ubuntu/+source/openssh:ubuntu/precise

Last commit made on 2012-04-02
Get this branch:
git clone -b ubuntu/precise https://git.launchpad.net/ubuntu/+source/openssh
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/precise
Repository:
lp:ubuntu/+source/openssh

Recent commits

1df3333... by Colin Watson on 2012-04-02

Import patches-unapplied version 1:5.9p1-5ubuntu1 to ubuntu/precise

Imported using git-ubuntu import.

Changelog parent: a7ab0a248f719c14aeb65ada89a2459ff11a74af

New changelog entries:
  * Resynchronise with Debian. Remaining changes:
    - Add support for registering ConsoleKit sessions on login.
    - Drop openssh-blacklist and openssh-blacklist-extra to Suggests.
    - Convert to Upstart. The init script is still here for the benefit of
      people running sshd in chroots.
    - Install apport hook.
    - Add mention of ssh-keygen in ssh connect warning.
  * Sync up pkg-config variable used in configure's ConsoleKit test with
    that used for libedit.

a7ab0a2... by Colin Watson on 2012-04-02

Import patches-unapplied version 1:5.9p1-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 8d25441f86a7594bf6ebf41e13971538f34c27f8

New changelog entries:
  * Use dpkg-buildflags, including for hardening support; drop use of
    hardening-includes.
  * Fix cross-building:
    - Allow using a cross-architecture pkg-config.
    - Pass default LDFLAGS to contrib/Makefile.
    - Allow dh_strip to strip gnome-ssh-askpass, rather than calling
      'install -s'.

8d25441... by Colin Watson on 2012-03-19

Import patches-unapplied version 1:5.9p1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2866bed0df0cdd96a302ced62494437e59a4ca5f

New changelog entries:
  * Disable OpenSSL version check again, as its SONAME is sufficient
    nowadays (closes: #664383).

2866bed... by Colin Watson on 2012-02-24

Import patches-unapplied version 1:5.9p1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9d86f109c4c2c9706389c358e1c431bfbfba3062

New changelog entries:
  * debconf template translations:
    - Update Polish (thanks, Michał Kułach; closes: #659829).
  * Ignore errors writing to console in init script (closes: #546743).
  * Move ssh-krb5 to Section: oldlibs.

9d86f10... by Colin Watson on 2011-11-09

Import patches-unapplied version 1:5.9p1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7c2379601a360515b3e99832e5cc00131675314c

New changelog entries:
  * Mark openssh-client and openssh-server as Multi-Arch: foreign.

7c23796... by Colin Watson on 2011-09-07

Import patches-unapplied version 1:5.9p1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 82899b2a78e280972a4ae664909700a9ee013814

New changelog entries:
  * New upstream release (http://www.openssh.org/txt/release-5.9).
    - Introduce sandboxing of the pre-auth privsep child using an optional
      sshd_config(5) "UsePrivilegeSeparation=sandbox" mode that enables
      mandatory restrictions on the syscalls the privsep child can perform.
    - Add new SHA256-based HMAC transport integrity modes from
      http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt.
    - The pre-authentication sshd(8) privilege separation slave process now
      logs via a socket shared with the master process, avoiding the need to
      maintain /dev/log inside the chroot (closes: #75043, #429243,
      #599240).
    - ssh(1) now warns when a server refuses X11 forwarding (closes:
      #504757).
    - sshd_config(5)'s AuthorizedKeysFile now accepts multiple paths,
      separated by whitespace (closes: #76312). The authorized_keys2
      fallback is deprecated but documented (closes: #560156).
    - ssh(1) and sshd(8): set IPv6 traffic class from IPQoS, as well as IPv4
      ToS/DSCP (closes: #498297).
    - ssh-add(1) now accepts keys piped from standard input. E.g. "ssh-add
      - < /path/to/key" (closes: #229124).
    - Clean up lost-passphrase text in ssh-keygen(1) (closes: #444691).
    - Say "required" rather than "recommended" in unprotected-private-key
      warning (LP: #663455).
  * Update OpenSSH FAQ to revision 1.112.

82899b2... by Colin Watson on 2011-07-29

Import patches-unapplied version 1:5.8p1-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7f20bf27cab26dc8f5109f8527f7d556ec2a6f9f

New changelog entries:
  * Only recommend ssh-import-id when built on Ubuntu (closes: #635887).
  * Use 'dpkg-vendor --derives-from Ubuntu' to detect Ubuntu systems rather
    than 'lsb_release -is' so that Ubuntu derivatives behave the same way as
    Ubuntu itself.

7f20bf2... by Colin Watson on 2011-07-28

Import patches-unapplied version 1:5.8p1-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 26f96cccc495cfed74c6a78b0d0d45e8edd8c161

New changelog entries:
  * openssh-client and openssh-server Suggests: monkeysphere.
  * Quieten logs when multiple from= restrictions are used in different
    authorized_keys lines for the same key; it's still not ideal, but at
    least you'll only get one log entry per key (closes: #630606).
  * Merge from Ubuntu (Dustin Kirkland):
    - openssh-server Recommends: ssh-import-id (no-op in Debian since that
      package doesn't exist there, but this reduces the Ubuntu delta).

26f96cc... by Colin Watson on 2011-07-24

Import patches-unapplied version 1:5.8p1-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7de0521a3ad9389c245a3cd63a5b9a7348260108

New changelog entries:
  * Drop openssh-server's dependency on openssh-blacklist to a
    recommendation (closes: #622604).
  * Update Vcs-* fields and README.source for Alioth changes.
  * Backport from upstream:
    - Make hostbased auth with ECDSA keys work correctly (closes: #633368).

7de0521... by Colin Watson on 2011-04-04

Import patches-unapplied version 1:5.8p1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 87ddbacebf1fa1c255574997e344971c66a9b8e0

New changelog entries:
  * Drop hardcoded dependencies on libssl0.9.8 and libcrypto0.9.8-udeb,
    since the required minimum versions are rather old now anyway and
    openssl has bumped its SONAME (thanks, Julien Cristau; closes: #620828).
  * Remove unreachable code from openssh-server.postinst.