dropbear

mirror of https://github.com/clearml/dropbear synced 2025-01-31 10:57:01 +00:00

Author	SHA1	Message	Date
Matt Johnston	43769b5bb3	Don't enable CLI_IMMEDIATE_AUTH by default, it breaks blank password logins	2013-04-18 21:47:38 +08:00
Matt Johnston	557d86aa79	Fix a few options and headers	2013-04-03 07:33:47 +08:00
Matt Johnston	99d9cf500b	Add kexguess2 behaviour --HG-- branch : kexguess	2013-03-29 23:29:48 +08:00
Matt Johnston	845ad0be39	Fix "-c none" so that it allows aes during authentication Default for options.h shouldn't allow "none"	2013-03-20 23:52:49 +08:00
Matt Johnston	d37dcc636f	Merge "none" cipher/MAC branch. Also adds sha256 and sha512	2013-03-20 22:41:07 +08:00
Matt Johnston	d7f2153631	DSS_PROTOK is not necessary now that private keys are included in the random generation input	2013-02-23 17:55:46 +08:00
Paul Eggleton	1205fa68df	Allow configuring "allow blank password option" at runtime Changes this from a compile-time switch to a command-line option. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>	2013-02-12 15:52:57 +00:00
Matt Johnston	d5ccc32b4d	Improve RNG seeding. Try to read from /dev/urandom multiple times, take input from extra sources, and use /dev/random when generating private keys	2012-06-29 23:19:43 +08:00
Matt Johnston	e719a9ef6f	- Only request "none" cipher after auth has succeeded --HG-- branch : insecure-nocrypto	2012-05-17 20:52:57 +08:00
Matt Johnston	a02d38072a	Add ALLOW_NONE_PASSWORD_AUTH option --HG-- branch : insecure-nocrypto	2012-05-17 08:33:11 +08:00
Matt Johnston	f2cd610750	Merge in "-m"/"-c" code --HG-- branch : insecure-nocrypto	2012-05-17 08:09:19 +08:00
Matt Johnston	db34044c7f	ENABLE_USER_ALGO_LIST should work for the client	2012-05-17 00:26:12 +08:00
Matt Johnston	036edd6206	Add rough support for choosing ciphers/hashes with "-c" or "-m"	2012-05-17 00:12:42 +08:00
Matt Johnston	f40ed8bad7	Update insecure-nocrypto to current head --HG-- branch : insecure-nocrypto	2012-05-16 22:54:51 +08:00
Matt Johnston	41f50057f1	Disable SHA256 and SHA512 by default in options.h --HG-- branch : sha2	2012-05-16 21:56:50 +08:00
Matt Johnston	c62e53807f	- Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to be getting keyed incorrectly --HG-- branch : sha2	2012-05-10 08:38:37 +08:00
Matt Johnston	6b4105ffe6	Fix empty password immediate login	2012-05-09 22:51:59 +08:00
Matt Johnston	3e2b6a1821	Improve comment about sha1-96	2012-04-12 21:57:30 +08:00
Matt Johnston	29e68e9d79	- Add ALLOW_BLANK_PASSWORD option - Don't reject blank-password logins via public key --HG-- extra : convert_revision : 2d4bb3ecb013a7be47a7b470fc6b23e653a43dfb	2011-10-26 15:49:47 +00:00
Matt Johnston	0993e44b4f	merge of '8a608f0ed5e4b491dba4bf330e560636ec7376fd' and 'b31879a384d3bf8cbcbe2ed731d7d79d49799b1d' --HG-- extra : convert_revision : dfa0557e6070859d23ff096789f339e51a870177	2011-02-28 13:51:34 +00:00
Matt Johnston	d634b502cf	- Don't allow setting memLevel since that doesn't work properly - Better handling of the case where compressing makes the data larger (possibly only happens when memLevel is adjusted, but better to be safe) --HG-- extra : convert_revision : b31879a384d3bf8cbcbe2ed731d7d79d49799b1d	2011-02-28 13:51:27 +00:00
Matt Johnston	53fc7eaf03	Compile fix for when both client and server agent forwarding is disabled --HG-- extra : convert_revision : 8a608f0ed5e4b491dba4bf330e560636ec7376fd	2011-02-28 13:39:18 +00:00
Matt Johnston	5a7a88b843	It happened to sony --HG-- extra : convert_revision : c2d5690ca9ed85c7d75dd9cc2c150de50503aa3b	2011-02-24 12:45:17 +00:00
Matt Johnston	52551cb771	- Test for pam_fail_delay() function in configure - Recognise "username:" as a PAM prompt - Add some randomness to the auth-failure delay - Fix wrongly committed options.h/debug.h --HG-- extra : convert_revision : f242f0e66fb0ea5d3b374995d2f548d37dd8f3a3	2009-09-08 14:53:53 +00:00
Matt Johnston	f88bed7a30	Rearrange getaddrstring() etc --HG-- extra : convert_revision : 8a18c4a60aeaec085923d13d98fa0f93c506ceba	2009-09-01 16:38:26 +00:00
Matt Johnston	4b1f9e50f2	- set $SSH_ORIGINAL_COMMAND if a command is forced, and log it if LOG_COMMANDS is set --HG-- extra : convert_revision : d9e8aa0ecbe7607285fa4f96f0d6f9b1523719d8	2009-08-26 14:09:22 +00:00
Matt Johnston	2f1ed9a34b	propagate from branch 'au.asn.ucc.matt.dropbear.cli-agent' (head eb0dae4b62e243ba37a897beb7ba81a4f637d8b3) to branch 'au.asn.ucc.matt.dropbear' (head ff0abce7b29e61630e3b09e5fc5820ae6e192808) --HG-- extra : convert_revision : 49e078caffa785d121cefaf05b64fecc71fecd63	2009-07-30 15:15:12 +00:00
Matt Johnston	bacd2a8c79	propagate from branch 'au.asn.ucc.matt.dropbear' (head bbe4e11695a7b22bd89a722600eb4a4020b6fdf3) to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 276cf5e82276b6c879d246ba64739ec6868f5150) --HG-- branch : agent-client extra : convert_revision : d23b0c21649eb2f0b2d13dbf33c0a9faca25628a	2009-07-29 02:58:33 +00:00
Matt Johnston	103a829eac	Use /usr/bin/X11/xauth default path instead --HG-- extra : convert_revision : ff0abce7b29e61630e3b09e5fc5820ae6e192808	2009-07-28 16:16:14 +00:00
Matt Johnston	3608775306	- Add option to change zlib windowBits/memLevel --HG-- extra : convert_revision : 5fc51ba0b8f165426c78f8d32162e5ccb51e524f	2009-07-26 15:39:47 +00:00
Matt Johnston	8181d41bb5	Disable Blowfish by default, it has inefficient key memory use --HG-- extra : convert_revision : a37b8ae5fb524be221dbdfd71b4f35eb6a48565c	2009-07-24 13:49:07 +00:00
Matt Johnston	709a3e75cf	propagate from branch 'au.asn.ucc.matt.dropbear' (head 899a8851a5edf840b2f7925bcc26ffe99dcac54d) to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 6bbab8364de17bd9ecb1dee5ffb796e48c0380d2) --HG-- branch : agent-client extra : convert_revision : d39a49137cc36b624768d4e79e564141dde8d355	2009-07-01 04:16:32 +00:00
Matt Johnston	b639e18d39	- Turn DROPBEAR_SMALL_CODE off by default --HG-- extra : convert_revision : ef3b41f37e9f4dd45358bc40f9559ee23f71c284	2009-03-03 13:42:54 +00:00
Matt Johnston	5a2dde814d	PAM shouldn't be on by default --HG-- extra : convert_revision : 44714b1a34bf7833e6f2e4fd1c81ceaacccb15bd	2008-11-11 14:15:54 +00:00
Matt Johnston	adc4d0194f	Idle timeout patch from Farrell Aultman. Needs testing, unsure if server code works --HG-- extra : convert_revision : ff66e05ae040561110af70114bf83f11ed528f05	2008-11-07 14:11:06 +00:00
Matt Johnston	1912439526	Update nocrypto branch to current head --HG-- branch : insecure-nocrypto extra : convert_revision : 9e5e6e33be005d27cd5b3270c574edc45b5c2893	2008-11-06 13:33:06 +00:00
Matt Johnston	800810a181	propagate from branch 'au.asn.ucc.matt.dropbear' (head cdcc3c729e29544e8b98a408e2dc60e4483dfd2a) to branch 'au.asn.ucc.matt.dropbear.insecure-nocrypto' (head 0ca38a1cf349f7426ac9de34ebe4c3e3735effab) --HG-- branch : insecure-nocrypto extra : convert_revision : dbb093e087a68abf2e54ab0b711af70771ddb29d	2008-11-06 13:16:55 +00:00
Matt Johnston	e80f8e8c09	- Update manuals, include section on authorized_keys - Change default PATH to /usr/bin:/bin - Mention DEBUG_TRACE in -v help text --HG-- extra : convert_revision : cdcc3c729e29544e8b98a408e2dc60e4483dfd2a	2008-11-05 14:14:40 +00:00
Matt Johnston	51dcfc06dc	- Set a default path, since bash won't export one otherwise (though it will set one, leading to mysterious problems) - Rearrange some options --HG-- extra : convert_revision : 6e81becf6e96479e10d9244186a900fab7079bf8	2008-11-05 13:30:23 +00:00
Matt Johnston	c2bd79131a	- Get rid of blowfish and twofish CTR since they weren't likely to be that useful --HG-- extra : convert_revision : e16bd265bb6e8093b3488993dffc86662a2a7a62	2008-09-29 14:30:47 +00:00
Matt Johnston	511f6555c9	- Add Counter Mode support --HG-- extra : convert_revision : 5225162bdf32d70b58b6d3ae375a290326c59f3a	2008-09-29 13:53:31 +00:00
Matt Johnston	e674c73ee6	propagate from branch 'au.asn.ucc.matt.dropbear' (head 4fb35083f0f46ea667e7043e7d4314aecd3df46c) to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 833d0adef6cdbf43ea75283524c665e70b0ee1ee) --HG-- branch : agent-client extra : convert_revision : 6bbab8364de17bd9ecb1dee5ffb796e48c0380d2	2008-09-23 16:05:04 +00:00
Matt Johnston	90f8c1fd51	Split options.h out into sysoptions.h for options that aren't usually user-changed --HG-- extra : convert_revision : 4fb35083f0f46ea667e7043e7d4314aecd3df46c	2008-09-23 16:02:51 +00:00
Matt Johnston	6fe6393acb	propagate from branch 'au.asn.ucc.matt.dropbear.pubkey-options' (head 537a6ebebb46424b967ffe787f0f8560e5f447e8) to branch 'au.asn.ucc.matt.dropbear' (head 10b2f286b9886364db39dfbb4f8f46e49e345d87) --HG-- extra : convert_revision : 6fd2597077a4e2421bf45388e058d15606f6dd74	2008-09-23 13:16:22 +00:00
Matt Johnston	f4aacaa74c	Add multihop 'onion-forwarding' mode. Needs refinement, works. --HG-- extra : convert_revision : 877947ce24297781438a75e7e9c64ba86f0dce93	2008-09-18 14:47:02 +00:00
Matt Johnston	66e2f59c7b	propagate from branch 'au.asn.ucc.matt.dropbear.dbclient-netcat-alike' (head b02ba6628cf2095017c60d202ac630f231e6b553) to branch 'au.asn.ucc.matt.dropbear' (head 636506b73e973b004cc058b07e6f36a25ff902f8) --HG-- extra : convert_revision : eb8e95a8227df7802d79007d4dd89098759fa76b	2008-09-17 14:49:12 +00:00
Matt Johnston	af00c78e21	Rework netcat-alike to be a proper mode, with -B argument. --HG-- branch : dbclient-netcat-alike extra : convert_revision : b02ba6628cf2095017c60d202ac630f231e6b553	2008-09-17 14:36:49 +00:00
Matt Johnston	e44aa503f0	- "-J 'nc localhost 22'" kind of works, needs fixing hostkeys, ptys etc. --HG-- extra : convert_revision : 45069dd007ebf414330e0a7abf4fb7e0727049c3	2008-09-15 14:40:30 +00:00
Matt Johnston	b619e88f54	- Split main socket var into ses.sock_in/ses.sock_out in preparation for -J proxy_cmd option (and some prelim options for that) --HG-- extra : convert_revision : 47cdea9a7d66c553c6f5eec43b899821939d4e4c	2008-09-15 12:51:50 +00:00
Matt Johnston	c0ce2a6a97	* Patch from Frédéric Moulins adding options to authorized_keys. Needs review. --HG-- branch : pubkey-options extra : convert_revision : 26872f944d79ddacff1070aab32115a6d726392c	2008-09-08 15:14:02 +00:00

1 2 3

124 Commits