Revisions of openssh
buildservice-autocommit
accepted
request 662751
from
Tomáš Chvátal (scarabeus_iv)
(revision 168)
Tomáš Chvátal (scarabeus_iv)
(revision 168)
baserev update by copy to link target
Tomáš Chvátal (scarabeus_iv)
accepted
request 662676
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 167)
- Added compatibility with SuSEfirewall2 [bsc#1118044]
buildservice-autocommit
accepted
request 657268
from
Tomáš Chvátal (scarabeus_iv)
(revision 166)
Tomáš Chvátal (scarabeus_iv)
(revision 166)
baserev update by copy to link target
Tomáš Chvátal (scarabeus_iv)
accepted
request 657258
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 165)
- Update the firewall rules in Tumbleweed
buildservice-autocommit
accepted
request 652023
from
Tomáš Chvátal (scarabeus_iv)
(revision 164)
Tomáš Chvátal (scarabeus_iv)
(revision 164)
baserev update by copy to link target
Tomáš Chvátal (scarabeus_iv)
accepted
request 651986
from
Vítězslav Čížek (vitezslav_cizek)
(revision 163)
- Fix build with openssl < 1.1.0 * add openssh-openssl-1_0_0-compatibility.patch
Tomáš Chvátal (scarabeus_iv)
accepted
request 645609
from
Cristian Rodríguez (elvigia)
(revision 162)
- openssh-7.7p1-audit.patch: fix sshd fatal error in mm_answer_keyverify: buffer error: incomplete message [bnc#1114008]
Tomáš Chvátal (scarabeus_iv)
accepted
request 644397
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 161)
* openssh-7.7p1-cavstest-ctr.patch * openssh-7.7p1-ldap.patch
buildservice-autocommit
accepted
request 642574
from
Tomáš Chvátal (scarabeus_iv)
(revision 160)
Tomáš Chvátal (scarabeus_iv)
(revision 160)
baserev update by copy to link target
Tomáš Chvátal (scarabeus_iv)
accepted
request 643660
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 159)
- Version update to 7.9p1
* No actual changes for the askpass
* See main package changelog for details
- Version update to 7.9p1
* ssh(1), sshd(8): the setting of the new CASignatureAlgorithms
option (see below) bans the use of DSA keys as certificate
authorities.
* sshd(8): the authentication success/failure log message has
changed format slightly. It now includes the certificate
fingerprint (previously it included only key ID and CA key
fingerprint).
* ssh(1), sshd(8): allow most port numbers to be specified using
service names from getservbyname(3) (typically /etc/services).
* sshd(8): support signalling sessions via the SSH protocol.
A limited subset of signals is supported and only for login or
command sessions (i.e. not subsystems) that were not subject to
a forced command via authorized_keys or sshd_config. bz#1424
* ssh(1): support "ssh -Q sig" to list supported signature options.
Also "ssh -Q help" to show the full set of supported queries.
* ssh(1), sshd(8): add a CASignatureAlgorithms option for the
client and server configs to allow control over which signature
formats are allowed for CAs to sign certificates. For example,
this allows banning CAs that sign certificates using the RSA-SHA1
signature algorithm.
* sshd(8), ssh-keygen(1): allow key revocation lists (KRLs) to
revoke keys specified by SHA256 hash.
* ssh-keygen(1): allow creation of key revocation lists directly
from base64-encoded SHA256 fingerprints. This supports revoking
keys using only the information contained in sshd(8)
Tomáš Chvátal (scarabeus_iv)
committed
(revision 158)
Tomáš Chvátal (scarabeus_iv)
committed
(revision 157)
- Mention upstream bugs on multiple local patches - Adjust service to not spam restart and reload only on fails
Tomáš Chvátal (scarabeus_iv)
committed
(revision 156)
- Update openssh-7.7p1-sftp_force_permissions.patch from the upstream bug, and mention the bug in the spec
Tomáš Chvátal (scarabeus_iv)
committed
(revision 155)
- Drop patch openssh-7.7p1-allow_root_password_login.patch
* There is no reason to set less secure default value, if
users need the behaviour they can still set it up themselves
- Drop patch openssh-7.7p1-blocksigalrm.patch
* We had a bug way in past about this but it was never reproduced
or even confirmed in the ticket, thus rather drop the patch
Tomáš Chvátal (scarabeus_iv)
committed
(revision 154)
- Disable ssh1 protocol support as neither RH or Debian enable this protocol by default anymore either.
Tomáš Chvátal (scarabeus_iv)
accepted
request 642573
from
Tomáš Chvátal (scarabeus_iv)
(revision 153)
- Update to 7.8p1:
* no actual changes for the askpass
- Format with spec-cleaner
- Respect cflags
- Use gtk3 rather than gtk2 which is being phased out
- Remove the mention of the SLE12 in the README.SUSE
- Install firewall rules only when really needed (<SLE15)
- Version update to 7.8p1:
* For most details see release notes file
* ssh-keygen(1): write OpenSSH format private keys by default
instead of using OpenSSL's PEM format
- Rebase patches to apply on 7.8p1 release:
* openssh-7.7p1-fips.patch
* openssh-7.7p1-cavstest-kdf.patch
* openssh-7.7p1-fips_checks.patch
* openssh-7.7p1-gssapi_key_exchange.patch
* openssh-7.7p1-audit.patch
* openssh-7.7p1-openssl_1.1.0.patch
* openssh-7.7p1-ldap.patch
* openssh-7.7p1-IPv6_X_forwarding.patch
* openssh-7.7p1-sftp_print_diagnostic_messages.patch
* openssh-7.7p1-disable_short_DH_parameters.patch
* openssh-7.7p1-hostname_changes_when_forwarding_X.patch
* openssh-7.7p1-pam_check_locks.patch
* openssh-7.7p1-seed-prng.patch
* openssh-7.7p1-systemd-notify.patch
* openssh-7.7p1-X11_trusted_forwarding.patch
- Dropped patches:
buildservice-autocommit
accepted
request 637027
from
Marcus Meissner (msmeissn)
(revision 152)
Marcus Meissner (msmeissn)
(revision 152)
baserev update by copy to link target
Marcus Meissner (msmeissn)
accepted
request 636347
from
Andreas Schwab (Andreas_Schwab)
(revision 151)
- seccomp_filter sandbox is not supported on ppc
buildservice-autocommit
accepted
request 631729
from
Ismail Dönmez (namtrac)
(revision 150)
Ismail Dönmez (namtrac)
(revision 150)
baserev update by copy to link target
Ismail Dönmez (namtrac)
accepted
request 631714
from
Tomáš Chvátal (scarabeus_iv)
(revision 149)
- Depend explicitly on zlib-devel, previously pulled in by openssl
Displaying revisions 101 - 120 of 268
