Bug#298744: marked as done ([l10n] Updated Czech translation of openssh debconf messages)
Your message dated Mon, 06 Jun 2005 18:17:18 -0400
with message-id <E1DfPuI-00064v-00@newraff.debian.org>
and subject line Bug#298744: fixed in openssh 1:4.1p1-3
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 9 Mar 2005 17:51:12 +0000
>From kurem@vychodil.inf.upol.cz Wed Mar 09 09:51:12 2005
Return-path: <kurem@vychodil.inf.upol.cz>
Received: from csnt.inf.upol.cz [158.194.80.80]
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1D95Kx-0003Ol-00; Wed, 09 Mar 2005 09:51:12 -0800
Received: from vychodil.inf.upol.cz ([158.194.80.12]) by CSNT.inf.upol.cz with Microsoft SMTPSVC(6.0.3790.211);
Wed, 9 Mar 2005 18:51:09 +0100
Received: from kurem by vychodil.inf.upol.cz with local (Exim 3.35 #1 (Debian))
id 1D95HS-0004AU-00
for <submit@bugs.debian.org>; Wed, 09 Mar 2005 18:47:34 +0100
Date: Wed, 9 Mar 2005 18:47:34 +0100
From: Miroslav Kure <kurem@upcase.inf.upol.cz>
To: submit@bugs.debian.org
Subject: [l10n] Updated Czech translation of openssh debconf messages
Message-ID: <20050309174733.GA16009@vychodil.inf.upol.cz>
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="huq684BweRXVnRxX"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
User-Agent: Mutt/1.3.28i
Sender: Miroslav Kure <kurem@vychodil.inf.upol.cz>
X-OriginalArrivalTime: 09 Mar 2005 17:51:09.0438 (UTC) FILETIME=[9361B9E0:01C524D0]
Delivered-To: submit@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-7.0 required=4.0 tests=BAYES_01,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
--huq684BweRXVnRxX
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Package: openssh
Severity: wishlist
Tags: l10n, patch
Hi, in attachement there is updated Czech translation (cs.po) of
openssh debconf messages, please include it.
--
Miroslav Kure
--huq684BweRXVnRxX
Content-Type: text/plain; charset=iso-8859-2
Content-Disposition: attachment; filename="cs.po"
Content-Transfer-Encoding: 8bit
#
# Translators, if you are not familiar with the PO format, gettext
# documentation is worth reading, especially sections dedicated to
# this format, e.g. by running:
# info -n '(gettext)PO Files'
# info -n '(gettext)Header Entry'
#
# Some information specific to po-debconf are available at
# /usr/share/doc/po-debconf/README-trans
# or http://www.debian.org/intl/l10n/po-debconf/README-trans
#
# Developers do not need to manually edit POT or PO files.
#
msgid ""
msgstr ""
"Project-Id-Version: openssh\n"
"Report-Msgid-Bugs-To: \n"
"POT-Creation-Date: 2004-10-06 13:54+0100\n"
"PO-Revision-Date: 2005-03-09 18:29+0100\n"
"Last-Translator: Miroslav Kure <kurem@debian.cz>\n"
"Language-Team: Czech <provoz@debian.cz>\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=ISO-8859-2\n"
"Content-Transfer-Encoding: 8bit\n"
#. Type: boolean
#. Description
#: ../templates.master:4
msgid "Generate new configuration file"
msgstr "Generovat nový konfiguraèní soubor"
#. Type: boolean
#. Description
#: ../templates.master:4
msgid ""
"This version of OpenSSH has a considerably changed configuration file from "
"the version shipped in Debian 'Potato', which you appear to be upgrading "
"from. I can now generate you a new configuration file (/etc/ssh/sshd."
"config), which will work with the new server version, but will not contain "
"any customisations you made with the old version."
msgstr ""
"Tato verze OpenSSH má oproti verzi dodávané s Debianem 2.2, kterou nyní "
"pravdìpodobnì aktualizujete, znaènì odli¹ný konfiguraèní soubor. Nyní mohu "
"vytvoøit nový konfiguraèní soubor (/etc/ssh/sshd.config), který bude "
"pracovat s novou verzí, ale nebude obsahovat ¾ádné úpravy, které jste "
"provedli ve staré verzi."
#. Type: boolean
#. Description
#: ../templates.master:4
msgid ""
"Please note that this new configuration file will set the value of "
"'PermitRootLogin' to yes (meaning that anyone knowing the root password can "
"ssh directly in as root). It is the opinion of the maintainer that this is "
"the correct default (see README.Debian for more details), but you can always "
"edit sshd_config and set it to no if you wish."
msgstr ""
"V novém konfiguraèním souboru bude parametr PermitRootLogin nastaven na "
"hodnotu 'yes'. To znamená, ¾e se kdokoliv se znalostí rootova hesla mù¾e "
"pøihlásit rovnou jako root. Pokud se chcete vrátit ke starému chování, staèí "
"v sshd_config nastavit tento parametr na hodnotu 'no'. Více v README.Debian."
#. Type: boolean
#. Description
#: ../templates.master:4
msgid ""
"It is strongly recommended that you let me generate a new configuration file "
"for you."
msgstr "Je vøele doporuèeno nechat mì vyrobit konfiguraèní soubor."
#. Type: boolean
#. Description
#: ../templates.master:23
msgid "Allow SSH protocol 2 only"
msgstr "Povolit pouze SSH protokol verze 2"
#. Type: boolean
#. Description
#: ../templates.master:23
msgid ""
"This version of OpenSSH supports version 2 of the ssh protocol, which is "
"much more secure. Disabling ssh 1 is encouraged, however this will slow "
"things down on low end machines and might prevent older clients from "
"connecting (the ssh client shipped with \"potato\" is affected)."
msgstr ""
"Tato verze OpenSSH podporuje ssh protokol ve verzi 2, který je mnohem "
"bezpeènìj¹í. Je dobré ssh verze 1 zakázat, nicménì na slab¹ích poèítaèích se "
"projeví zpomalení a také tím znemo¾níte pøihlá¹ení star¹ích klientù "
"(napøíklad tìch z Debianu 2.2)."
#. Type: boolean
#. Description
#: ../templates.master:23
msgid ""
"Also please note that keys used for protocol 1 are different so you will not "
"be able to use them if you only allow protocol 2 connections."
msgstr ""
"Také si v¹imnìte, ¾e klíèe protokolu verze 1 jsou odli¹né a pokud povolíte "
"pouze protokol verze 2, nebudete je moci pou¾ít. "
#. Type: boolean
#. Description
#: ../templates.master:23
msgid ""
"If you later change your mind about this setting, README.Debian has "
"instructions on what to do to your sshd_config file."
msgstr ""
"Pokud se pozdìji rozhodnete jinak, v README.Debian se nachází pøesný návod, "
"jak upravit soubor sshd_config."
#. Type: note
#. Description
#: ../templates.master:37
msgid "ssh2 keys merged in configuration files"
msgstr "Klíèe ssh2 v konfiguraèních souborech byly spojeny"
#. Type: note
#. Description
#: ../templates.master:37
msgid ""
"As of version 3 OpenSSH no longer uses separate files for ssh1 and ssh2 "
"keys. This means the authorized_keys2 and known_hosts2 files are no longer "
"needed. They will still be read in order to maintain backwards compatibility"
msgstr ""
"OpenSSH verze 3 ji¾ nepou¾ívá oddìlené soubory pro klíèe verze ssh1 a ssh2. "
"To znamená, ¾e soubory authorized_keys2 a known_hosts2 ji¾ nejsou potøeba, "
"ov¹em z dùvodù zachování zpìtné kompatibility jsou stále naèítány."
#. Type: boolean
#. Description
#: ../templates.master:46
msgid "Do you want to continue (and risk killing active ssh sessions)?"
msgstr "Chcete pokraèovat (a riskovat ukonèení aktivních ssh spojení)?"
#. Type: boolean
#. Description
#: ../templates.master:46
msgid ""
"The version of /etc/init.d/ssh that you have installed, is likely to kill "
"all running sshd instances. If you are doing this upgrade via an ssh "
"session, that would be a Bad Thing(tm)."
msgstr ""
"Stávající verze /etc/init.d/ssh pravdìpadobnì pozabíjí v¹echny bì¾ící "
"instance sshd. Pokud tuto aktualizaci provádíte pøes ssh, byla by to ©patná "
"Vìc(tm)."
#. Type: boolean
#. Description
#: ../templates.master:46
msgid ""
"You can fix this by adding \"--pidfile /var/run/sshd.pid\" to the start-stop-"
"daemon line in the stop section of the file."
msgstr ""
"Mù¾ete to spravit pøidáním \"--pidfile /var/run/sshd.pid\" do sekce stop na "
"øádek se start-stop-daemon."
#. Type: note
#. Description
#: ../templates.master:56
msgid "NOTE: Forwarding of X11 and Authorization disabled by default."
msgstr "POZNÁMKA: Autorizace a pøesmìrování X11 je standardnì vypnuto."
#. Type: note
#. Description
#: ../templates.master:56
msgid ""
"For security reasons, the Debian version of ssh has ForwardX11 and "
"ForwardAgent set to ``off'' by default."
msgstr ""
"Z bezpeènostních dùvodù má verze ssh v Debianu standardnì nastavené "
"ForwardX11 a ForwardAgent na hodnotu \"off\"."
#. Type: note
#. Description
#: ../templates.master:56
msgid ""
"You can enable it for servers you trust, either in one of the configuration "
"files, or with the -X command line option."
msgstr ""
"Pro servery, kterým dùvìøujete, mù¾ete tyto parametry povolit v jednom z "
"konfiguraèních souborù, nebo z pøíkazové øádky parametrem -X."
#. Type: note
#. Description
#: ../templates.master:56
msgid "More details can be found in /usr/share/doc/ssh/README.Debian"
msgstr "Více naleznete v /usr/share/doc/ssh/README.Debian"
#. Type: note
#. Description
#: ../templates.master:67
msgid "Warning: rsh-server is installed --- probably not a good idea"
msgstr "Varování: je nainstalován rsh-server --- to není dobrý nápad"
#. Type: note
#. Description
#: ../templates.master:67
msgid ""
"having rsh-server installed undermines the security that you were probably "
"wanting to obtain by installing ssh. I'd advise you to remove that package."
msgstr ""
"nainstalováním rsh-server si bouráte bezpeènost, kterou jste pravdìpodobnì "
"chtìli dosáhnout instalací ssh. Doporuèujeme tento balík odstranit."
#. Type: note
#. Description
#: ../templates.master:74
msgid "Warning: telnetd is installed --- probably not a good idea"
msgstr "Varování: je nainstalován telnetd --- to není dobrý nápad"
#. Type: note
#. Description
#: ../templates.master:74
msgid ""
"I'd advise you to either remove the telnetd package (if you don't actually "
"need to offer telnet access) or install telnetd-ssl so that there is at "
"least some chance that telnet sessions will not be sending unencrypted login/"
"password and session information over the network."
msgstr ""
"Doporuèujeme buï odstranit balík telnetd (pokud telnet pøístup "
"nepotøebujete), nebo nainstalovat telnetd-ssl, kde je alespoò nìjaká ¹ance, "
"¾e spojení nebudou po síti zasílat neza¹ifrovaná jména/hesla/informace."
#. Type: note
#. Description
#: ../templates.master:82
msgid "Warning: you must create a new host key"
msgstr "Varování: musíte vytvoøit nový serverový klíè"
#. Type: note
#. Description
#: ../templates.master:82
msgid ""
"There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted. OpenSSH can "
"not handle this host key file, and I can't find the ssh-keygen utility from "
"the old (non-free) SSH installation."
msgstr ""
"V /etc/ssh/ssh_host_key se nachází starý klíè ¹ifrovaný algoritmem IDEA. "
"OpenSSH neumí tento soubor zpracovat a nemohu najít utilitu ssh-keygen ze "
"staré (nesvobodné) instalace SSH."
#. Type: note
#. Description
#: ../templates.master:82
msgid "You will need to generate a new host key."
msgstr "Musíte vygenerovat nový serverový klíè"
#. Type: boolean
#. Description
#: ../templates.master:92
msgid "Do you want /usr/lib/ssh-keysign to be installed SUID root?"
msgstr "Chcete /usr/lib/ssh-keysign nainstalovat jako SUID root?"
#. Type: boolean
#. Description
#: ../templates.master:92
msgid ""
"You have the option of installing the ssh-keysign helper with the SUID bit "
"set."
msgstr ""
"Mù¾ete si vybrat, zda chcete nainstalovat ssh-keysign s nastaveným SUID "
"bitem."
#. Type: boolean
#. Description
#: ../templates.master:92
msgid ""
"If you make ssh-keysign SUID, you will be able to use SSH's Protocol 2 host-"
"based authentication."
msgstr ""
"Pokud nastavíte ssh-keysign SUID, mù¾ete pou¾ívat 'host-based' autentizaci "
"protokolu verze 2."
#. Type: boolean
#. Description
#: ../templates.master:92
msgid ""
"If in doubt, I suggest you install it with SUID. If it causes problems you "
"can change your mind later by running: dpkg-reconfigure ssh"
msgstr ""
"Pokud jste na pochybách, doporuèujeme SUID bit povolit. Pokud zaznamenáte "
"problémy, mù¾ete nastavení zmìnit spu¹tìním: dpkg-reconfigure ssh"
#. Type: boolean
#. Description
#: ../templates.master:105
msgid "Do you want to run the sshd server?"
msgstr "Chcete spustit sshd server?"
#. Type: boolean
#. Description
#: ../templates.master:105
msgid "This package contains both the ssh client, and the sshd server."
msgstr "Tento balík obsahuje jak klienta ssh, tak server sshd."
#. Type: boolean
#. Description
#: ../templates.master:105
msgid ""
"Normally the sshd Secure Shell Server will be run to allow remote logins via "
"ssh."
msgstr ""
"Obvykle se sshd (Secure Shell Server) spou¹tí, aby se vzdálení u¾ivatelé "
"mohli pøihla¹ovat pøes ssh."
#. Type: boolean
#. Description
#: ../templates.master:105
msgid ""
"If you are only interested in using the ssh client for outbound connections "
"on this machine, and don't want to log into it at all using ssh, then you "
"can disable sshd here."
msgstr ""
"Pokud na tomto poèítaèi chcete vyu¾ívat pouze ssh klienta pro odchozí "
"spojení, mù¾ete zde sshd zakázat."
#. Type: note
#. Description
#: ../templates.master:117
msgid "Environment options on keys have been deprecated"
msgstr "Volby prostøedí spojené s klíèi jsou zakázány"
#. Type: note
#. Description
#: ../templates.master:117
msgid ""
"This version of OpenSSH disables the environment option for public keys by "
"default, in order to avoid certain attacks (for example, LD_PRELOAD). If you "
"are using this option in an authorized_keys file, beware that the keys in "
"question will no longer work until the option is removed."
msgstr ""
"Pro zamezení urèitých typù útokù (napø. LD_PRELOAD), tato verze OpenSSH "
"standardnì zabraòuje pou¾ívat volbu prostøedí u veøejných klíèù. Pokud tuto "
"volbu pou¾íváte v souboru authorized_keys, tak posti¾ené klíèe nebudou "
"fungovat, dokud jim tuto volbu nesma¾ete."
#. Type: note
#. Description
#: ../templates.master:117
msgid ""
"To re-enable this option, set \"PermitUserEnvironment yes\" in /etc/ssh/"
"sshd_config after the upgrade is complete, taking note of the warning in the "
"sshd_config(5) manual page."
msgstr ""
"Pro znovupovolení této volby si po aktualizaci pøeètìte varování v manuálové "
"stránce sshd_config(5) a v souboru /etc/ssh/sshd_config zadejte "
"\"PermitUserEnvironment yes\"."
#. Type: boolean
#. Description
#: ../templates.master:130
msgid "Disable challenge-response authentication?"
msgstr "Zakázat autentizaci challenge-response?"
#. Type: boolean
#. Description
#: ../templates.master:130
msgid ""
"Password authentication appears to be disabled in your current OpenSSH "
"server configuration. In order to prevent users from logging in using "
"passwords (perhaps using only public key authentication instead) with recent "
"versions of OpenSSH, you must disable challenge-response authentication, or "
"else ensure that your PAM configuration does not allow Unix password file "
"authentication."
msgstr ""
"Zdá se, ¾e autentizace pomocí hesel je ve va¹í stávající konfiguraci OpenSSH "
"serveru zakázána. Abyste zabránili u¾ivatelùm v pøihlá¹ení pouze pomocí "
"hesla, musíte v posledních verzích OpenSSH zakázat autentizaci "
"challenge-response, nebo jinak zajistit, aby PAM nepovolilo autentizaci "
"vùèi unixovému souboru hesel."
#. Type: boolean
#. Description
#: ../templates.master:130
msgid ""
"If you disable challenge-response authentication, then users will not be "
"able to log in using passwords. If you leave it enabled (the default "
"answer), then the 'PasswordAuthentication no' option will have no useful "
"effect unless you also adjust your PAM configuration in /etc/pam.d/ssh."
msgstr ""
"Zaká¾ete-li autentizaci challenge-response, u¾ivatelé se nebudou moci "
"pøihlásit pomocí hesel. Necháte-li ji povolenu (pøednastavená odpovìï), "
"pak nebude mít volba 'PasswordAuthentication no' ¾ádný efekt, pokud ov¹em "
"neupravíte nastavení PAM v /etc/pam.d/ssh."
--huq684BweRXVnRxX--
---------------------------------------
Received: (at 298744-close) by bugs.debian.org; 6 Jun 2005 22:22:31 +0000
>From katie@ftp-master.debian.org Mon Jun 06 15:22:31 2005
Return-path: <katie@ftp-master.debian.org>
Received: from newraff.debian.org [208.185.25.31] (mail)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DfPzK-0006z5-00; Mon, 06 Jun 2005 15:22:31 -0700
Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian))
id 1DfPuI-00064v-00; Mon, 06 Jun 2005 18:17:18 -0400
From: Colin Watson <cjwatson@debian.org>
To: 298744-close@bugs.debian.org
X-Katie: $Revision: 1.56 $
Subject: Bug#298744: fixed in openssh 1:4.1p1-3
Message-Id: <E1DfPuI-00064v-00@newraff.debian.org>
Sender: Archive Administrator <katie@ftp-master.debian.org>
Date: Mon, 06 Jun 2005 18:17:18 -0400
Delivered-To: 298744-close@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
X-CrossAssassin-Score: 42
Source: openssh
Source-Version: 1:4.1p1-3
We believe that the bug you reported is fixed in the latest version of
openssh, which is due to be installed in the Debian FTP archive:
openssh-client-udeb_4.1p1-3_powerpc.udeb
to pool/main/o/openssh/openssh-client-udeb_4.1p1-3_powerpc.udeb
openssh-client_4.1p1-3_powerpc.deb
to pool/main/o/openssh/openssh-client_4.1p1-3_powerpc.deb
openssh-server-udeb_4.1p1-3_powerpc.udeb
to pool/main/o/openssh/openssh-server-udeb_4.1p1-3_powerpc.udeb
openssh-server_4.1p1-3_powerpc.deb
to pool/main/o/openssh/openssh-server_4.1p1-3_powerpc.deb
openssh_4.1p1-3.diff.gz
to pool/main/o/openssh/openssh_4.1p1-3.diff.gz
openssh_4.1p1-3.dsc
to pool/main/o/openssh/openssh_4.1p1-3.dsc
ssh-askpass-gnome_4.1p1-3_powerpc.deb
to pool/main/o/openssh/ssh-askpass-gnome_4.1p1-3_powerpc.deb
ssh_4.1p1-3_all.deb
to pool/main/o/openssh/ssh_4.1p1-3_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 298744@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Colin Watson <cjwatson@debian.org> (supplier of updated openssh package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 6 Jun 2005 22:28:33 +0100
Source: openssh
Binary: ssh-askpass-gnome openssh-client-udeb ssh openssh-server openssh-client openssh-server-udeb
Architecture: source powerpc all
Version: 1:4.1p1-3
Distribution: unstable
Urgency: high
Maintainer: Matthew Vernon <matthew@debian.org>
Changed-By: Colin Watson <cjwatson@debian.org>
Description:
openssh-client - Secure shell client, an rlogin/rsh/rcp replacement
openssh-client-udeb - Secure shell client for the Debian installer (udeb)
openssh-server - Secure shell server, an rshd replacement
openssh-server-udeb - Secure shell server for the Debian installer (udeb)
ssh - Secure shell client and server (transitional package)
ssh-askpass-gnome - under X, asks user for a passphrase for ssh-add
Closes: 39741 87253 87900 141979 147212 147360 151321 162996 163933 192206 192234 220726 228828 233012 238699 242119 242462 247521 248747 250369 257130 264024 265339 265627 273831 275731 275895 276703 276754 277438 278394 278715 280190 281595 287013 289573 295757 296487 298536 298744 301852 303452 303787 307069 308868
Changes:
openssh (1:4.1p1-3) unstable; urgency=low
.
* Upload to unstable.
.
openssh (1:4.1p1-2) experimental; urgency=low
.
* Drop debconf support for allowing SSH protocol 1, which is discouraged
and has not been the default since openssh 1:3.0.1p1-1. Users who need
this should edit sshd_config instead (closes: #147212).
* Since ssh-keysign isn't used by default (you need to set
EnableSSHKeysign to "yes" in /etc/ssh/ssh_config), having a debconf
question to ask whether it should be setuid is overkill, and the
question text had got out of date anyway. Remove this question, ship
ssh-keysign setuid in openssh-client.deb, and set a statoverride if the
debconf question was previously set to false.
* Add lintian overrides for the above (setuid-binary,
no-debconf-templates).
* Fix picky lintian errors about slogin symlinks.
* Fix DEB_HOST_ARCH_OS/DEB_HOST_GNU_SYSTEM compatibility handling.
* Apply Linux 2.2 workaround (see #239999) only on Linux.
.
openssh (1:4.1p1-1) experimental; urgency=low
.
* New upstream release.
- Normalise socket addresses returned by get_remote_hostname(), fixing
4-in-6 mapping issues with AllowUsers et al (closes: #192234).
* Take upstream's hint and disable the unsupported USE_POSIX_THREADS
(closes: #295757, #308868, and possibly others; may open other bugs).
Use PAM password authentication to avoid #278394. In future I may
provide two sets of binaries built with and without this option, since
it seems I can't win.
* Disable ChallengeResponseAuthentication in new installations, returning
to PasswordAuthentication by default, since it now supports PAM and
apparently works better with a non-threaded sshd (closes: #247521).
* openssh-server Suggests: rssh (closes: #233012).
* Change libexecdir to /usr/lib/openssh, and fix up various alternatives
and configuration files to match (closes: #87900, #151321).
* Fix up very old sshd_config files that refer to /usr/libexec/sftp-server
(closes: #141979).
.
openssh (1:4.0p1-1) experimental; urgency=low
.
* New upstream release.
- Port-forwarding specifications now take optional bind addresses, and
the server allows client-specified bind addresses for remote port
forwardings when configured with "GatewayPorts clientspecified"
(closes: #87253, #192206).
- ssh and ssh-keyscan now support hashing of known_hosts files for
improved privacy. ssh-keygen has new options for managing known_hosts
files, which understand hashing.
- sftp supports command history and editing support using libedit
(closes: #287013).
- Have scp and sftp wait for the spawned ssh to exit before they exit
themselves, allowing ssh to restore terminal modes (closes: #257130).
- Improved the handling of bad data in authorized_keys files,
eliminating fatal errors on corrupt or very large keys; e.g. linefeeds
in keys only produce errors in auth.log now (closes: #220726).
- Add "command mode" to ssh connection multiplexing (closes: #303452).
- Mention $HOME/.hushlogin in sshd(8) FILES section (closes: #163933).
* Make gnome-ssh-askpass stay above other windows (thanks, Liyang HU;
closes: #296487).
* Remove obsolete and unnecessary ssh/forward_warning debconf note.
* Hurd build fixes (although sshd still doesn't work):
- Restore X forwarding fix from #102991, lost somewhere along the way.
- Link with -lcrypt.
- Link with -lpthread rather than -pthread.
- Don't build ssh-askpass-gnome on the Hurd, until GNOME is available to
satisfy build-dependencies.
* Drop workaround for #242462 on amd64; it's been fixed properly upstream.
* Enable HashKnownHosts by default. This only affects new entries; use
'ssh-keygen -H' to convert an entire known_hosts file to hashed format.
* Note in ssh_config(5) that the SetupTimeOut option is Debian-specific
(closes: #307069).
* debconf template translations:
- Update Czech (thanks, Miroslav Kure; closes: #298744).
- Update Finnish (thanks, Matti Pöllä; closes: #303787).
- Synchronise Spanish with sarge branch (thanks, Javier
Fernández-Sanguino Peña; closes: #298536).
- Add Ukrainian (thanks, Eugeniy Meshcheryakov; closes: #301852).
.
openssh (1:3.9p1-3) experimental; urgency=low
.
* Explain how to run sshd from inittab in README.Debian (closes: #147360).
* Add debian/watch file.
.
openssh (1:3.9p1-2) experimental; urgency=low
.
* Remove pam_nologin from /etc/pam.d/ssh, as sshd's built-in support
appears to be sufficient and more useful (closes: #162996).
* Depend on debconf | debconf-2.0.
* Drop LoginGraceTime back to the upstream default of two minutes on new
installs (closes: #289573).
* debconf template translations from Ubuntu bug #1232:
- Update Greek (thanks, Logiotatidis George).
- Update Spanish (thanks, Santiago Erquicia).
.
openssh (1:3.9p1-1) experimental; urgency=low
.
* New upstream release.
- PAM password authentication implemented again (closes: #238699,
#242119).
- Implemented the ability to pass selected environment variables between
the client and the server.
- Fix ssh-keyscan breakage when remote server doesn't speak SSH protocol
(closes: #228828).
- Fix res_query detection (closes: #242462).
- 'ssh -c' documentation improved (closes: #265627).
* Pass LANG and LC_* environment variables from the client by default, and
accept them to the server by default in new installs, although not on
upgrade (closes: #264024).
* Build ssh in binary-indep, not binary-arch (thanks, LaMont Jones).
* Expand on openssh-client package description (closes: #273831).
.
openssh (1:3.8.1p1-14) experimental; urgency=low
.
* We use DH_COMPAT=2, so build-depend on debhelper (>= 2).
* Fix timing information leak allowing discovery of invalid usernames in
PAM keyboard-interactive authentication (backported from a patch by
Darren Tucker; closes: #281595).
* Make sure that there's a delay in PAM keyboard-interactive
authentication when PermitRootLogin is not set to yes and the correct
root password is entered (closes: #248747).
.
openssh (1:3.8.1p1-13) experimental; urgency=low
.
* Enable threading for PAM, on Sam Hartman's advice (closes: #278394).
* debconf template translations:
- Update Dutch (thanks, cobaco; closes: #278715).
* Correct README.Debian's ForwardX11Trusted description (closes: #280190).
.
openssh (1:3.8.1p1-12) experimental; urgency=low
.
* Preserve /etc/ssh/sshd_config ownership/permissions (closes: #276754).
* Shorten the version string from the form "OpenSSH_3.8.1p1 Debian
1:3.8.1p1-8.sarge.1" to "OpenSSH_3.8.1p1 Debian-8.sarge.1", as some SSH
implementations apparently have problems with the long version string.
This is of course a bug in those implementations, but since the extent
of the problem is unknown it's best to play safe (closes: #275731).
* debconf template translations:
- Add Finnish (thanks, Matti Pöllä; closes: #265339).
- Update Danish (thanks, Morten Brix Pedersen; closes: #275895).
- Update French (thanks, Denis Barbier; closes: #276703).
- Update Japanese (thanks, Kenshi Muto; closes: #277438).
.
openssh (1:3.8.1p1-11) experimental; urgency=high
.
* Move sshd_config(5) to openssh-server, where it belongs.
* If PasswordAuthentication is disabled, then offer to disable
ChallengeResponseAuthentication too. The current PAM code will attempt
password-style authentication if ChallengeResponseAuthentication is
enabled (closes: #250369).
* This will ask a question of anyone who installed fresh with 1:3.8p1-2 or
later and then upgraded. Sorry about that ... for this reason, the
default answer is to leave ChallengeResponseAuthentication enabled.
.
openssh (1:3.8.1p1-10) experimental; urgency=low
.
* Don't install the ssh-askpass-gnome .desktop file by default; I've had
too many GNOME people tell me it's the wrong thing to be doing. I've
left it in /usr/share/doc/ssh-askpass-gnome/examples/ for now.
.
openssh (1:3.8.1p1-9) experimental; urgency=low
.
* Split the ssh binary package into openssh-client and openssh-server
(closes: #39741). openssh-server depends on openssh-client for some
common functionality; it didn't seem worth creating yet another package
for this. openssh-client is priority standard, openssh-server optional.
* New transitional ssh package, priority optional, depending on
openssh-client and openssh-server. May be removed once nothing depends
on it.
* When upgrading from ssh to openssh-{client,server}, it's very difficult
for the maintainer scripts to find out what version we're upgrading from
without dodgy dpkg hackery. I've therefore taken the opportunity to move
a couple of debconf notes into NEWS files, namely ssh/ssh2_keys_merged
and ssh/user_environment_tell.
* Add a heuristic to try to make sure the sshd_config upgrade to >= 3.7
happens even though we don't know what version we're upgrading from.
* Remove /etc/ssh/sshd_not_to_be_run on purge of openssh-server. For now
(until sarge+2) it's still honoured to avoid breaking existing
configurations, but the right approach is now to remove the
openssh-server package if you don't want to run the server. Add a NEWS
item to that effect.
Files:
84f2dff9c56e901f345d56fc61df0d0b 900 net standard openssh_4.1p1-3.dsc
7ab61ab3f06d6f82054c1abe06c07d06 138002 net standard openssh_4.1p1-3.diff.gz
02c181ac3c4d6a0548d111c59e74db82 31940 net optional ssh_4.1p1-3_all.deb
fded10b71291844267bf4582d67e1f49 570468 net standard openssh-client_4.1p1-3_powerpc.deb
b5d53eb227d444b63861dc93266b06d3 284250 net optional openssh-server_4.1p1-3_powerpc.deb
712214657225f22add427e6e8af78d8e 76508 gnome optional ssh-askpass-gnome_4.1p1-3_powerpc.deb
8a08610010a9b18697df9dcaad793d47 163160 debian-installer optional openssh-client-udeb_4.1p1-3_powerpc.udeb
c3e34795848cfa1ddf1be4365c9450cd 171832 debian-installer optional openssh-server-udeb_4.1p1-3_powerpc.udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFCpMU09t0zAhD6TNERAkGpAKCDpLdoo2ILdb02EPN28FV4HuSsgQCcD7K2
QlEr7wrH8P5uw4bssmCGNzU=
=mvqt
-----END PGP SIGNATURE-----
Reply to: