summaryrefslogtreecommitdiffhomepage
path: root/svr-authpubkeyoptions.c
AgeCommit message (Collapse)Author
2021-05-01Add "restrict" authorized_keys optionMatt Johnston
2020-06-26Don't choke on disabled authorized_keys(5) optionsGuilhem Moulin
As of 2020.79 X11 forwarding is disabled at build time, which could lock out users with authorized_keys(5) files containing ‘no-X11-forwarding’ options.
2020-03-14Don't log authorized_keys command= every timeMatt Johnston
2018-03-07fix leak in option handlingMatt Johnston
2018-03-06avoid leak of pubkey_optionsMatt Johnston
2018-02-16options: Complete the transition to numeric toggles (`#if')Michael Witten
For the sake of review, this commit alters only the code; the affiliated comments within the source files also need to be updated, but doing so now would obscure the operational changes that have been made here. * All on/off options have been switched to the numeric `#if' variant; that is the only way to make this `default_options.h.in' thing work in a reasonable manner. * There is now some very minor compile-time checking of the user's choice of options. * NO_FAST_EXPTMOD doesn't seem to be used, so it has been removed. * ENABLE_USER_ALGO_LIST was supposed to be renamed DROPBEAR_USER_ALGO_LIST, and this commit completes that work. * DROPBEAR_FUZZ seems to be a relatively new, as-yet undocumented option, which was added by the following commit: commit 6e0b539e9ca0b5628c6c5a3d118ad6a2e79e8039 Author: Matt Johnston <matt@ucc.asn.au> Date: Tue May 23 22:29:21 2017 +0800 split out checkpubkey_line() separately It has now been added to `sysoptions.h' and defined as `0' by default. * The configuration option `DROPBEAR_PASSWORD_ENV' is no longer listed in `default_options.h.in'; it is no longer meant to be set by the user, and is instead left to be defined in `sysoptions.h' (where it was already being defined) as merely the name of the environment variable in question: DROPBEAR_PASSWORD To enable or disable use of that environment variable, the user must now toggle `DROPBEAR_USE_DROPBEAR_PASSWORD'. * The sFTP support is now toggled by setting `DROPBEAR_SFTPSERVER', and the path of the sFTP server program is set independently through the usual SFTPSERVER_PATH.
2017-05-18merge 2017.75Matt Johnston
2017-05-10free forced_commandMatt Johnston
2016-05-04Convert #ifdef to #if, other build changesMatt Johnston
2015-08-07Fix segfault with restricted authorized_key files without forced commandGuilhem Moulin
2015-05-05Fix pointer differ in signess warnings [-Werror=pointer-sign]Gaël PORTAY
2012-03-26Fixed compilation with unset ENABLE_{SVR,CLI}_AGENTFWD.Andrey Mazo
Got rid of ENABLE_AGENTFWD macro.
2011-12-04- Fix use-after-free if multiple command requests were sent. MoveMatt Johnston
the original_command into chansess struct since that makes more sense
2011-02-23Improve capitalisation for all logged stringsMatt Johnston
--HG-- extra : convert_revision : 997e53cec7a9efb7413ac6e17b6be60a5597bd2e
2009-08-26- set $SSH_ORIGINAL_COMMAND if a command is forced, and log itMatt Johnston
if LOG_COMMANDS is set --HG-- extra : convert_revision : d9e8aa0ecbe7607285fa4f96f0d6f9b1523719d8
2008-09-29- Add Counter Mode supportMatt Johnston
--HG-- extra : convert_revision : 5225162bdf32d70b58b6d3ae375a290326c59f3a
2008-09-12- Rework pubkey options to be more careful about buffer lengths. Needs review.Matt Johnston
--HG-- branch : pubkey-options extra : convert_revision : 537a6ebebb46424b967ffe787f0f8560e5f447e8
2008-09-08* Patch from Frédéric Moulins adding options to authorized_keys.Matt Johnston
Needs review. --HG-- branch : pubkey-options extra : convert_revision : 26872f944d79ddacff1070aab32115a6d726392c
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-27 00:08:35 +0000