~ubuntu-branches/ubuntu/lucid/openssh/lucid

Committer: Bazaar Package Importer
Author(s): Colin Watson
Date: 2008-09-30 23:09:58 UTC
mfrom: (1.13.3 upstream) (29 hardy)
mto: This revision was merged to the branch mainline in revision 43.
Revision ID: james.westby@ubuntu.com-20080930230958-o6vsgn8c4mm959s0

Tags: 1:5.1p1-3

http://bugs.debian.org/496495

http://bugs.debian.org/498681

* Remove unnecessary ssh-vulnkey output in non-verbose mode when no
  compromised or unknown keys were found (closes: #496495).
* Configure with --disable-strip; dh_strip will deal with stripping
  binaries and will honour DEB_BUILD_OPTIONS (thanks, Bernhard R. Link;
  closes: #498681).
* Fix handling of zero-length server banners (thanks, Tomas Mraz; closes:
  #497026).

files added:
PROTOCOL

PROTOCOL.agent

addrmatch.c

contrib/cygwin/sshd-inetd

debian/README.compromised-keys

debian/copyright

debian/faq.html

debian/openssh-server.lintian

debian/openssh-server.sshd.pam

debian/po/sk.po

debian/source.lintian-overrides

debian/ssh.dirs

debian/ssh.lintian

debian/tests

debian/tests/Makefile

debian/tests/getpid.c

debian/tests/keygen-test

moduli.0

moduli.5

mux.c

openbsd-compat/bsd-poll.c

openbsd-compat/bsd-poll.h

openbsd-compat/bsd-statvfs.c

openbsd-compat/bsd-statvfs.h

openbsd-compat/fmt_scaled.c

regress/addrmatch.sh

regress/conch-ciphers.sh

regress/key-options.sh

regress/localcommand.sh

regress/putty-ciphers.sh

regress/putty-kex.sh

regress/putty-transfer.sh

regress/ssh2putty.sh

sftp-server-main.c

ssh-vulnkey.1

ssh-vulnkey.c

umac.c

umac.h

files removed:
debian/moduli.5

debian/openssh-client-udeb.isinstallable

debian/openssh-server.ssh.pam

debian/openssh-server.templates.master

files modified:
ChangeLog

ChangeLog.gssapi

INSTALL

LICENCE

Makefile.in

README

README.platform

atomicio.c

audit-bsm.c

auth-bsdauth.c

auth-options.c

auth-options.h

auth-pam.c

auth-passwd.c

auth-rh-rsa.c

auth-rhosts.c

auth-rsa.c

auth-shadow.c

auth-sia.c

auth.c

auth.h

auth1.c

auth2-chall.c

auth2-gss.c

auth2-hostbased.c

auth2-none.c

auth2-pubkey.c

auth2.c

authfile.c

authfile.h

bufaux.c

bufbn.c

buffer.h

buildpkg.sh.in

canohost.c

channels.c

channels.h

cipher-3des1.c

cipher-bf1.c

cipher-ctr.c

clientloop.c

clientloop.h

config.h.in

configure

configure.ac

contrib/caldera/openssh.spec

contrib/cygwin/Makefile

contrib/cygwin/ssh-host-config

contrib/cygwin/ssh-user-config

contrib/redhat/openssh.spec

contrib/ssh-copy-id

contrib/suse/openssh.spec

debian/README.Debian

debian/changelog

debian/control

debian/copyright.head

debian/openssh-client.preinst

debian/openssh-server.config

debian/openssh-server.default

debian/openssh-server.dirs

debian/openssh-server.init

debian/openssh-server.postinst

debian/openssh-server.postrm

debian/openssh-server.preinst

debian/openssh-server.templates

debian/po/POTFILES.in

debian/po/bg.po

debian/po/ca.po

debian/po/cs.po

debian/po/da.po

debian/po/de.po

debian/po/el.po

debian/po/es.po

debian/po/eu.po

debian/po/fi.po

debian/po/fr.po

debian/po/gl.po

debian/po/it.po

debian/po/ja.po

debian/po/ko.po

debian/po/nb.po

debian/po/nl.po

debian/po/pl.po

debian/po/pt.po

debian/po/pt_BR.po

debian/po/ro.po

debian/po/ru.po

debian/po/sv.po

debian/po/ta.po

debian/po/templates.pot

debian/po/tr.po

debian/po/uk.po

debian/po/vi.po

debian/po/zh_CN.po

debian/rules

debian/ssh-askpass-gnome.desktop

debian/ssh-askpass-gnome.dirs

defines.h

dh.c

dh.h

dns.c

entropy.c

groupaccess.c

groupaccess.h

gss-genr.c

gss-serv.c

includes.h

kex.c

kex.h

key.c

key.h

log.c

log.h

loginrec.c

mac.c

mac.h

match.c

match.h

mdoc2man.awk

misc.c

misc.h

moduli

moduli.c

monitor.c

monitor_fdpass.c

monitor_fdpass.h

monitor_mm.h

monitor_wrap.c

myproposal.h

nchan.c

nchan2.ms

openbsd-compat/Makefile.in

openbsd-compat/base64.c

openbsd-compat/bindresvport.c

openbsd-compat/bsd-arc4random.c

openbsd-compat/bsd-asprintf.c

openbsd-compat/bsd-cray.c

openbsd-compat/bsd-cygwin_util.c

openbsd-compat/bsd-getpeereid.c

openbsd-compat/bsd-misc.c

openbsd-compat/fake-rfc2553.c

openbsd-compat/fake-rfc2553.h

openbsd-compat/getrrsetbyname.c

openbsd-compat/getrrsetbyname.h

openbsd-compat/glob.c

openbsd-compat/glob.h

openbsd-compat/openbsd-compat.h

openbsd-compat/openssl-compat.c

openbsd-compat/openssl-compat.h

openbsd-compat/port-aix.c

openbsd-compat/port-aix.h

openbsd-compat/port-linux.c

openbsd-compat/port-linux.h

openbsd-compat/port-tun.c

openbsd-compat/port-uw.c

openbsd-compat/port-uw.h

openbsd-compat/regress/closefromtest.c

openbsd-compat/regress/strtonumtest.c

openbsd-compat/rresvport.c

openbsd-compat/setenv.c

openbsd-compat/setproctitle.c

openbsd-compat/sigact.c

openbsd-compat/sys-queue.h

openbsd-compat/sys-tree.h

openbsd-compat/xcrypt.c

openbsd-compat/xmmap.c

openssh.xml.in

packet.c

packet.h

pathnames.h

readconf.c

readconf.h

regress/Makefile

regress/agent-getpeereid.sh

regress/agent.sh

regress/cfgmatch.sh

regress/cipher-speed.sh

regress/sftp-badcmds.sh

regress/sftp-cmds.sh

regress/sftp-glob.sh

regress/test-exec.sh

regress/try-ciphers.sh

scard-opensc.c

scp.0

scp.1

scp.c

servconf.c

servconf.h

serverloop.c

session.c

session.h

sftp-client.c

sftp-client.h

sftp-server.0

sftp-server.8

sftp-server.c

sftp.0

sftp.1

sftp.c

sftp.h

ssh-add.0

ssh-add.1

ssh-add.c

ssh-agent.0

ssh-agent.1

ssh-agent.c

ssh-gss.h

ssh-keygen.0

ssh-keygen.1

ssh-keygen.c

ssh-keyscan.0

ssh-keyscan.1

ssh-keyscan.c

ssh-keysign.0

ssh-keysign.8

ssh-rand-helper.0

ssh-rand-helper.c

ssh.0

ssh.1

ssh.c

ssh_config

ssh_config.0

ssh_config.5

sshconnect.c

sshconnect.h

sshconnect2.c

sshd.0

sshd.8

sshd.c

sshd_config

sshd_config.0

sshd_config.5

sshlogin.c

sshpty.c

sshpty.h

sshtty.c

ttymodes.c

version.h

Show diffs side-by-side

added added

removed removed

debian/po/cs.po

msgid ""

msgstr ""

"Project-Id-Version: openssh\n"

"Report-Msgid-Bugs-To: matthew@debian.org\n"

"POT-Creation-Date: 2007-04-29 11:16+0100\n"

"PO-Revision-Date: 2007-04-30 10:22+0200\n"

"Report-Msgid-Bugs-To: openssh@packages.debian.org\n"

"POT-Creation-Date: 2008-05-17 13:58+0200\n"

"PO-Revision-Date: 2008-05-17 14:49+0200\n"

"Last-Translator: Miroslav Kure <kurem@debian.cz>\n"

"Language-Team: Czech <debian-l10n-czech@lists.debian.org>\n"

"MIME-Version: 1.0\n"

#. Type: boolean

#. Description

#: ../openssh-server.templates.master:2001

#: ../openssh-server.templates:1001

msgid "Generate a new configuration file for OpenSSH?"

msgstr "Vytvořit nový konfigurační soubor OpenSSH?"

#. Type: boolean

#. Description

#: ../openssh-server.templates.master:2001

#: ../openssh-server.templates:1001

msgid ""

"This version of OpenSSH has a considerably changed configuration file from "

"the version shipped in Debian 'Potato', which you appear to be upgrading "

#. Type: boolean

#. Description

#: ../openssh-server.templates.master:2001

#: ../openssh-server.templates:1001

msgid ""

"Please note that this new configuration file will set the value of "

"'PermitRootLogin' to 'yes' (meaning that anyone knowing the root password "

"details about this design choice."

msgstr ""

"V novém konfiguračním souboru bude parametr PermitRootLogin nastaven na "

"hodnotu 'yes'. To znamená, že se kdokoliv se znalostí rootova hesla může "

"hodnotu „yes“. To znamená, že se kdokoliv se znalostí rootova hesla může "

"přihlásit rovnou jako root. Více o tomto rozhodnutí se dozvíte v souboru "

"README.Debian."

#. Type: boolean

#. Description

#: ../openssh-server.templates.master:2001

#: ../openssh-server.templates:1001

msgid ""

"It is strongly recommended that you choose to generate a new configuration "

"file now."

#. Type: boolean

#. Description

#: ../openssh-server.templates.master:3001

#: ../openssh-server.templates:2001

msgid "Do you want to risk killing active SSH sessions?"

msgstr "Chcete riskovat ukončení aktivních SSH spojení?"

#. Type: boolean

#. Description

#: ../openssh-server.templates.master:3001

#: ../openssh-server.templates:2001

msgid ""

"The currently installed version of /etc/init.d/ssh is likely to kill all "

"running sshd instances. If you are doing this upgrade via an SSH session, "

#. Type: boolean

#. Description

#: ../openssh-server.templates.master:3001

#: ../openssh-server.templates:2001

msgid ""

"This can be fixed by manually adding \"--pidfile /var/run/sshd.pid\" to the "

"start-stop-daemon line in the stop section of the file."

msgstr ""

"Můžete to spravit ručním přidáním \"--pidfile /var/run/sshd.pid\" na řádek "

"Můžete to spravit ručním přidáním „--pidfile /var/run/sshd.pid“ na řádek "

"start-stop-daemon v sekci stop."

#. Type: note

#. Description

100

#: ../openssh-server.templates.master:4001

100

#: ../openssh-server.templates:3001

101

msgid "New host key mandatory"

102

msgstr "Nutný nový serverový klíč"

103

104

#. Type: note

105

#. Description

106

#: ../openssh-server.templates.master:4001

106

#: ../openssh-server.templates:3001

107

msgid ""

108

"The current host key, in /etc/ssh/ssh_host_key, is encrypted with the IDEA "

109

"algorithm. OpenSSH can not handle this host key file, and the ssh-keygen "

116

117

#. Type: note

118

#. Description

119

#: ../openssh-server.templates.master:4001

119

#: ../openssh-server.templates:3001

120

msgid "You need to manually generate a new host key."

121

msgstr "Musíte ručně vygenerovat nový serverový klíč"

122

123

#. Type: boolean

124

#. Description

125

#: ../openssh-server.templates.master:5001

125

#: ../openssh-server.templates:4001

126

msgid "Disable challenge-response authentication?"

127

msgstr "Zakázat autentizaci challenge-response?"

128

129

#. Type: boolean

130

#. Description

131

#: ../openssh-server.templates.master:5001

131

#: ../openssh-server.templates:4001

132

msgid ""

133

"Password authentication appears to be disabled in the current OpenSSH server "

134

"configuration. In order to prevent users from logging in using passwords "

145

146

#. Type: boolean

147

#. Description

148

#: ../openssh-server.templates.master:5001

148

#: ../openssh-server.templates:4001

149

msgid ""

150

"If you disable challenge-response authentication, then users will not be "

151

"able to log in using passwords. If you leave it enabled (the default "

154

msgstr ""

155

"Zakážete-li autentizaci challenge-response, uživatelé se nebudou moci "

156

"přihlásit pomocí hesel. Necháte-li ji povolenu (přednastavená odpověď), pak "

157

"nebude mít volba 'PasswordAuthentication no' žádný efekt, pokud ovšem "

157

"nebude mít volba „PasswordAuthentication no“ žádný efekt, pokud ovšem "

158

"neupravíte nastavení PAM v /etc/pam.d/ssh."

159

160

#. Type: note

161

#. Description

162

#: ../openssh-server.templates:5001

163

msgid "Vulnerable host keys will be regenerated"

164

msgstr "Zranitelné serverové klíče budou přegenerovány"

165

166

#. Type: note

167

#. Description

168

#: ../openssh-server.templates:5001

169

msgid ""

170

"Some of the OpenSSH server host keys on this system were generated with a "

171

"version of OpenSSL that had a broken random number generator. As a result, "

172

"these host keys are from a well-known set, are subject to brute-force "

173

"attacks, and must be regenerated."

174

msgstr ""

175

"Některé serverové klíče OpenSSH na tomto systému byly vytvořeny verzí "

176

"OpenSSL, která měla narušený generátor náhodných čísel. Ve výsledku jsou "

177

"tyto dobře známé klíče předmětem útoků hrubou silou a musí být přegenerovány."

178

179

#. Type: note

180

#. Description

181

#: ../openssh-server.templates:5001

182

msgid ""

183

"Users of this system should be informed of this change, as they will be "

184

"prompted about the host key change the next time they log in. Use 'ssh-"

185

"keygen -l -f HOST_KEY_FILE' after the upgrade to print the fingerprints of "

186

"the new host keys."

187

msgstr ""

188

"Uživatelé tohoto systému by měli být informováni o změně, protože budou při "

189

"příštím přihlášení varováni o změně serverového klíče. Po aktualizaci můžete "

190

"zjistit nové otisky serverových klíčů příkazem „ssh-keygen -l -f "

191

"SOUBOR_SE_SERVEROVÝM_KLÍČEM“."

192

193

#. Type: note

194

#. Description

195

#: ../openssh-server.templates:5001

196

msgid "The affected host keys are:"

197

msgstr "Postižené serverové klíče:"

198

199

#. Type: note

200

#. Description

201

#: ../openssh-server.templates:5001

202

msgid ""

203

"User keys may also be affected by this problem. The 'ssh-vulnkey' command "

204

"may be used as a partial test for this. See /usr/share/doc/openssh-server/"

205

"README.compromised-keys.gz for more details."

206

msgstr ""

207

"Tímto problémem mohou být postiženy také uživatelské klíče. Pro částečnou "

208

"kontrolu můžete použít příkaz „ssh-vulnkey“. Více informací naleznete v "

209

"souboru /usr/share/doc/openssh-server/README.compromised-keys.gz."

210

160

211

#~ msgid "Warning: you must create a new host key"

161

212

#~ msgstr "Varování: musíte vytvořit nový serverový klíč"

162

213

200

251

#~ "If you make ssh-keysign SUID, you will be able to use SSH's Protocol 2 "

201

252

#~ "host-based authentication."

202

253

#~ msgstr ""

203

#~ "Pokud nastavíte ssh-keysign SUID, můžete používat 'host-based' "

254

#~ "Pokud nastavíte ssh-keysign SUID, můžete používat „host-based“ "

204

255

#~ "autentizaci protokolu verze 2."

205

256

206

257

#~ msgid ""

260

311

#~ "ForwardAgent set to ``off'' by default."

261

312

#~ msgstr ""

262

313

#~ "Z bezpečnostních důvodů má verze ssh v Debianu standardně nastavené "

263

#~ "ForwardX11 a ForwardAgent na hodnotu \"off\"."

314

#~ "ForwardX11 a ForwardAgent na hodnotu „off“."

264

315

265

316

#~ msgid ""

266

317

#~ "You can enable it for servers you trust, either in one of the "

314

365

#~ msgstr ""

315

366

#~ "Pro znovupovolení této volby si po aktualizaci přečtěte varování v "

316

367

#~ "manuálové stránce sshd_config(5) a v souboru /etc/ssh/sshd_config zadejte "

317

#~ "\"PermitUserEnvironment yes\"."

368

#~ "„PermitUserEnvironment yes“."

Older »