Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / openssh / 5a5c2b9063fc3d7315424702b01527ccb0d4c0c9
commit5a5c2b9063fc3d7315424702b01527ccb0d4c0c9[log] [tgz]
authorDamien Miller <djm@mindrot.org>Tue Jul 31 12:21:34 2012 +1000
committerDamien Miller <djm@mindrot.org>Tue Jul 31 12:21:34 2012 +1000
tree6bee6b7c37627e0c40544783400285c51d656348
parent709a1e90d9cfb7a0e8cdf57fa967d163c010a6bb [diff]
   - djm@cvs.openbsd.org 2012/07/10 02:19:15
     [servconf.c servconf.h sshd.c sshd_config]
     Turn on systrace sandboxing of pre-auth sshd by default for new installs
     by shipping a config that overrides the current UsePrivilegeSeparation=yes
     default. Make it easier to flip the default in the future by adding too.
5 files changed
tree: 6bee6b7c37627e0c40544783400285c51d656348
  1. contrib/
  2. openbsd-compat/
  3. regress/
  4. scard/
  5. .cvsignore
  6. aclocal.m4
  7. acss.c
  8. acss.h
  9. addrmatch.c
  10. atomicio.c
  11. atomicio.h
  12. audit-bsm.c
  13. audit-linux.c
  14. audit.c
  15. audit.h
  16. auth-bsdauth.c
  17. auth-chall.c
  18. auth-krb5.c
  19. auth-options.c
  20. auth-options.h
  21. auth-pam.c
  22. auth-pam.h
  23. auth-passwd.c
  24. auth-rh-rsa.c
  25. auth-rhosts.c
  26. auth-rsa.c
  27. auth-shadow.c
  28. auth-sia.c
  29. auth-sia.h
  30. auth-skey.c
  31. auth.c
  32. auth.h
  33. auth1.c
  34. auth2-chall.c
  35. auth2-gss.c
  36. auth2-hostbased.c
  37. auth2-jpake.c
  38. auth2-kbdint.c
  39. auth2-none.c
  40. auth2-passwd.c
  41. auth2-pubkey.c
  42. auth2.c
  43. authfd.c
  44. authfd.h
  45. authfile.c
  46. authfile.h
  47. bufaux.c
  48. bufbn.c
  49. bufec.c
  50. buffer.c
  51. buffer.h
  52. buildpkg.sh.in
  53. canohost.c
  54. canohost.h
  55. ChangeLog
  56. channels.c
  57. channels.h
  58. cipher-3des1.c
  59. cipher-acss.c
  60. cipher-aes.c
  61. cipher-bf1.c
  62. cipher-ctr.c
  63. cipher.c
  64. cipher.h
  65. cleanup.c
  66. clientloop.c
  67. clientloop.h
  68. compat.c
  69. compat.h
  70. compress.c
  71. compress.h
  72. config.guess
  73. config.sub
  74. configure.ac
  75. crc32.c
  76. crc32.h
  77. CREDITS
  78. deattack.c
  79. deattack.h
  80. defines.h
  81. dh.c
  82. dh.h
  83. dispatch.c
  84. dispatch.h
  85. dns.c
  86. dns.h
  87. entropy.c
  88. entropy.h
  89. fatal.c
  90. fixpaths
  91. fixprogs
  92. groupaccess.c
  93. groupaccess.h
  94. gss-genr.c
  95. gss-serv-krb5.c
  96. gss-serv.c
  97. hostfile.c
  98. hostfile.h
  99. includes.h
  100. INSTALL
  101. install-sh
  102. jpake.c
  103. jpake.h
  104. kex.c
  105. kex.h
  106. kexdh.c
  107. kexdhc.c
  108. kexdhs.c
  109. kexecdh.c
  110. kexecdhc.c
  111. kexecdhs.c
  112. kexgex.c
  113. kexgexc.c
  114. kexgexs.c
  115. key.c
  116. key.h
  117. LICENCE
  118. log.c
  119. log.h
  120. loginrec.c
  121. loginrec.h
  122. logintest.c
  123. mac.c
  124. mac.h
  125. Makefile.in
  126. match.c
  127. match.h
  128. md-sha256.c
  129. md5crypt.c
  130. md5crypt.h
  131. mdoc2man.awk
  132. misc.c
  133. misc.h
  134. mkinstalldirs
  135. moduli
  136. moduli.5
  137. moduli.c
  138. monitor.c
  139. monitor.h
  140. monitor_fdpass.c
  141. monitor_fdpass.h
  142. monitor_mm.c
  143. monitor_mm.h
  144. monitor_wrap.c
  145. monitor_wrap.h
  146. msg.c
  147. msg.h
  148. mux.c
  149. myproposal.h
  150. nchan.c
  151. nchan.ms
  152. nchan2.ms
  153. openssh.xml.in
  154. opensshd.init.in
  155. OVERVIEW
  156. packet.c
  157. packet.h
  158. pathnames.h
  159. pkcs11.h
  160. platform.c
  161. platform.h
  162. progressmeter.c
  163. progressmeter.h
  164. PROTOCOL
  165. PROTOCOL.agent
  166. PROTOCOL.certkeys
  167. PROTOCOL.mux
  168. readconf.c
  169. readconf.h
  170. README
  171. README.dns
  172. README.platform
  173. README.privsep
  174. README.tun
  175. readpass.c
  176. rijndael.c
  177. rijndael.h
  178. roaming.h
  179. roaming_client.c
  180. roaming_common.c
  181. roaming_dummy.c
  182. roaming_serv.c
  183. rsa.c
  184. rsa.h
  185. sandbox-darwin.c
  186. sandbox-null.c
  187. sandbox-rlimit.c
  188. sandbox-seccomp-filter.c
  189. sandbox-systrace.c
  190. schnorr.c
  191. schnorr.h
  192. scp.1
  193. scp.c
  194. servconf.c
  195. servconf.h
  196. serverloop.c
  197. serverloop.h
  198. session.c
  199. session.h
  200. sftp-client.c
  201. sftp-client.h
  202. sftp-common.c
  203. sftp-common.h
  204. sftp-glob.c
  205. sftp-server-main.c
  206. sftp-server.8
  207. sftp-server.c
  208. sftp.1
  209. sftp.c
  210. sftp.h
  211. ssh-add.1
  212. ssh-add.c
  213. ssh-agent.1
  214. ssh-agent.c
  215. ssh-dss.c
  216. ssh-ecdsa.c
  217. ssh-gss.h
  218. ssh-keygen.1
  219. ssh-keygen.c
  220. ssh-keyscan.1
  221. ssh-keyscan.c
  222. ssh-keysign.8
  223. ssh-keysign.c
  224. ssh-pkcs11-client.c
  225. ssh-pkcs11-helper.8
  226. ssh-pkcs11-helper.c
  227. ssh-pkcs11.c
  228. ssh-pkcs11.h
  229. ssh-rsa.c
  230. ssh-sandbox.h
  231. ssh.1
  232. ssh.c
  233. ssh.h
  234. ssh1.h
  235. ssh2.h
  236. ssh_config
  237. ssh_config.5
  238. sshconnect.c
  239. sshconnect.h
  240. sshconnect1.c
  241. sshconnect2.c
  242. sshd.8
  243. sshd.c
  244. sshd_config
  245. sshd_config.5
  246. sshlogin.c
  247. sshlogin.h
  248. sshpty.c
  249. sshpty.h
  250. sshtty.c
  251. survey.sh.in
  252. TODO
  253. ttymodes.c
  254. ttymodes.h
  255. uidswap.c
  256. uidswap.h
  257. umac.c
  258. umac.h
  259. uuencode.c
  260. uuencode.h
  261. version.h
  262. xmalloc.c
  263. xmalloc.h