summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/readconf.c
AgeCommit message (Expand)Author
2014-04-23don't record duplicate IdentityFilesDamien Miller
2014-02-23reparse ssh_config and ~/.ssh/config if hostname canonicalisation changesDamien Miller
2014-02-22when processing Match blocks, skip 'exec' clauses if previous predicatesDamien Miller
2014-01-29remove experimental, never-enabled JPAKE code; ok markus@Damien Miller
2013-12-06support ed25519 keys (hostkeys and user identities) using the public domainMarkus Friedl
2013-11-20unsigned casts for ctype macros where neccessaryTheo de Raadt
2013-10-24Disallow empty Match statements and add "Match all" which matches everything.Darren Tucker
2013-10-23commentDamien Miller
2013-10-23Hostname may have %h sequences that should be expanded prior to MatchDamien Miller
2013-10-20rename "command" subclause of the recently-added "Match" keyword toDamien Miller
2013-10-16s/canonicalise/canonicalize/ for consistency with existing spelling,Damien Miller
2013-10-16Implement client-side hostname canonicalisation to allow an explicitDamien Miller
2013-10-14refactor client config code a little:Damien Miller
2013-10-14add a "Match" keyword to ssh_config that allows matching on hostname,Damien Miller
2013-08-20Add a ssh_config ProxyUseFDPass option that supports the use ofDamien Miller
2013-06-10revert 1.203 while we investigate crashes reported by okan@Darren Tucker
2013-06-05plug another memleak. bz#1967, from Zhenbo Xu, detected by Melton, ok djmDarren Tucker
2013-05-17bye, bye xfree(); ok markus@Damien Miller
2013-05-16remove now-unused variablesDarren Tucker
2013-05-16switch RekeyLimit traffic volume parsing to scan_scaled. ok djm@Darren Tucker
2013-05-16add the ability to ignore specific unrecognised ssh_config options;Damien Miller
2013-05-16Add an optional second argument to RekeyLimit in the client to allowDarren Tucker
2013-03-06g/c unused variable (-Wunused)Damien Miller
2013-02-22Don't complain if IdentityFiles specified in system-wide configs are missing.Darren Tucker
2013-02-17Keep track of which IndentityFile options were manually supplied and whichDarren Tucker
2011-09-23unbreak remote portforwarding with dynamic allocated listen ports:Markus Friedl
2011-05-24Remove undocumented legacy options UserKnownHostsFile2 andDamien Miller
2011-05-06Add a RequestTTY ssh_config option to allow configuration-basedDamien Miller
2011-05-06support negated Host matching, e.g.Damien Miller
2010-11-13allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead ofDamien Miller
2010-09-22add a KexAlgorithms knob to the client and server configuration to allowDamien Miller
2010-08-31Implement Elliptic Curve Cryptography modes for key exchange (ECDH) andDamien Miller
2010-07-19add a "ControlPersist" option that automatically starts a backgroundDamien Miller
2010-06-25Add X11ForwardTimeout option to specify timeout for untrusted X11Damien Miller
2010-06-25bz#1327: remove hardcoded limit of 100 permitopen clauses and portDamien Miller
2010-05-16mux support for remote forwarding with dynamic port allocation,Markus Friedl
2010-02-08replace our obsolete smartcard code with PKCS#11.Markus Friedl
2010-01-09Remove RoutingDomain from ssh since it's now not needed. It can be replacedDarren Tucker
2009-12-29Rename RDomain config option to RoutingDomain to be more clear andKevin Steves
2009-12-25validate routing domain is in range 0-RT_TABLEID_MAX.Kevin Steves
2009-10-28Allow to set the rdomain in ssh/sftp/scp/sshd and ssh-keyscan.Reyk Floeter
2009-10-08disable protocol 1 by default (after a transition period of about 10 years)Markus Friedl
2009-06-27Add client option UseRoaming. It doesn't do anything yet but willAndreas Gunnarsson
2009-02-12support remote port forwarding with a zero listen port (-R0:...) toDamien Miller
2009-01-22make a2port() return -1 when it encounters an invalid port numberDamien Miller
2009-01-151) use obsolete instead of alias for consistencyKevin Steves
2008-12-09don't leave junk (free'd) pointers around in Forward *fwd argument onDamien Miller
2008-11-04because parse_forward() is now used to parse all forward types (DLR),Kevin Steves
2008-11-04Add support for an experimental zero-knowledge password authenticationDamien Miller
2008-11-03fix commentKevin Steves