-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I have just uploaded 1.2.1pre22 to:
http://violet.ibs.com.au/openssh/files/
This release consists of portability fixes and cleanups. It also
resolves two issues which may have caused security problems
- If you OS header files did not define PATH_STDPATH, then an
unsafe path was used by default (it contained an implicit '.').
Thanks to Jim Knoble for pointing this out and supplying a fix.
- PermitEmptyPassword was being ignored for PAM systems.
An upgrade is therefore recommended.
This release also includes Andre Lucas' fixpaths perl script which
will substitute the correct paths into the manpages at install time.
Also included is peliminary Irix support. I have managed to compile
it under Irix 5.2, but was not able to run it (my perl install is
too broken to run EGD). lastlog support is disabled under Irix
because it uses a strange directory based lastlog which I cannot find
documentation on.
I am interested in hearing success or failure stories from users of
Solaris, HPUX, AIX, Irix, NetBSD and older Linux variants.
ChangeLog:
19991228
- Replacement for getpagesize() for systems which lack it
- NetBSD login.c compile fix from David Rankin
<drankin@bohemians.lexington.ky.us>
- Fully set ut_tv if present in utmp or utmpx
- Portability fixes for Irix 5.3 (now compiles OK!)
- autoconf and other misc cleanups
19991227
- Automatically correct paths in manpages and configuration files. Patch
and script from Andre Lucas <andre.lucas@dial.pipex.com>
- Removed credits from README to CREDITS file, updated.
- Added --with-default-path to specify custom path for server
- Removed #ifdef trickery from acconfig.h into defines.h
- PAM bugfix. PermitEmptyPassword was being ignored.
- Fixed PAM config files to allow empty passwords if server does.
- Explained spurious PAM auth warning workaround in UPGRADING
- Use last few chars of tty line as ut_id
- New SuSE RPM spec file from Chris Saia <csaia@wtower.com>
- OpenBSD CVS updates:
- [packet.h auth-rhosts.c]
check format string for packet_disconnect and packet_send_debug, too
- [channels.c]
use packet_get_maxsize for channels. consistence.
19991226
- Fixed implicit '.' in default path, report from Jim Knoble
<jmknoble@pobox.com>
- Redhat RPM spec fixes from Jim Knoble <jmknoble@pobox.com>
Regards,
Damien Miller
- --
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE4aEHformJ9RG1dI8RAsy6AJ9mRwol+KxAymF6eE2m/PouqUWqkwCgxh8K
vHZbW8K4chmupbT9p6s7D7o=
=suuE
-----END PGP SIGNATURE-----
Hash: SHA1
I have just uploaded 1.2.1pre22 to:
http://violet.ibs.com.au/openssh/files/
This release consists of portability fixes and cleanups. It also
resolves two issues which may have caused security problems
- If you OS header files did not define PATH_STDPATH, then an
unsafe path was used by default (it contained an implicit '.').
Thanks to Jim Knoble for pointing this out and supplying a fix.
- PermitEmptyPassword was being ignored for PAM systems.
An upgrade is therefore recommended.
This release also includes Andre Lucas' fixpaths perl script which
will substitute the correct paths into the manpages at install time.
Also included is peliminary Irix support. I have managed to compile
it under Irix 5.2, but was not able to run it (my perl install is
too broken to run EGD). lastlog support is disabled under Irix
because it uses a strange directory based lastlog which I cannot find
documentation on.
I am interested in hearing success or failure stories from users of
Solaris, HPUX, AIX, Irix, NetBSD and older Linux variants.
ChangeLog:
19991228
- Replacement for getpagesize() for systems which lack it
- NetBSD login.c compile fix from David Rankin
<drankin@bohemians.lexington.ky.us>
- Fully set ut_tv if present in utmp or utmpx
- Portability fixes for Irix 5.3 (now compiles OK!)
- autoconf and other misc cleanups
19991227
- Automatically correct paths in manpages and configuration files. Patch
and script from Andre Lucas <andre.lucas@dial.pipex.com>
- Removed credits from README to CREDITS file, updated.
- Added --with-default-path to specify custom path for server
- Removed #ifdef trickery from acconfig.h into defines.h
- PAM bugfix. PermitEmptyPassword was being ignored.
- Fixed PAM config files to allow empty passwords if server does.
- Explained spurious PAM auth warning workaround in UPGRADING
- Use last few chars of tty line as ut_id
- New SuSE RPM spec file from Chris Saia <csaia@wtower.com>
- OpenBSD CVS updates:
- [packet.h auth-rhosts.c]
check format string for packet_disconnect and packet_send_debug, too
- [channels.c]
use packet_get_maxsize for channels. consistence.
19991226
- Fixed implicit '.' in default path, report from Jim Knoble
<jmknoble@pobox.com>
- Redhat RPM spec fixes from Jim Knoble <jmknoble@pobox.com>
Regards,
Damien Miller
- --
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm@mindrot.org (home) -or- djm@ibs.com.au (work)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE4aEHformJ9RG1dI8RAsy6AJ9mRwol+KxAymF6eE2m/PouqUWqkwCgxh8K
vHZbW8K4chmupbT9p6s7D7o=
=suuE
-----END PGP SIGNATURE-----