| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2001-05-20 | configurable authorized_keys{,2} location; originally from peter@; ok djm@ | Markus Friedl | |
| 2001-05-18 | improved kbd-interactive support. work by per@appgate.com and me | Markus Friedl | |
| 2001-04-13 | Add options ClientAliveInterval and ClientAliveCountMax to sshd. | Bob Beck | |
| This gives the ability to do a "keepalive" via the encrypted channel which can't be spoofed (unlike TCP keepalives). Useful for when you want to use ssh connections to authenticate people for something, and know relatively quickly when they are no longer authenticated. Disabled by default (of course). ok markus@ | |||
| 2001-04-12 | implement HostbasedAuthentication (= RhostRSAAuthentication for ssh v2) | Markus Friedl | |
| similar to RhostRSAAuthentication unless you enable (the experimental) HostbasedUsesNameFromPacketOnly option. please test. :) | |||
| 2001-03-25 | PrintLastLog option; from chip@valinux.com with some minor | Kevin Steves | |
| changes by me. ok markus@ | |||
| 2001-02-12 | PermitRootLogin={yes,without-password,forced-commands-only,no} | Markus Friedl | |
| (before this change, root could login even if PermitRootLogin==no) | |||
| 2001-02-11 | 1) clean up the MAC support for SSH-2 | Markus Friedl | |
| 2) allow you to specify the MAC with 'ssh -m' 3) or the 'MACs' keyword in ssh(d)_config 4) add hmac-{md5,sha1}-96 ok stevesk@, provos@ | |||
| 2001-02-03 | make ReverseMappingCheck optional in sshd_config; ok djm@,dugsong@ | Markus Friedl | |
| 2001-01-22 | rename skey -> challenge response. | Markus Friedl | |
| auto-enable kbd-interactive for ssh2 if challenge-reponse is enabled. | |||
| 2001-01-19 | only auth-chall.c needs #ifdef SKEY | Markus Friedl | |
| 2001-01-08 | implement option 'Banner /etc/issue.net' for ssh2, move version to | Markus Friedl | |
| 2.3.1 (needed for bugcompat detection, 2.3.0 would fail if Banner is enabled). | |||
| 2000-12-19 | replace 'unsigned bla' with 'u_bla' everywhere. also, replace 'char unsigned' | Markus Friedl | |
| with u_char. | |||
| 2000-11-12 | add support for RSA to SSH2. please test. | Markus Friedl | |
| there are now 3 types of keys: RSA1 is used by ssh-1 only, RSA and DSA are used by SSH2. you can use 'ssh-keygen -t rsa -f ssh2_rsa_file' to generate RSA keys for SSH2 and use the RSA keys for hostkeys or for user keys. SSH2 RSA or DSA keys are added to .ssh/authorised_keys2 as before. IdentityFile2, HostDsaKey and DSAAuthentication are obsolete. you can use multiple IdentityFile and HostKey for all types of keys. the option DSAAuthentication is replaced by PubkeyAuthetication. | |||
| 2000-10-14 | AllowTcpForwarding; from naddy@ | Markus Friedl | |
| 2000-10-11 | add support for s/key (kbd-interactive) to ssh2, based on work by ↵ | Markus Friedl | |
| mkiernan@avantgo.com and me | |||
| 2000-09-07 | cleanup copyright notices on all files. I have attempted to be accurate with | Theo de Raadt | |
| the details. everything is now under Tatu's licence (which I copied from his readme), and/or the core-sdi bsd-ish thing for deattack, or various openbsd developers under a 2-term bsd licence. We're not changing any rules, just being accurate. | |||
| 2000-07-22 | random early drop; ok theo, niels | Markus Friedl | |
| 2000-06-26 | MaxStartups: limit number of unauthenticated connections, work by theo and me | Markus Friedl | |
| 2000-06-20 | OpenBSD tag | Markus Friedl | |
| 2000-06-17 | add support for ssh v2 subsystems. ok markus@. | Jakob Schlyter | |
| 2000-05-31 | xauth_location support; pr 1234 | Markus Friedl | |
| 2000-05-06 | add DSAAuthetication option to ssh/sshd, document SSH2 in sshd.8 | Markus Friedl | |
| 2000-05-03 | GatewayPorts for sshd, ok deraadt@ | Markus Friedl | |
| 2000-05-03 | s/DsaKey/HostDSAKey/, document option | Markus Friedl | |
| 2000-05-01 | PidFile, pr 1210 | Markus Friedl | |
| 2000-04-14 | whitespace cleanup | Markus Friedl | |
| 2000-04-12 | add Cipher and Protocol options to ssh/sshd, e.g.: | Markus Friedl | |
| ssh -o 'Protocol 1,2' if you prefer proto 1, ssh -o 'Ciphers arcfour,3des-cbc' | |||
| 2000-04-06 | ssh2 server side, see README.openssh2; enable with 'sshd -2' | Markus Friedl | |
| 2000-01-04 | ipv6 support: mostly gethostbyname->getaddrinfo/getnameinfo, new features: | Markus Friedl | |
| sshd allows multiple ListenAddress and Port options. note that libwrap is not IPv6-ready. (based on patches from <kick@kyoto.wide.ad.jp> and fujiwara@rcac.tdi.co.jp) | |||
| 1999-11-24 | KNF, final part 3 | Markus Friedl | |
| 1999-11-24 | much more KNF | Theo de Raadt | |
| 1999-11-11 | IgnoreUserKnownHosts(default=no), used for RhostRSAAuth, ok deraadt,millert | Markus Friedl | |
| 1999-11-10 | add LogLevel {QUIET, FATAL, ERROR, INFO, CHAT, DEBUG} to ssh/sshd, | Markus Friedl | |
| obsoletes QuietMode and FascistLogging in sshd. | |||
| 1999-10-17 | remove AllowHosts, DenyHosts, SilentDeny server access control cruft - ↵ | Dug Song | |
| replace with LIBWRAP moved to child. ok markus@ deraat@ | |||
| 1999-10-12 | SilentDeny, don't log/answer refused connections, deraadt@ | Markus Friedl | |
| 1999-10-11 | Allow/Deny Users/Groups, from zzlevo@dd.chalmers.se, ok deraadt@ | Markus Friedl | |
| 1999-10-11 | UseLogin, default=no, from kpa@gmx.net, ok deraadt@ | Markus Friedl | |
| 1999-10-07 | You have Mail. Email fuer Dich. Karsten Patzwaldt <kpa@gmx.net> default=no | Markus Friedl | |
| 1999-10-07 | add skey to sshd: | Markus Friedl | |
| 1) pass *pw to auth_password() not user_name, do_authentication already keeps private copy of struct passwd for current user. 2) limit authentication attemps to 5, otherwise ssh -o 'NumberOfPasswordPrompts 100000' host lets you enter 100000 passwds 3) make s/key a run-time option in /etc/sshd_config 4) generate fake skeys, for s/key for nonexisting users, too limit auth-tries for nonexisting users, too. Note that % ssh -l nonexisting-user -o 'NumberOfPasswordPrompts 100000' host has NO limits in ssh-1.2.27 | |||
| 1999-10-01 | get rid of references to randomseedfile we dont need it. for sshd | Niels Provos | |
| just spit out a warning that the configuration option is obsolete. | |||
| 1999-09-29 | update krb4/AFS support to ssh-1.2.27-afs-kerberos-pl1 level, clean up ↵ | Dug Song | |
| unused variables, update manpages | |||
| 1999-09-28 | X11DisplayOffset; aaron | Theo de Raadt | |
| 1999-09-26 | i bet a lot of people didn't know what ssh 1.2.16 had a nice license. | Theo de Raadt | |
| well, except for the patent issues. someone in sweden (forget their name at the moment) cleaned out most of the patented code, and now this code removes rsa code. when this is done, it will link against libssl, but the work isn't completely done yet. then we need to bring this up to modern days, featurewise. | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |