAGES_IN = scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh.1 sshd.8 sftp-server.8 sftp.1 ssh-rand-helper.8 ssh-keysign.8 ssh-vulnkey.1 sshd_config.5 ssh_config.5
+-MANPAGES = moduli.5.out scp.1.out ssh-add.1.out ssh-agent.1.out ssh-keygen.1.out ssh-keyscan.1.out ssh.1.out sshd.8.out sftp-server.8.out sftp.1.out ssh-rand-helper.8.out ssh-keysign.8.out sshd_config.5.out ssh_config.5.out
+-MANPAGES_IN = moduli.5 scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh.1 sshd.8 sftp-server.8 sftp.1 ssh-rand-helper.8 ssh-keysign.8 sshd_config.5 ssh_config.5
++MANPAGES = moduli.5.out scp.1.out ssh-add.1.out ssh-agent.1.out ssh-keygen.1.out ssh-keyscan.1.out ssh.1.out sshd.8.out sftp-server.8.out sftp.1.out ssh-rand-helper.8.out ssh-keysign.8.out sshd_config.5.out ssh_config.5.out ssh-vulnkey.1.out
++MANPAGES_IN = moduli.5 scp.1 ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh.1 sshd.8 sftp-server.8 sftp.1 ssh-rand-helper.8 ssh-keysign.8 sshd_config.5 ssh_config.5 ssh-vulnkey.1
MANTYPE = @MANTYPE@
CONFIGFILES=sshd_config.out ssh_config.out moduli.out
================================================================
---- CVS-web:
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/openssh-sigpipe.patch?r1=1.9&r2=1.10&f=u
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/openssh-config.patch?r1=1.2&r2=1.3&f=u
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/openssh-chroot.patch?r1=1.9&r2=1.10&f=u
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/openssh-blacklist.diff?r1=1.1&r2=1.2&f=u
More information about the pld-cvs-commit
mailing list