ClearML/dropbear
1
0
Fork 0
mirror of https://github.com/clearml/dropbear synced 2025-02-07 13:21:15 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,157 Commits 5 Branches 63 Tags 14 MiB
d6daad29fc
Commit Graph

37 Commits

Author SHA1 Message Date
Francois Perrad
23ac7f56fa refactor indentation with hard tab 2015-12-31 16:00:23 +01:00
Mike Frysinger
93c54fe6f6 avoid getpass when not used 
some systems (like android's bionic) do not provide getpass.  you can
disable ENABLE_CLI_PASSWORD_AUTH & ENABLE_CLI_INTERACT_AUTH to avoid
its use (and rely on pubkey auth), but the link still fails because
the support file calls getpass.  do not define this func if both of
those auth methods are not used.
 2015-10-21 22:39:55 +08:00
Matt Johnston
1a4db21fe4 buf_getstring and buf_putstring now use non-unsigned char* 2015-06-04 23:08:50 +08:00
Gaël PORTAY
bbaeb917ff Turn banner, methods and tok local variable into char * 2015-05-05 20:39:14 +02:00
Gaël PORTAY
224b16b247 Fix pointer differ in signess warnings [-Werror=pointer-sign] 2015-05-05 20:39:13 +02:00
Matt Johnston
188ec1e258 Fix pubkey auth if the first key presented fails (infinite loop of 
auth requests). Regresssion in ff597bf2cfb0
 2014-04-23 16:22:50 +08:00
Matt Johnston
fa2d843403 Disable immediate auth for delayed-zlib mode 2014-02-15 21:23:41 +08:00
Matt Johnston
61cecbb337 DROPBEAR_CLI_AUTH_IMMEDIATE fixed, now enabled by default 2014-01-17 21:39:27 +08:00
Matt Johnston
ff2aa20565 Be a bit more careful about when we want to use CLI_AUTH_IMMEDIATE 
Only use it if we have pubkeys to try, or we have $DROPBEAR_PASSWORD set
 2013-04-02 00:11:53 +08:00
Matt Johnston
5af0d33164 Try password before interactive - bit of a hack 2013-04-01 22:26:24 +08:00
Matt Johnston
484516da51 Send an auth packet straight away, save another roundtrip 
This needs a bit of testing to make sure it doesn't have side-effects.
 2013-03-31 23:48:25 +08:00
Matt Johnston
e719a9ef6f - Only request "none" cipher after auth has succeeded 
--HG--
branch : insecure-nocrypto
 2012-05-17 20:52:57 +08:00
Matt Johnston
a02d38072a Add ALLOW_NONE_PASSWORD_AUTH option 
--HG--
branch : insecure-nocrypto
 2012-05-17 08:33:11 +08:00
Matt Johnston
f40ed8bad7 Update insecure-nocrypto to current head 
--HG--
branch : insecure-nocrypto
 2012-05-16 22:54:51 +08:00
Matt Johnston
8a19a049b2 - Client auth using an agent's key works. Still need to implement client 
agent forwarding.

--HG--
branch : agent-client
extra : convert_revision : 276cf5e82276b6c879d246ba64739ec6868f5150
 2009-07-06 14:02:45 +00:00
Matt Johnston
cb82c6e3e0 - Print banner to stderr. Probably the right way, and avoids 
bad interactions with multihop or netcat-alike mode.

--HG--
extra : convert_revision : 899a8851a5edf840b2f7925bcc26ffe99dcac54d
 2009-06-16 15:22:33 +00:00
Matt Johnston
800810a181 propagate from branch 'au.asn.ucc.matt.dropbear' (head cdcc3c729e29544e8b98a408e2dc60e4483dfd2a) 
to branch 'au.asn.ucc.matt.dropbear.insecure-nocrypto' (head 0ca38a1cf349f7426ac9de34ebe4c3e3735effab)

--HG--
branch : insecure-nocrypto
extra : convert_revision : dbb093e087a68abf2e54ab0b711af70771ddb29d
 2008-11-06 13:16:55 +00:00
Matt Johnston
049fcf1ac5 Add support for zlib@openssh.com delayed compression. 
Are still advertising 'zlib' for the server, need to allow
delayed-only as an option

--HG--
extra : convert_revision : 319df675cc3c9b35a10b7d8357c94f33fdab1a46
 2008-09-29 02:23:04 +00:00
Matt Johnston
a4130263bd Allow reading dbclient password from an environment var 
--HG--
extra : convert_revision : 9a5277c058af96e8fb7a3ade558dd1aeeafa1d3a
 2007-03-17 06:30:11 +00:00
Matt Johnston
d0537c7506 Make the dbclient password prompt more useful 
--HG--
extra : convert_revision : 3bcfb35f7a6065dafbd695d943b95d64efff1c99
 2006-06-12 14:41:32 +00:00
Matt Johnston
1e03393b68 Some cleanups/fixes for various TRACE statements 
--HG--
extra : convert_revision : 84eb6fedc6df0666f8053b9018bf16635dbfb257
 2006-03-25 12:57:37 +00:00
Matt Johnston
ba869e5601 propagate from branch 'au.asn.ucc.matt.dropbear' (head 7ad1775ed65e75dbece27fe6b65bf1a234db386a) 
to branch 'au.asn.ucc.matt.dropbear.insecure-nocrypto' (head 88ed2b94d9bfec9a4f661caf592ed01da5eb3b6a)

--HG--
branch : insecure-nocrypto
extra : convert_revision : 2b954d406290e6a2be8eb4a262d3675ac95ac544
 2006-03-10 06:30:52 +00:00
Matt Johnston
fd0f873a36 Cancel a dbclient password prompt if the user presses ctrl-c. 
Enter still has to be pressed since glibc blocks ctrl-c in getpass()

--HG--
extra : convert_revision : 1c8128fba89431f2460dd5914f0614850d529b76
 2006-01-15 06:43:24 +00:00
Matt Johnston
1632bd4a18 - a hack for grahame to run dropbear with "none" cipher. 
DO NOT USE IF YOU DON'T KNOW THE CONSEQUENCES
  Here is your noose. Use it wisely.

--HG--
branch : insecure-nocrypto
extra : convert_revision : 88ed2b94d9bfec9a4f661caf592ed01da5eb3b6a
 2005-09-23 16:29:19 +00:00
Matt Johnston
876b7081d8 added keyboard-interactive client support 
--HG--
extra : convert_revision : 3df738e42f4fc8b7f0f3ff9ca767386f54edb1ea
 2005-09-20 17:35:21 +00:00
Matt Johnston
f45eafe342 * fix longstanding bug with connections being closed on failure to 
connect to auth socket (server)
* differentiate between get_byte and get_bool
* get rid of some // comments
* general tidying

--HG--
extra : convert_revision : fb8d188ce33b6b45804a5ce51b9f601f83bdf3d7
 2005-03-13 13:58:14 +00:00
Matt Johnston
8c1a429c44 Fixed DEBUG_TRACE macro so that we don't get semicolons left about the place 
--HG--
extra : convert_revision : d928bc851e32be7bd429bf7504b148c0e4bf7e2f
 2005-01-02 20:25:56 +00:00
Matt Johnston
15fb479e94 Leak found with MallocDebug - it's kinda useful 
--HG--
extra : convert_revision : 43fdd8b10616b9d5e11f677d16763c7a876a5ec3
 2004-08-30 15:02:45 +00:00
Matt Johnston
703c9a7370 License boilerplate etc, add Mihnea as an author to some of the files 
--HG--
extra : convert_revision : 75c02f80c4ed25bd4697e7f17ffac6eded54c148
 2004-08-14 17:54:20 +00:00
Matt Johnston
d7575f95f0 cleaning up the pubkey defines 
--HG--
extra : convert_revision : 149ce7a9a9cc5fe670994d6789b40be49895c595
 2004-08-12 14:56:22 +00:00
Matt Johnston
7cdad3c200 Pubkey auth is mostly there for the client. Something strange with 
remote hostkey verification though.

--HG--
extra : convert_revision : 8635abe49e499e16d44a8ee79d474dc35257e9cc
 2004-08-03 17:26:56 +00:00
Matt Johnston
9c91ea1caf Banner printing 
--HG--
extra : convert_revision : a38558944355bb9b4c8e9e22147c1f2d8d327775
 2004-08-02 04:25:05 +00:00
Matt Johnston
051b7454f8 - Added terminal mode handling etc for the client, and window change 
- Refactored the terminal-mode handling for the server
- Improved session closing for the client

--HG--
extra : convert_revision : 9d19b4f22c39798af5f3f24c2022f8caec4919e8
 2004-08-01 08:54:01 +00:00
Matt Johnston
b601f68cda we're nearly there yet 
--HG--
extra : convert_revision : ab7e63234f2c134c2321406598ae67038e0ca576
 2004-07-30 03:02:19 +00:00
Matt Johnston
e1491b8ec6 set the isserver flag (oops) 
fix password auth for the server

--HG--
extra : convert_revision : 234eb604aabaef9ed0dd496ff8db8ecc212ca18c
 2004-07-29 02:19:03 +00:00
Matt Johnston
2d82f73484 Client mostly works up to password auth 
Need to rework algo-choosing etc, since server is now broken.

--HG--
extra : convert_revision : 458dc4eed0e885e7c91633d4781d3348213a0e19
 2004-07-28 16:44:16 +00:00
Matt Johnston
a76b1ba068 Progressing client support 
--HG--
extra : convert_revision : 48946be1cef774d1c33b0f78689962b18720c627
 2004-07-27 16:30:46 +00:00