ClearML/dropbear
1
0
Fork 0
mirror of https://github.com/clearml/dropbear synced 2025-01-31 02:46:58 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,843 Commits 5 Branches 63 Tags 14 MiB
86ac8411a0
Commit Graph

43 Commits

Author SHA1 Message Date
Matt Johnston
561ef41230 Merge egor-duda:sk-authkey-options 
Github pull request #172
 2022-11-09 16:14:59 +08:00
Tuomas Haikarainen
1e4d64d300 Added permitopen option to authorized_keys 
It is now possible to limit local port forwarding to specified
destination(s) by using the permitopen option in authorized_keys.

Resolves #181
 2022-07-12 10:35:00 +03:00
Egor Duda
62ea53c1e5
Implement no-touch-required and verify-requred for authorized_keys file 2022-06-11 19:17:40 +03:00
HansH111
19cfb22d30 add pubkey_info field to authstate structure 2022-03-13 17:37:44 +00:00
Matt Johnston
286b6b9f80 Remove unused cli_authinitialise 2020-12-03 21:19:19 +08:00
Matt Johnston
01cd1bd11f Increase MAX_USERNAME_LEN to 100 2019-03-20 23:47:25 +08:00
Matt Johnston
02ffdd09dc - Add adaptive authentication failure delay 
- Rework monotonic_now/gettime_wrapper and use clock_gettime on more platforms
 2018-11-05 23:36:34 +08:00
Matt Johnston
52adbb34c3 Wait to fail invalid usernames 2018-08-23 23:43:12 +08:00
Matt Johnston
7435369615 - Don't try to handle changed usernames 
- Avoid logging repeated failed username messages
 2018-02-26 22:07:18 +08:00
Francois Perrad
89e64c631e Pointer parameter could be declared as pointing to const 2017-08-19 17:16:13 +02:00
Matt Johnston
32a28d0d9c Convert #ifdef to #if, other build changes 2016-05-04 15:33:40 +02:00
Francois Perrad
3e20c442de fix empty C prototypes 2016-03-16 22:41:20 +08:00
Francois Perrad
edea73b1f8 add parentheses to macro 2016-03-16 22:41:19 +08:00
Gaël PORTAY
224b16b247 Fix pointer differ in signess warnings [-Werror=pointer-sign] 2015-05-05 20:39:13 +02:00
Thorsten Horstmann
fdb7ffa864 DROPBEAR_ prefix for include guards to avoid collisions 2015-02-24 20:43:01 +08:00
Matt Johnston
6d2d3669f3 Make keepalive handling more robust, this should now match what OpenSSH does 2014-08-19 23:08:56 +08:00
Matt Johnston
142a0f8a83 Send PAM error messages as a banner messages 
Patch from Martin Donnelly, modified.
 2013-10-03 23:04:11 +08:00
Matt Johnston
ff2aa20565 Be a bit more careful about when we want to use CLI_AUTH_IMMEDIATE 
Only use it if we have pubkeys to try, or we have $DROPBEAR_PASSWORD set
 2013-04-02 00:11:53 +08:00
Matt Johnston
aec23e5f79 - Fix use-after-free if multiple command requests were sent. Move 
the original_command into chansess struct since that makes more sense
 2011-12-04 05:31:25 +08:00
Matt Johnston
4b1f9e50f2 - set $SSH_ORIGINAL_COMMAND if a command is forced, and log it 
if LOG_COMMANDS is set

--HG--
extra : convert_revision : d9e8aa0ecbe7607285fa4f96f0d6f9b1523719d8
 2009-08-26 14:09:22 +00:00
Matt Johnston
8a19a049b2 - Client auth using an agent's key works. Still need to implement client 
agent forwarding.

--HG--
branch : agent-client
extra : convert_revision : 276cf5e82276b6c879d246ba64739ec6868f5150
 2009-07-06 14:02:45 +00:00
Matt Johnston
c742137dc8 New standard linked list to use, rather than adhoc SignKeyList or TCPFwdList 
--HG--
branch : agent-client
extra : convert_revision : 5465e639cc3f5ee0c6c55f0de6e7b6d5a8769da3
 2009-07-06 12:59:13 +00:00
Matt Johnston
c6582dbe37 Make it compile, update for changes in channel structure. 
--HG--
branch : agent-client
extra : convert_revision : 84676a98a0848224078a716b1292744a34e9d80c
 2009-07-01 04:53:17 +00:00
Matt Johnston
709a3e75cf propagate from branch 'au.asn.ucc.matt.dropbear' (head 899a8851a5edf840b2f7925bcc26ffe99dcac54d) 
to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 6bbab8364de17bd9ecb1dee5ffb796e48c0380d2)

--HG--
branch : agent-client
extra : convert_revision : d39a49137cc36b624768d4e79e564141dde8d355
 2009-07-01 04:16:32 +00:00
Matt Johnston
d6441f4397 - Make -i and -W pass through multihop arguments 
--HG--
extra : convert_revision : 70c64073c9ec07b4dfb54ee60e39cec2bd8c6910
 2009-06-12 14:58:43 +00:00
Matt Johnston
e674c73ee6 propagate from branch 'au.asn.ucc.matt.dropbear' (head 4fb35083f0f46ea667e7043e7d4314aecd3df46c) 
to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 833d0adef6cdbf43ea75283524c665e70b0ee1ee)

--HG--
branch : agent-client
extra : convert_revision : 6bbab8364de17bd9ecb1dee5ffb796e48c0380d2
 2008-09-23 16:05:04 +00:00
Matt Johnston
31fa5e605b - Rework pubkey options to be more careful about buffer lengths. Needs review. 
--HG--
branch : pubkey-options
extra : convert_revision : 537a6ebebb46424b967ffe787f0f8560e5f447e8
 2008-09-12 17:23:56 +00:00
Matt Johnston
c0ce2a6a97 * Patch from Frédéric Moulins adding options to authorized_keys. 
Needs review.

--HG--
branch : pubkey-options
extra : convert_revision : 26872f944d79ddacff1070aab32115a6d726392c
 2008-09-08 15:14:02 +00:00
Matt Johnston
bb0548b3b0 Make a copy of passwd fields since getpwnam()'s retval isn't safe to keep 
--HG--
extra : convert_revision : 295b11312e327fe6c4f33512674ea4a1a9790344
 2008-01-13 03:55:59 +00:00
Matt Johnston
e41452afeb propagate from branch 'au.asn.ucc.matt.dropbear' (head 8a7db1e2fdc5636abb338adb636babc32f465739) 
to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head d82c25da2f7e4fb6da510d806c64344e80bb270d)

--HG--
branch : agent-client
extra : convert_revision : 78d02301ae8310efa2639f15da0ea62dea110e4b
 2007-08-16 13:34:37 +00:00
Matt Johnston
d0537c7506 Make the dbclient password prompt more useful 
--HG--
extra : convert_revision : 3bcfb35f7a6065dafbd695d943b95d64efff1c99
 2006-06-12 14:41:32 +00:00
Matt Johnston
f7caf6f5c6 propagate from branch 'au.asn.ucc.matt.dropbear' (head 0501e6f661b5415eb76f3b312d183c3adfbfb712) 
to branch 'au.asn.ucc.matt.dropbear.cli-agent' (head 01038174ec27245b51bd43a66c01ad930880f67b)

--HG--
branch : agent-client
extra : convert_revision : 12b2f59db65e7339d340e95ac67d6d9ddb193c2b
 2006-03-21 16:20:59 +00:00
Matt Johnston
fd0f873a36 Cancel a dbclient password prompt if the user presses ctrl-c. 
Enter still has to be pressed since glibc blocks ctrl-c in getpass()

--HG--
extra : convert_revision : 1c8128fba89431f2460dd5914f0614850d529b76
 2006-01-15 06:43:24 +00:00
Matt Johnston
876b7081d8 added keyboard-interactive client support 
--HG--
extra : convert_revision : 3df738e42f4fc8b7f0f3ff9ca767386f54edb1ea
 2005-09-20 17:35:21 +00:00
Matt Johnston
cb2cb15916 Log when pubkey auth fails because of bad pubkey perms/ownership 
--HG--
extra : convert_revision : 43e1a0c8365776577acd814d708027fcddcb02ef
 2005-09-20 08:59:46 +00:00
Matt Johnston
e444f0cfe6 - progress towards client agent forwarding 
(incomplete and does not compile)

--HG--
branch : agent-client
extra : convert_revision : 01038174ec27245b51bd43a66c01ad930880f67b
 2005-07-18 14:32:52 +00:00
Matt Johnston
fb1fd7f6f4 rename PubkeyList to SignKeyList for clarity 
--HG--
extra : convert_revision : 838e354daf3ae9a1dce710526c37fec9859ee6d1
 2005-07-08 11:32:09 +00:00
Matt Johnston
3238bed9c9 svr-authpam code merged and works. needs tidying a log 
--HG--
branch : authpam
extra : convert_revision : abeb2807b88fbd8b95d92b760a209a0816cbaea9
 2004-08-08 16:57:37 +00:00
Matt Johnston
0bbe2fa862 - client pubkey auth works 
- rearrange the runopts code for client and server (hostkey reading is needed
  by both (if the client is doing pubkey auth. otherwise....))

--HG--
extra : convert_revision : 5420858803bfff1e27dfe7fa877ba6fdd747e0c5
 2004-08-06 16:18:01 +00:00
Matt Johnston
7cdad3c200 Pubkey auth is mostly there for the client. Something strange with 
remote hostkey verification though.

--HG--
extra : convert_revision : 8635abe49e499e16d44a8ee79d474dc35257e9cc
 2004-08-03 17:26:56 +00:00
Matt Johnston
9c91ea1caf Banner printing 
--HG--
extra : convert_revision : a38558944355bb9b4c8e9e22147c1f2d8d327775
 2004-08-02 04:25:05 +00:00
Matt Johnston
a76b1ba068 Progressing client support 
--HG--
extra : convert_revision : 48946be1cef774d1c33b0f78689962b18720c627
 2004-07-27 16:30:46 +00:00
Matt Johnston
674a607488 Makefile.in contains updated files required 
--HG--
extra : convert_revision : cc8a8c49dc70e632c352853a39801089b08149be
 2004-06-01 02:46:09 +00:00