| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2002-06-10 | display minimum RSA modulus in error(); ok markus@ | Kevin Steves | |
| 2002-03-29 | make RSA modulus minimum #define; ok markus@ | Kevin Steves | |
| 2002-03-26 | disallow RSA keys < 768 for protocol 1, too (rhosts-rsa and rsa auth) | Markus Friedl | |
| 2002-03-25 | return 0 (not NULL); tomh@po.crl.go.jp | Markus Friedl | |
| 2002-03-18 | integrate privilege separated openssh; its turned off by default for now. | Niels Provos | |
| work done by me and markus@ | |||
| 2002-03-14 | split auth_rsa() for better readability and privsep; ok provos@ | Markus Friedl | |
| 2001-12-28 | packet_read* no longer return the packet length, since it's not used. | Markus Friedl | |
| 2001-12-28 | s/packet_done/packet_check_eom/ (end-of-message); ok djm@ | Markus Friedl | |
| 2001-12-27 | get rid of packet_integrity_check, use packet_done() instead. | Markus Friedl | |
| 2001-12-27 | call fatal() for openssl allocation failures | Markus Friedl | |
| 2001-12-18 | log fingerprint on successful public key authentication, simplify usage of ↵ | Jakob Schlyter | |
| key structs; ok markus@ | |||
| 2001-11-29 | fix protocol error: send 'failed' message instead of a 2nd challenge | Markus Friedl | |
| (happens if the same key is in authorized_keys twice). reported Ralf_Meister@genua.de; ok djm@ | |||
| 2001-07-23 | use %lu; ok markus@ | Kevin Steves | |
| 2001-06-25 | terminate secure_filename checking after checking homedir. that way it | Niels Provos | |
| works on AFS. okay markus@ | |||
| 2001-06-22 | merge authorized_keys2 into authorized_keys. | Markus Friedl | |
| authorized_keys2 is used for backward compat. (just append authorized_keys2 to authorized_keys). | |||
| 2001-05-20 | configurable authorized_keys{,2} location; originally from peter@; ok djm@ | Markus Friedl | |
| 2001-04-06 | do gid/groups-swap in addition to uid-swap, should help if /home/group | Markus Friedl | |
| is chmod 750 + chgrp grp /home/group/, work be deraadt and me, thanks to olar@openwall.com is comments. we had many requests for this. | |||
| 2001-03-01 | KNF | Theo de Raadt | |
| 2001-01-21 | split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. | Markus Friedl | |
| rename util.[ch] -> misc.[ch] | |||
| 2001-01-20 | typo | Markus Friedl | |
| 2001-01-20 | pass the filename to auth_parse_options() | Markus Friedl | |
| 2001-01-19 | move ssh1 definitions to ssh1.h, pathnames to pathnames.h | Markus Friedl | |
| 2000-12-19 | replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned' | Markus Friedl | |
| with u_char. | |||
| 2000-11-14 | parse options only if key matches; fixes some confusing messages seen by the ↵ | Markus Friedl | |
| client | |||
| 2000-10-14 | do not send RSA challenge if key is not allowed by key-options; from ↵ | Markus Friedl | |
| eivind@ThinkSec.com | |||
| 2000-10-11 | clear auth options unless auth sucessfull | Markus Friedl | |
| 2000-10-03 | move fake-auth from auth1.c to individual auth methods, disables s/key in ↵ | Markus Friedl | |
| debug-msg | |||
| 2000-09-07 | some more Copyright fixes | Markus Friedl | |
| 2000-09-07 | cleanup copyright notices on all files. I have attempted to be accurate with | Theo de Raadt | |
| the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate. | |||
| 2000-07-07 | clean code is good code | Todd T. Fries | |
| 2000-06-20 | OpenBSD tag | Markus Friedl | |
| 2000-06-18 | split auth-rsa option parsing into auth-options | Markus Friedl | |
| add options support to authorized_keys2 | |||
| 2000-06-06 | fix match_hostname() logic for auth-rsa: deny access if we have a negative ↵ | Markus Friedl | |
| match or no match at all | |||
| 2000-04-29 | keysize warnings error() -> log() | Markus Friedl | |
| 2000-04-26 | missing fclose | Markus Friedl | |
| 2000-04-14 | whitespace cleanup | Markus Friedl | |
| 2000-04-12 | #include <ssl/foo.h> -> <openssh/foo.h> | Markus Friedl | |
| 2000-03-23 | initial support for DSA keys. ok deraadt@, niels@ | Markus Friedl | |
| 2000-02-11 | delay MD5 computation until client sends response, free() early, cleanup. | Markus Friedl | |
| 2000-01-18 | fix user/1056, sshd keeps restrictions; dbt@meat.net | Markus Friedl | |
| 1999-12-02 | warn only about mismatch if key is _used_ | Markus Friedl | |
| 1999-12-02 | warn about keysize-mismatch with log() not error() | Markus Friedl | |
| 1999-11-24 | KNF, final part 3 | Markus Friedl | |
| 1999-11-24 | much more KNF | Theo de Raadt | |
| 1999-11-23 | KNF part 1 | Markus Friedl | |
| 1999-11-22 | syslog changes: | Markus Friedl | |
| * Unified Logmessage for all auth-types, for success and for failed * Standard connections get only ONE line in the LOG when level==LOG: Auth-attempts are logged only, if authentication is: a) successfull or b) with passwd or c) we had more than AUTH_FAIL_LOG failues * many log() became verbose() * old behaviour with level=VERBOSE | |||
| 1999-11-18 | more %d vs. %s in fmt-strings | Markus Friedl | |
| 1999-11-15 | the keysize of rsa-parameter 'n' is passed implizit, | Markus Friedl | |
| a few more checks and warnings about 'pretended' keysizes. | |||
| 1999-11-11 | make all access to options via 'extern Options options' | Markus Friedl | |
| and 'extern ServerOptions options' respectively; options are no longer passed as arguments: * make options handling more consistent * remove #include "readconf.h" from ssh.h * readconf.h is only included if necessary | |||
| 1999-11-02 | replace assert() with error, fatal or packet_disconnect | Markus Friedl | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |