| Age | Commit message (Expand) | Author |
|---|
| 2017-05-17 | allow LogLevel in sshd_config Match blocks; ok dtucker bz#2717 | Damien Miller |
| 2017-04-27 | remove a static array unused since rev 1.306 spotted by clang | Jonathan Gray |
| 2017-03-14 | Mark the sshd_config UsePrivilegeSeparation option as deprecated, | Damien Miller |
| 2017-03-10 | Remove old null check from config dumper. Patch from jjelen at redhat.com | Darren Tucker |
| 2017-02-03 | support =- for removing methods from algorithms lists, e.g. | Damien Miller |
| 2017-02-03 | allow form-feed characters at EOL; bz#2431 ok dtucker@ | Damien Miller |
| 2017-01-06 | sshd_config is documented to set GSSAPIStrictAcceptorCheck=yes by | Damien Miller |
| 2016-11-30 | Add a sshd_config DisableForwaring option that disables X11, agent, | Damien Miller |
| 2016-11-23 | allow ClientAlive{Interval,CountMax} in Match; ok dtucker, djm | Markus Friedl |
| 2016-11-06 | Validate address ranges for AllowUser/DenyUsers at configuration load | Damien Miller |
| 2016-10-24 | Remove dead breaks, found via opencoverage.net. ok deraadt@ | Darren Tucker |
| 2016-09-28 | restore pre-auth compression support in the client -- the previous | Damien Miller |
| 2016-09-28 | Remove support for pre-authentication compression. Doing compression | Damien Miller |
| 2016-08-25 | add a sIgnore opcode that silently ignores options and use it to | Damien Miller |
| 2016-08-19 | remove UseLogin option and support for having /bin/login manage | Damien Miller |
| 2016-08-15 | Remove more SSH1 server code: | Christian Weisgerber |
| 2016-06-23 | fix AuthenticationMethods during configuration re-parse; | Damien Miller |
| 2016-06-17 | ban AuthenticationMethods="" and accept AuthenticationMethods=any | Damien Miller |
| 2016-05-04 | Fix inverted logic for updating StreamLocalBindMask which would cause the | Darren Tucker |
| 2016-05-03 | fix overriding of StreamLocalBindMask and StreamLocalBindUnlink in | Damien Miller |
| 2016-05-03 | don't forget to include StreamLocalBindUnlink in the config | Damien Miller |
| 2016-05-02 | fix signed/unsigned errors reported by clang-3.7; add | Damien Miller |
| 2016-03-07 | refactor canohost.c: move functions that cache results closer to the | Damien Miller |
| 2016-02-17 | make sandboxed privilege separation the default, not just for new | Damien Miller |
| 2016-01-29 | Allow RekeyLimits in excess of 4G up to 2**63 bits (limited by the return | Darren Tucker |
| 2015-11-13 | Support "none" as an argument for sshd_config ForceCommand and | Damien Miller |
| 2015-10-29 | Fix "PubkeyAcceptedKeyTypes +..." inside a Match block; ok dtucker@ | Damien Miller |
| 2015-08-21 | Fix expansion of HostkeyAlgorithms=+... | Damien Miller |
| 2015-08-06 | add prohibit-password as a synonymn for without-password, since the | Theo de Raadt |
| 2015-07-31 | Allow PermitRootLogin to be overridden by config | Chris Cappuccio |
| 2015-07-30 | change default: PermitRootLogin without-password | Theo de Raadt |
| 2015-07-30 | Allow ssh_config and sshd_config kex parameters options be prefixed | Damien Miller |
| 2015-07-10 | Turn off DSA by default; add HostKeyAlgorithms to the server and | Markus Friedl |
| 2015-07-01 | twiddle PermitRootLogin back | Damien Miller |
| 2015-07-01 | twiddle; (this commit marks the openssh-6.9 release) | Damien Miller |
| 2015-07-01 | put back default PermitRootLogin=no | Damien Miller |
| 2015-07-01 | reset default PermitRootLogin to 'yes' (momentarily, for release) | Damien Miller |
| 2015-05-22 | add knob to relax GSSAPI host credential check for multihomed hosts | Damien Miller |
| 2015-05-21 | add AuthorizedPrincipalsCommand that allows getting authorized_principals | Damien Miller |
| 2015-05-04 | Remove pattern length argument from match_pattern_list(), | Damien Miller |
| 2015-05-01 | a couple of parse targets were missing activep checks, causing them | Damien Miller |
| 2015-05-01 | make handling of AuthorizedPrincipalsFile=none more consistent | Damien Miller |
| 2015-04-29 | Allow ListenAddress, Port and AddressFamily in any order. bz#68, | Darren Tucker |
| 2015-04-27 | Make sshd default to PermitRootLogin=no; | Damien Miller |
| 2015-04-24 | rename xrealloc() to xreallocarray() since it follows that form. | Theo de Raadt |
| 2015-04-23 | Two small fixes for sshd -T: ListenAddress'es are added to a list head so | Darren Tucker |
| 2015-04-23 | Check for and reject missing arguments for VersionAddendum and ForceCommand. | Darren Tucker |
| 2015-04-17 | Add some missing options to sshd -T and fix the output of VersionAddendum | Darren Tucker |
| 2015-02-02 | increasing encounters with difficult DNS setups in darknets has | Theo de Raadt |
| 2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
