search for: mm_ssh1_session_id

...t 768 bit server key and 1024 bit host key. debug1: Encryption type: blowfish debug3: mm_request_send entering: type 28 debug3: monitor_read: checking request 28 debug3: mm_request_receive_expect entering: type 29 debug3: mm_request_receive entering debug3: mm_request_send entering: type 29 debug3: mm_ssh1_session_id entering debug3: mm_request_send entering: type 30 debug1: Received session key; encryption turned on. debug2: monitor_read: 28 used once, disabling now debug3: mm_request_receive entering debug3: monitor_read: checking request 30 debug3: mm_answer_sessid entering debug2: monitor_read: 30 used once...

...+1525,10 @@ packet_close(); +#ifndef DISABLE_PRIVSEP if (use_privsep) mm_terminate(); +#endif /* DISABLE_PRIVSEP */ exit(0); } @@ -1722,8 +1734,10 @@ /* Destroy the private and public keys. No longer. */ destroy_sensitive_data(); +#ifndef DISABLE_PRIVSEP if (use_privsep) mm_ssh1_session_id(session_id); +#endif /* DISABLE_PRIVSEP */ /* Destroy the decrypted integer. It is no longer needed. */ BN_clear_free(session_key_int);

...RESPOND, &m); + + mm_request_receive_expect(monitor->m_recvfd, + MONITOR_ANS_PAMRESPOND, &m); + + authok = buffer_get_int(&m); + buffer_free(&m); + + return ((authok == 0) ? -1 : 0); +} + +void +mm_pam_free_ctx(void *ctxtp) +{ + fatal("Not implemented"); +} + void mm_ssh1_session_id(u_char session_id[16]) { Index: monitor_wrap.h =================================================================== RCS file: /var/cvs/openssh/monitor_wrap.h,v retrieving revision 1.5 diff -u -r1.5 monitor_wrap.h --- monitor_wrap.h 23 Apr 2002 10:28:49 -0000 1.5 +++ monitor_wrap.h 24 Apr 2002 01:03...

nuqneH, I've tried using TIS authsrv authentication via bsd auth and found it quite limited. The most important restriction it does not log ip and fqdn of the remote peer, nor the application name, to the authentication server. It does not matter much for TIS authsrv, but since other applications do provide such information, our authsrv version uses it for extra authentication restrictions.

...RESPOND, &m); + + authok = buffer_get_int(&m); + buffer_free(&m); + + return (authok); +} + +void +mm_sshpam_free_ctx(void *ctxtp) +{ + /* + * Dummy function to fill out KbdintDevice struct. The acutal + * freeing of the ctxt is done automatically on auth completion + */ +} + void mm_ssh1_session_id(u_char session_id[16]) { Index: monitor_wrap.h =================================================================== RCS file: /var/cvs/openssh/monitor_wrap.h,v retrieving revision 1.6 diff -u -r1.6 monitor_wrap.h --- monitor_wrap.h 13 May 2002 01:07:42 -0000 1.6 +++ monitor_wrap.h 2 Jul 2002 02:19:...

...equest_send(pmonitor->m_recvfd, MONITOR_REQ_PAMRESPOND, &m); + + mm_request_receive_expect(pmonitor->m_recvfd, + MONITOR_ANS_PAMRESPOND, &m); + + authok = buffer_get_int(&m); + buffer_free(&m); + + return (authok); +} + +void +mm_sshpam_free_ctx(void *ctxtp) +{ +} + void mm_ssh1_session_id(u_char session_id[16]) { Index: monitor_wrap.h =================================================================== RCS file: /var/cvs/openssh/monitor_wrap.h,v retrieving revision 1.6 diff -u -r1.6 monitor_wrap.h --- monitor_wrap.h 13 May 2002 01:07:42 -0000 1.6 +++ monitor_wrap.h 25 Jun 2002 01:42...

Hi, OpenSSH 7.2 is almost ready for release, so we would appreciate testing on as many platforms and systems as possible. This release contains many bugfixes and several new features. The OpenBSD version is available in CVS HEAD: http://www.openbsd.org/anoncvs.html Portable OpenSSH is available via Git at https://anongit.mindrot.org/openssh.git/ or via a mirror on Github at