| Age | Commit message (Expand) | Author |
|---|
| 2016-01-14 | fd leaks; report Qualys Security Advisory team; ok deraadt@ | Markus Friedl |
| 2016-01-14 | remove roaming support; ok djm@ | Markus Friedl |
| 2015-11-20 | add cast to make -Werror clean | Damien Miller |
| 2015-11-19 | ban ConnectionAttempts=0, it makes no sense and would cause | Damien Miller |
| 2015-11-19 | print host certificate contents at debug level | Damien Miller |
| 2015-11-15 | Add an AddKeysToAgent client option which can be set to 'yes', 'no', | Joshua Stein |
| 2015-09-04 | correct function name in error messages | Damien Miller |
| 2015-09-04 | remove extra newline in nethack-mode hostkey; | Damien Miller |
| 2015-08-20 | Do not cast result of malloc/calloc/realloc* if stdlib.h is in scope | Theo de Raadt |
| 2015-05-28 | Increase the allowed length of the known host file name in the log | Darren Tucker |
| 2015-04-14 | Output remote username in debug output since with Host and Match it's not | Darren Tucker |
| 2015-03-24 | fix double-negative error message "ssh1 is not unsupported" | Damien Miller |
| 2015-01-28 | update to new API (key_fingerprint => sshkey_fingerprint) | Damien Miller |
| 2015-01-26 | correctly match ECDSA subtype (== curve) for offered/recevied | Damien Miller |
| 2015-01-26 | Host key rotation support. | Damien Miller |
| 2015-01-20 | Reduce use of <sys/param.h> and transition to <limits.h> throughout. | Theo de Raadt |
| 2015-01-19 | store compat flags in struct ssh; ok djm@ | Markus Friedl |
| 2014-12-21 | Add FingerprintHash option to control algorithm used for key | Damien Miller |
| 2014-12-11 | explicitly include sys/param.h in files that use the howmany() macro; | Damien Miller |
| 2014-12-04 | add RevokedHostKeys option for the client | Damien Miller |
| 2014-07-15 | Add support for Unix domain socket forwarding. A remote TCP port | Todd C. Miller |
| 2014-07-03 | when rekeying, skip file/DNS lookup if it is the same as the key sent | Damien Miller |
| 2014-06-24 | New key API: refactor key-related functions to be more library-like, | Damien Miller |
| 2014-04-29 | make compiling against OpenSSL optional (make OPENSSL=no); | Markus Friedl |
| 2014-04-01 | When using VerifyHostKeyDNS with a DNSSEC resolver, down-convert any | Damien Miller |
| 2014-02-06 | in ssh_create_socket(), only do the getaddrinfo for BindAddress when | Damien Miller |
| 2014-02-02 | convert memset of potentially-private data to explicit_bzero() | Damien Miller |
| 2014-01-09 | ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient, | Damien Miller |
| 2013-12-30 | refuse RSA keys from old proprietary clients/servers that use the | Damien Miller |
| 2013-12-29 | when showing other hostkeys, don't forget Ed25519 keys | Damien Miller |
| 2013-10-16 | Implement client-side hostname canonicalisation to allow an explicit | Damien Miller |
| 2013-09-19 | bz#1211: make BindAddress work with UsePrivilegedPort=yes; patch from | Damien Miller |
| 2013-08-20 | Add a ssh_config ProxyUseFDPass option that supports the use of | Damien Miller |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2013-02-22 | support ProxyCommand=- (stdin/out already point to the proxy); ok djm@ | Markus Friedl |
| 2012-09-14 | remove unused variable | Markus Friedl |
| 2012-08-17 | Send client banner immediately, rather than waiting for the server to | Damien Miller |
| 2011-05-24 | Remove undocumented legacy options UserKnownHostsFile2 and | Damien Miller |
| 2011-05-23 | remove extra newline | Damien Miller |
| 2011-01-16 | reset the SIGPIPE handler when forking to execute child processes; | Damien Miller |
| 2011-01-06 | reset SIGCHLD handler to SIG_DFL when execuring LocalCommand; | Damien Miller |
| 2010-12-14 | don't mention key type in key-changed-warning, since we also print | Markus Friedl |
| 2010-11-29 | automatically order the hostkeys requested by the client based on | Damien Miller |
| 2010-10-06 | swapped args to kill(2) | Damien Miller |
| 2010-10-06 | kill proxy command on fatal() (we already kill it on clean exit); | Damien Miller |
| 2010-10-05 | use default shell /bin/sh if $SHELL is ""; ok markus@ | Damien Miller |
| 2010-08-31 | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and | Damien Miller |
| 2010-04-16 | oops, %r => remote username, not %u | Damien Miller |
| 2010-04-16 | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the | Damien Miller |
| 2010-04-14 | expand %r => remote username in ssh_config:ProxyCommand; | Damien Miller |
