pool/openssh
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2 Commits 2 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Antonio Larrosa 869b2ae788 - Add patch from upstream to fix proxy multiplexing mode: 
* 0001-upstream-fix-proxy-multiplexing-mode_-broken-when-keystroke.patch
- Add patch from upstream to restore correctly sigprocmask
  * 0001-upstream-correctly-restore-sigprocmask-around-ppoll.patch
- Add patch from upstream to fix a logic error in
  ObscureKeystrokeTiming that rendered this feature ineffective,
  allowing a passive observer to detect which network packets
  contained real keystrokes (bsc#1227318, CVE-2024-39894):
  * 0001-upstream-when-sending-ObscureKeystrokeTiming-chaff-packets_.patch

OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=271
2024-07-05 19:01:36 +00:00
_multibuild
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
.gitattributes
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
.gitignore
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
0001-upstream-correctly-restore-sigprocmask-around-ppoll.patch
- Add patch from upstream to fix proxy multiplexing mode:
2024-07-05 19:01:36 +00:00
0001-upstream-fix-proxy-multiplexing-mode_-broken-when-keystroke.patch
- Add patch from upstream to fix proxy multiplexing mode:
2024-07-05 19:01:36 +00:00
0001-upstream-when-sending-ObscureKeystrokeTiming-chaff-packets_.patch
- Add patch from upstream to fix proxy multiplexing mode:
2024-07-05 19:01:36 +00:00
cavs_driver-ssh.pl
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
fix-CVE-2024-6387.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
fix-missing-lz.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
logind_set_tty.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-6.6.1p1-selinux-contexts.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-6.6p1-keycat.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-6.6p1-privsep-selinux.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.6p1-cleanup-selinux.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-allow_root_password_login.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-cavstest-ctr.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-cavstest-kdf.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-disable_openssl_abi_check.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-eal3.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-enable_PAM_by_default.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-fips_checks.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-fips.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-host_ident.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-hostname_changes_when_forwarding_X.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-IPv6_X_forwarding.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-ldap.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-no_fork-no_pid_file.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-pam_check_locks.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-pts_names_formatting.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-remove_xauth_cookies_on_exit.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-seccomp_ipc_flock.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-seccomp_stat.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-send_locale.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-sftp_force_permissions.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-sftp_print_diagnostic_messages.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-systemd-notify.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-X11_trusted_forwarding.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.7p1-X_forward_with_disabled_ipv6.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.8p1-role-mls.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.9p1-keygen-preserve-perms.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-7.9p1-revert-new-qos-defaults.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.0p1-gssapi-keyex.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.1p1-audit.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.1p1-ed25519-use-openssl-rng.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.1p1-seccomp-clock_gettime64.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.1p1-seccomp-clock_nanosleep_time64.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.1p1-seccomp-clock_nanosleep.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.1p1-use-openssl-kdf.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.4p1-pam_motd.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.4p1-ssh_config_d.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-8.4p1-vendordir.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-9.6p1-crypto-policies-man.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-9.6p1-crypto-policies.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-9.6p1.tar.gz
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-9.6p1.tar.gz.asc
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-askpass-gnome.changes
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-askpass-gnome.spec
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-do-not-send-empty-message.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-fips-ensure-approved-moduli.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-link-with-sk.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-mitigate-lingering-secrets.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-openssl-3.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-reenable-dh-group14-sha1-default.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh-whitelist-syscalls.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh.changes
- Add patch from upstream to fix proxy multiplexing mode:
2024-07-05 19:01:36 +00:00
openssh.keyring
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
openssh.spec
- Add patch from upstream to fix proxy multiplexing mode:
2024-07-05 19:01:36 +00:00
README.FIPS
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
README.kerberos
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
README.SUSE
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
ssh-askpass
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
ssh.reg
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
sshd-gen-keys-start
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
sshd-sle.pamd
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
sshd.fw
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
sshd.pamd
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
sshd.service
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
sysconfig.ssh
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
sysusers-sshd.conf
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00
wtmpdb.patch
- Add obsoletes for openssh-server-config-rootlogin since that
2024-07-05 11:34:53 +00:00

README.SUSE 

There are following changes in default settings of ssh client and server:

* Accepting and sending of locale environment variables in protocol 2 is
  enabled.

* PAM authentication is enabled and mostly even required, do not turn it off.

* In SLE15, root authentiation with password is enabled by default
  (PermitRootLogin yes).
  NOTE: this has security implications and is only done in order to not change
  behaviour of the server in an update. We strongly suggest setting this option
  either "prohibit-password" or even better to "no" (which disables direct
  remote root login entirely).

* DSA authentication is enabled by default for maximum compatibility.
  NOTE: do not use DSA authentication since it is being phased out for a reason
  - the size of DSA keys is limited by the standard to 1024 bits which cannot
  be considered safe any more.

* Accepting all RFC4419 specified DH group parameters. See KexDHMin in
  ssh_config and sshd_config manual pages.

For more information on differences in SUSE OpenSSH package see README.FIPS
Description
No description provided
Readme 8.5 MiB
Languages
Perl 88.5%
Shell 11.5%