diff options
| author | Damien Miller <djm@cvs.openbsd.org> | 2018-09-20 03:30:45 +0000 |
|---|---|---|
| committer | Damien Miller <djm@cvs.openbsd.org> | 2018-09-20 03:30:45 +0000 |
| commit | ce795880b5c4bb25d5eeb198c5871e40a0ddabb4 (patch) | |
| tree | f8954d820ee360a06532a3f7238431decc59bdff /usr.bin/ssh/readconf.h | |
| parent | 7ebcdd380eac543357d00c6f348279eec75860af (diff) | |
add CASignatureAlgorithms option for the client, allowing it to specify
which signature algorithms may be used by CAs when signing certificates.
Useful if you want to ban RSA/SHA1; ok markus@
Diffstat (limited to 'usr.bin/ssh/readconf.h')
| -rw-r--r-- | usr.bin/ssh/readconf.h | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/usr.bin/ssh/readconf.h b/usr.bin/ssh/readconf.h index c56887816d1..fc7e3825101 100644 --- a/usr.bin/ssh/readconf.h +++ b/usr.bin/ssh/readconf.h @@ -1,4 +1,4 @@ -/* $OpenBSD: readconf.h,v 1.127 2018/07/19 10:28:47 dtucker Exp $ */ +/* $OpenBSD: readconf.h,v 1.128 2018/09/20 03:30:44 djm Exp $ */ /* * Author: Tatu Ylonen <ylo@cs.hut.fi> @@ -67,6 +67,7 @@ typedef struct { char *macs; /* SSH2 macs in order of preference. */ char *hostkeyalgorithms; /* SSH2 server key types in order of preference. */ char *kex_algorithms; /* SSH2 kex methods in order of preference. */ + char *ca_sign_algorithms; /* Allowed CA signature algorithms */ char *hostname; /* Real host to connect. */ char *host_key_alias; /* hostname alias for .ssh/known_hosts */ char *proxy_command; /* Proxy command for connecting the host. */ |