9fdba25e04
openssh: if we don't generate a dsa key we shouldn't look for it
...
The earlier commit ea119211b2philipp@redfish-solutions.com >
Signed-off-by: Daniel Golle <daniel@makrotopia.org >
2017-06-05 18:22:04 +02:00
d96c092a00
Revert "The earlier commit ea119211b2 removed 'dsa' as one of the ssh_host_*_key"
...
The author (@pprindeville) of the original commit noted that the wrong
commit was picked, see
https://github.com/openwrt/packages/commit/325b7d2cd2d6e9d4903c6e7628c7c9ae0ddab564#commitcomment-22387528
"Err... looks like the wrong fix got committed. I was hoping that this
commit d902e5d would have gone in instead."
This reverts commit 325b7d2cd2daniel@makrotopia.org >
2017-06-05 18:22:03 +02:00
325b7d2cd2
The earlier commit ea119211b2 removed 'dsa' as one of the ssh_host_*_key
...
types that got generated. Problem was that it didn't remove that key
as one of the paths that the server looks for by default. As a
consequence, your log file might fill up with messages like:
2017-06-01T15:43:07-06:00 openwrt sshd[31929]: error: Could not load host key: /etc/ssh/ssh_host_dsa_key
The patch is forunately trivial. Don't set the path for the dsa
key file in the server configuration.
Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com >
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2017-06-03 01:04:27 +02:00
9be7653a3a
openssh: update to 7.5p1, remove unneeded patches
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2017-03-21 23:30:54 +01:00
32012c6274
openssh: Fix ssl-engine support
...
Signed-off-by: Martin Schiller <ms@dev.tdt.de >
2017-02-27 09:05:30 +01:00
9e269e39c3
net/openssh: Offload main site
...
Add a few mirrors in-front of main site for offloading
Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net >
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2017-01-11 00:58:26 +01:00
89b8be4135
openssh: update to 7.4p1
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2016-12-22 00:48:51 +01:00
afb706d146
openssh: Unregister the KEXINIT handler after message has been
...
received. Otherwise an unauthenticated peer can repeat the KEXINIT and cause
allocation of up to 128MB -- until the connection is closed. Reported by
shilei-c at 360.cn
https://github.com/openssh/openssh-portable/commit/ec165c392ca54317dbe3064a8c200de6531e89ad
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2016-10-17 21:26:26 +02:00
c67b05b269
openssh: move inbound NEWKEYS handling to kex layer; otherwise early NEWKEYS causes NULL deref
...
see: https://anongit.mindrot.org/openssh.git/commit/?id=28652bca29046f62c7045e933e6b931de1d16737
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2016-10-03 21:38:15 +02:00
7ad9eb6703
openssh: update to 7.3p1
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2016-08-09 18:58:22 +02:00
1c729d723d
openssh: update to 7.2p2
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2016-03-11 16:52:04 +01:00
0cc876bc65
openssh: v7.2p1
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2016-03-06 22:42:27 +01:00
fab13041b3
openssh: update to 7.1p2
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2016-01-15 21:23:18 +01:00
ea119211b2
openssh: remove dsa and add ecdsa + ed25519 to initial keygen.
...
Signed-off by: Rosen Penev <rosenp@gmail.com >
2015-11-27 20:03:47 -08:00
d199f2c038
openssh: update to 7.1p1
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2015-08-26 18:58:14 +02:00
e0ac428907
openssh: update to 6.9p1
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2015-07-18 08:53:39 +02:00
8137ce26fd
openssh: strip openssh-sftp-server dependencies again
...
Reapply 99c6c3d830olliemail27@gmail.com >
2015-03-23 16:20:37 +01:00
e996c1cc36
openssh: remove optional dependency on libssp
...
Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be >
2015-03-20 17:46:37 +01:00
9322b6e80b
openssh: update to 6.8p1
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2015-03-19 10:35:59 +01:00
1c6580d05d
openssh: provide an avahi service file
...
As discussed in #543 , we can announce the SFTP service via Avahi
when sftp-server is installed.
Signed-off-by: Michael Heimpold <mhei@heimpold.de >
2014-12-08 23:15:25 +01:00
ac7cd4c6e6
misc: correct typo in Makefiles for PKG_LICENSE_FILES
...
Signed-off-by: Ian Leonard <antonlacon@gmail.com >
2014-11-24 23:43:37 -08:00
30bdda47fb
openssh: update to 6.7p1
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2014-10-19 04:45:16 +02:00
0d260899aa
openssh,ntpd: move USERID to the server only as the client utils don't need a user/group
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2014-10-14 18:00:42 +02:00
d4042ec35e
generic userid: use the new USERID api
...
recent changes in trunk allow us to specify the userid inside the openwrt makefile.
the info is stored int he meta data of the IPK contorl file and users are generated
by the new generic postinst trigger.
Signed-off-by: John Crispin <blogic@openwrt.org >
2014-10-08 03:45:30 +02:00
9f7c18af14
Add ISC/BSD to PKG_LICENSE_*
2014-08-08 16:41:38 -04:00
5ae06b550b
Update PKG_SOURCE_URL for OpenSSH
...
Remove broken mirrors, prefer HTTP over FTP.
2014-08-08 15:03:58 -04:00
35e2de06b0
openssh: fix openssh-sftp-server deps when SSP_SUPPORT
2014-06-26 13:53:19 -04:00
99c6c3d830
openssh: strip openssh-sftp-server dependencies, notably openssl
...
openssh-sftp-server is actually a tiny binary that has nearly no dependencies:
$ mips-openwrt-linux-objdump -x sftp-server | grep NEEDED
NEEDED libgcc_s.so.1
NEEDED libc.so.0
Stripping its DEPENDS allows building a system with SFTP support, without
pulling in OpenSSL.
2014-06-16 21:29:56 -04:00
fe62d146fa
openssh: import from packages
...
Signed-off-by: Peter Wagner <tripolar@gmx.at >
2014-06-16 11:45:34 +02:00
Philip Prindeville