| Age | Commit message (Expand) | Author |
|---|
| 2017-05-31 | make sure we don't pass a NULL string to vfprintf (triggered by the | Markus Friedl |
| 2016-11-30 | When a forced-command appears in both a certificate and an | Damien Miller |
| 2016-03-07 | refactor canohost.c: move functions that cache results closer to the | Damien Miller |
| 2015-12-10 | Remove NULL-checks before free(). | mmcc |
| 2015-11-16 | Add a new authorized_keys option "restrict" that includes all current | Damien Miller |
| 2015-07-03 | delete support for legacy v00 certificates; "sure" markus@ dtucker@ | Damien Miller |
| 2015-05-01 | Don't make parsing of authorized_keys' environment= option conditional | Damien Miller |
| 2015-04-22 | unknown certificate extensions are non-fatal, so don't fatal | Damien Miller |
| 2015-01-14 | swith auth-options to new sshbuf/sshkey; ok djm@ | Markus Friedl |
| 2014-07-15 | Add support for Unix domain socket forwarding. A remote TCP port | Todd C. Miller |
| 2014-06-24 | New key API: refactor key-related functions to be more library-like, | Damien Miller |
| 2013-12-19 | simplify freeing of source-address certificate restriction | Damien Miller |
| 2013-11-08 | use calloc for all structure allocations; from markus@ | Damien Miller |
| 2013-11-02 | no need to include monitor_wrap.h and ssh-gss.h | Markus Friedl |
| 2013-07-12 | fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@ | Damien Miller |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2012-12-02 | make AllowTcpForwarding accept "local" and "remote" in addition to its | Damien Miller |
| 2011-10-18 | remove explict search for \0 in packet strings, this job is now done | Damien Miller |
| 2011-09-23 | Add wildcard support to PermitOpen, allowing things like "PermitOpen | Darren Tucker |
| 2010-12-24 | don't send the actual forced command in a debug message; ok markus deraadt | Damien Miller |
| 2010-08-31 | Add buffer_get_cstring() and related functions that verify that the | Damien Miller |
| 2010-05-20 | Move the permit-* options to the non-critical "extensions" field for v01 | Damien Miller |
| 2010-05-07 | add some optional indirection to matching of principal names listed | Damien Miller |
| 2010-04-16 | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the | Damien Miller |
| 2010-03-16 | spelling in error message. ok djm kettenis | Kevin Steves |
| 2010-03-07 | Hold authentication debug messages until after successful authentication. | Darren Tucker |
| 2010-03-04 | "force-command" is not spelled "forced-command"; spotted by | Damien Miller |
| 2010-03-03 | reject strings with embedded ASCII nul chars in certificate key IDs, | Damien Miller |
| 2010-02-26 | Add support for certificate key types for users and hosts. | Damien Miller |
| 2009-01-22 | another chunk of a2port() diff that got away. wtfdjm?? | Damien Miller |
| 2008-06-10 | support CIDR address matching in .ssh/authorized_keys from="..." stanzas | Damien Miller |
| 2008-05-08 | Implement a channel success/failure status confirmation callback | Damien Miller |
| 2008-03-26 | add no-user-rc authorized_keys option to disable execution of ~/.ssh/rc | Damien Miller |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
| 2006-07-22 | move #include <string.h> out of includes.h | Kevin Steves |
| 2006-07-17 | Use '\0' rather than 0 to terminates strings; ok djm@ | Darren Tucker |
| 2006-07-12 | move #include <netdb.h> out of includes.h; ok djm@ | Kevin Steves |
| 2006-07-06 | move #include <pwd.h> out of includes.h; ok markus@ | Kevin Steves |
| 2006-03-25 | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | Damien Miller |
| 2006-03-19 | RCSID() can die | Theo de Raadt |
| 2005-12-08 | two changes to the new ssh tunnel support. this breaks compatibility | Reyk Floeter |
| 2005-12-06 | Add support for tun(4) forwarding over OpenSSH, based on an idea and | Reyk Floeter |
| 2005-03-10 | spacing | Theo de Raadt |
| 2005-03-10 | spacing | Theo de Raadt |
| 2005-03-01 | bz#413: allow optional specification of bind address for port forwardings. | Damien Miller |
| 2003-06-02 | deprecate VerifyReverseMapping since it's dangerous if combined | Markus Friedl |
| 2003-04-08 | rename log() into logit() to avoid name conflict. markus ok, from netbsd | Jun-ichiro itojun Hagino |
| 2002-07-30 | add PermitUserEnvironment (off by default!); from dot@dotat.at; ok provos, de... | Markus Friedl |
| 2002-07-21 | unneeded includes | Kevin Steves |
| 2002-05-13 | move the packet_send_debug handling from auth-options.c to auth.c; ok provos@ | Markus Friedl |
