pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/security/openssh

Module Name:    pkgsrc
Committed By:   martti
Date:           Fri Jun 11 20:41:42 UTC 2010

Modified Files:
        pkgsrc/security/openssh: Makefile PLIST distinfo
        pkgsrc/security/openssh/patches: patch-aa patch-ab patch-ad patch-ag
            patch-ah patch-ak patch-an patch-ao patch-av

Log Message:
Updated security/openssh to 5.5.1

Lots of changes, including

 * After a transition period of about 10 years, this release disables
   SSH protocol 1 by default. Clients and servers that need to use the
   legacy protocol must explicitly enable it in ssh_config / sshd_config
   or on the command-line.

 * Remove the libsectok/OpenSC-based smartcard code and add support for
   PKCS#11 tokens. This support is automatically enabled on all
   platforms that support dlopen(3) and was inspired by patches written
   by Alon Bar-Lev. Details in the ssh(1) and ssh-add(1) manpages.

 * Add support for certificate authentication of users and hosts using a
   new, minimal OpenSSH certificate format (not X.509). Certificates
   contain a public key, identity information and some validity
   constraints and are signed with a standard SSH public key using
   ssh-keygen(1). CA keys may be marked as trusted in authorized_keys
   or via a TrustedUserCAKeys option in sshd_config(5) (for user
   authentication), or in known_hosts (for host authentication).

   Documentation for certificate support may be found in ssh-keygen(1),
   sshd(8) and ssh(1) and a description of the protocol extensions in

 * Added a 'netcat mode' to ssh(1): "ssh -W host:port ..." This connects
   stdio on the client to a single port forward on the server. This
   allows, for example, using ssh as a ProxyCommand to route connections
   via intermediate servers. bz#1618

To generate a diff of this commit:
cvs rdiff -u -r1.196 -r1.197 pkgsrc/security/openssh/Makefile
cvs rdiff -u -r1.13 -r1.14 pkgsrc/security/openssh/PLIST
cvs rdiff -u -r1.75 -r1.76 pkgsrc/security/openssh/distinfo
cvs rdiff -u -r1.45 -r1.46 pkgsrc/security/openssh/patches/patch-aa
cvs rdiff -u -r1.27 -r1.28 pkgsrc/security/openssh/patches/patch-ab \
cvs rdiff -u -r1.13 -r1.14 pkgsrc/security/openssh/patches/patch-ad
cvs rdiff -u -r1.12 -r1.13 pkgsrc/security/openssh/patches/patch-ag
cvs rdiff -u -r1.9 -r1.10 pkgsrc/security/openssh/patches/patch-ak
cvs rdiff -u -r1.10 -r1.11 pkgsrc/security/openssh/patches/patch-an
cvs rdiff -u -r1.15 -r1.16 pkgsrc/security/openssh/patches/patch-ao
cvs rdiff -u -r1.8 -r1.9 pkgsrc/security/openssh/patches/patch-av

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Home | Main Index | Thread Index | Old Index