Age | Commit message (Expand) | Author |
2011-05-23 | allow AuthorizedKeysFile to specify multiple files, separated by spaces. | Damien Miller |
2010-12-03 | move check for revoked keys to run earlier (in auth_rsa_key_allowed) | Damien Miller |
2010-07-13 | s/timing_safe_cmp/timingsafe_bcmp/g | Damien Miller |
2010-07-13 | implement a timing_safe_cmp() function to compare memory without leaking | Damien Miller |
2010-05-11 | don't accept certificates marked as "cert-authority" here; ok markus@ | Damien Miller |
2010-04-16 | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the | Damien Miller |
2010-03-04 | Add a TrustedUserCAKeys option to sshd_config to specify CA keys that | Damien Miller |
2008-07-02 | Merge duplicate host key file checks, based in part on a patch from Rob | Darren Tucker |
2006-11-06 | add missing checks for openssl return codes; with & ok djm@ | Markus Friedl |
2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves |
2006-07-22 | move #include <string.h> out of includes.h | Kevin Steves |
2006-07-06 | move #include <pwd.h> out of includes.h; ok markus@ | Kevin Steves |
2006-03-25 | needed casts (always will be needed) | Theo de Raadt |
2006-03-25 | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | Damien Miller |
2006-03-19 | RCSID() can die | Theo de Raadt |
2006-02-20 | move #include <sys/stat.h> out of includes.h; ok markus@ | Kevin Steves |
2005-06-17 | make this -Wsign-compare clean; ok avsm@ markus@ | Damien Miller |
2004-12-11 | Fix debug call in error path of authorized_keys processing and fix related | Darren Tucker |
2004-12-06 | Discard over-length authorized_keys entries rather than complaining when | Darren Tucker |
2004-06-21 | make ssh -Wshadow clean, no functional changes | Anil Madhavapeddy |
2004-05-09 | kill some more tiny files; ok deraadt@ | Damien Miller |
2003-11-04 | standardise arguments to auth methods - they should all take authctxt. | Damien Miller |
2003-04-08 | rename log() into logit() to avoid name conflict. markus ok, from netbsd | Jun-ichiro itojun Hagino |
2002-06-10 | display minimum RSA modulus in error(); ok markus@ | Kevin Steves |
2002-03-29 | make RSA modulus minimum #define; ok markus@ | Kevin Steves |
2002-03-26 | disallow RSA keys < 768 for protocol 1, too (rhosts-rsa and rsa auth) | Markus Friedl |
2002-03-25 | return 0 (not NULL); tomh@po.crl.go.jp | Markus Friedl |
2002-03-18 | integrate privilege separated openssh; its turned off by default for now. | Niels Provos |
2002-03-14 | split auth_rsa() for better readability and privsep; ok provos@ | Markus Friedl |
2001-12-28 | packet_read* no longer return the packet length, since it's not used. | Markus Friedl |
2001-12-28 | s/packet_done/packet_check_eom/ (end-of-message); ok djm@ | Markus Friedl |
2001-12-27 | get rid of packet_integrity_check, use packet_done() instead. | Markus Friedl |
2001-12-27 | call fatal() for openssl allocation failures | Markus Friedl |
2001-12-18 | log fingerprint on successful public key authentication, simplify usage of ke... | Jakob Schlyter |
2001-11-29 | fix protocol error: send 'failed' message instead of a 2nd challenge | Markus Friedl |
2001-07-23 | use %lu; ok markus@ | Kevin Steves |
2001-06-25 | terminate secure_filename checking after checking homedir. that way it | Niels Provos |
2001-06-22 | merge authorized_keys2 into authorized_keys. | Markus Friedl |
2001-05-20 | configurable authorized_keys{,2} location; originally from peter@; ok djm@ | Markus Friedl |
2001-04-06 | do gid/groups-swap in addition to uid-swap, should help if /home/group | Markus Friedl |
2001-03-01 | KNF | Theo de Raadt |
2001-01-21 | split ssh.h and try to cleanup the #include mess. remove unnecessary #includes. | Markus Friedl |
2001-01-20 | typo | Markus Friedl |
2001-01-20 | pass the filename to auth_parse_options() | Markus Friedl |
2001-01-19 | move ssh1 definitions to ssh1.h, pathnames to pathnames.h | Markus Friedl |
2000-12-19 | replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned' | Markus Friedl |
2000-11-14 | parse options only if key matches; fixes some confusing messages seen by the ... | Markus Friedl |
2000-10-14 | do not send RSA challenge if key is not allowed by key-options; from eivind@T... | Markus Friedl |
2000-10-11 | clear auth options unless auth sucessfull | Markus Friedl |