| Age | Commit message (Expand) | Author |
|---|
| 2016-12-30 | fix deadlock when keys/principals command produces a lot of output | Damien Miller |
| 2016-11-30 | When a forced-command appears in both a certificate and an | Damien Miller |
| 2016-09-21 | cast uint64_t for printf | Damien Miller |
| 2016-09-21 | add a way for principals command to get see key ID and serial too | Damien Miller |
| 2016-09-14 | take fingerprint of correct key for AuthorizedPrincipalsCommand | Damien Miller |
| 2016-09-14 | add %-escapes to AuthorizedPrincipalsCommand to match those supported | Damien Miller |
| 2016-01-27 | make the debug messages a bit more useful here | Damien Miller |
| 2015-10-27 | log certificate serial in verbose() messages to match the main | Damien Miller |
| 2015-06-15 | If AuthorizedPrincipalsCommand is specified, however | Joel Sing |
| 2015-06-15 | Make the arguments to match_principals_command() similar to | Joel Sing |
| 2015-05-21 | add AuthorizedPrincipalsCommand that allows getting authorized_principals | Damien Miller |
| 2015-05-21 | support arguments to AuthorizedKeysCommand | Damien Miller |
| 2015-05-04 | Remove pattern length argument from match_pattern_list(), | Damien Miller |
| 2015-05-01 | prevent authorized_keys options picked up on public key tests without | Damien Miller |
| 2015-02-17 | Regression: I broke logging of public key fingerprints in 1.46. | Damien Miller |
| 2015-01-28 | update to new API (key_fingerprint => sshkey_fingerprint) | Damien Miller |
| 2015-01-13 | add sshd_config HostbasedAcceptedKeyTypes and PubkeyAcceptedKeyTypes | Damien Miller |
| 2014-12-22 | remember which public keys have been used for authentication and | Damien Miller |
| 2014-12-21 | Add FingerprintHash option to control algorithm used for key | Damien Miller |
| 2014-12-04 | add RevokedHostKeys option for the client | Damien Miller |
| 2014-07-15 | Add support for Unix domain socket forwarding. A remote TCP port | Todd C. Miller |
| 2014-06-24 | New key API: refactor key-related functions to be more library-like, | Damien Miller |
| 2013-12-30 | refuse RSA keys from old proprietary clients/servers that use the | Damien Miller |
| 2013-06-21 | for hostbased authentication, print the client host and user on | Damien Miller |
| 2013-05-19 | fix failure to recognise cert-authority keys if a key of a different type | Damien Miller |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2013-03-07 | reconstruct the original username that was sent by the client, which may | Damien Miller |
| 2013-02-14 | Correct error message that had a typo and was logging the wrong thing; | Damien Miller |
| 2012-11-14 | fix username passed to helper program | Damien Miller |
| 2012-11-04 | Remove default of AuthorizedCommandUser. Administrators are now expected | Damien Miller |
| 2012-10-30 | new sshd_config option AuthorizedKeysCommand to support fetching | Damien Miller |
| 2011-09-25 | improve the AuthorizedPrincipalsFile debug log message to include | Damien Miller |
| 2011-05-23 | allow AuthorizedKeysFile to specify multiple files, separated by spaces. | Damien Miller |
| 2011-05-11 | remove support for authorized_keys2; it is a relic from the early days | Damien Miller |
| 2010-11-20 | clean up cases of ;; | Theo de Raadt |
| 2010-06-29 | allow key options (command="..." and friends) in AuthorizedPrincipals; | Damien Miller |
| 2010-05-20 | fix logspam when key options (from="..." especially) deny non-matching keys; | Damien Miller |
| 2010-05-07 | add some optional indirection to matching of principal names listed | Damien Miller |
| 2010-04-16 | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the | Damien Miller |
| 2010-03-10 | correct certificate logging and make it more consistent between | Damien Miller |
| 2010-03-04 | Add a TrustedUserCAKeys option to sshd_config to specify CA keys that | Damien Miller |
| 2010-02-26 | Add support for certificate key types for users and hosts. | Damien Miller |
| 2008-07-03 | avoid nasty double free; ok dtucker@ djm@ | Otto Moerbeek |
| 2008-07-02 | Merge duplicate host key file checks, based in part on a patch from Rob | Darren Tucker |
| 2008-06-13 | Include unistd.h for close(), prevents warnings in -portable | Darren Tucker |
| 2008-06-13 | refuse to read ~/.shosts or ~/.ssh/authorized_keys that are not | Damien Miller |
| 2006-08-03 | almost entirely get rid of the culture of ".h files that include .h files" | Theo de Raadt |
| 2006-08-01 | move #include <stdio.h> out of includes.h | Kevin Steves |
| 2006-07-06 | move #include <pwd.h> out of includes.h; ok markus@ | Kevin Steves |
| 2006-03-25 | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | Damien Miller |
