| Age | Commit message (Expand) | Author |
|---|
| 2015-03-31 | don't fatal when a !ssh1 sshd is reexeced from a w/ssh1 listener; | Damien Miller |
| 2015-02-20 | UpdateHostKeys fixes: | Damien Miller |
| 2015-02-16 | partial backout of: | Damien Miller |
| 2015-02-16 | Revise hostkeys@openssh.com hostkey learning extension. | Damien Miller |
| 2015-01-31 | Let sshd load public host keys even when private keys are missing. | Damien Miller |
| 2015-01-26 | correctly match ECDSA subtype (== curve) for offered/recevied | Damien Miller |
| 2015-01-26 | Host key rotation support. | Damien Miller |
| 2015-01-20 | Reduce use of <sys/param.h> and transition to <limits.h> throughout. | Theo de Raadt |
| 2015-01-20 | kex_setup errors are fatal() | Markus Friedl |
| 2015-01-19 | store compat flags in struct ssh; ok djm@ | Markus Friedl |
| 2015-01-19 | adapt kex to sshbuf and struct ssh; ok djm@ | Markus Friedl |
| 2015-01-19 | update packet.c & isolate, introduce struct ssh | Markus Friedl |
| 2015-01-17 | fix hostkeys on ssh agent; found by unit test I'm about to commit | Damien Miller |
| 2015-01-14 | move authfd.c and its tentacles to the new buffer/key API; | Damien Miller |
| 2015-01-07 | workaround for the Meyer, et al, Bleichenbacher Side Channel Attack. | Ted Unangst |
| 2014-12-22 | make internal handling of filename arguments of "none" more consistent | Damien Miller |
| 2014-12-11 | explicitly include sys/param.h in files that use the howmany() macro; | Damien Miller |
| 2014-07-15 | Add support for Unix domain socket forwarding. A remote TCP port | Todd C. Miller |
| 2014-06-24 | New key API: refactor key-related functions to be more library-like, | Damien Miller |
| 2014-04-29 | make compiling against OpenSSL optional (make OPENSSL=no); | Markus Friedl |
| 2014-04-19 | Delete futile calls to RAND_seed. ok djm | Ted Unangst |
| 2014-04-18 | OpenSSH 6.5 and 6.6 have a bug that causes ~0.2% of connections | Damien Miller |
| 2014-04-12 | avoid crash at exit: check that pmonitor!=NULL before dereferencing; | Damien Miller |
| 2014-03-27 | disable weak proposals in sshd, but keep them in ssh; ok djm@ | Markus Friedl |
| 2014-03-26 | remove libwrap support. ok deraadt djm mfriedl | Ted Unangst |
| 2014-02-26 | ssh_gssapi_prepare_supported_oids needs GSSAPI | Markus Friedl |
| 2014-02-26 | bz#2107 - cache OIDs of supported GSSAPI mechanisms before privsep | Damien Miller |
| 2014-02-02 | convert memset of potentially-private data to explicit_bzero() | Damien Miller |
| 2014-01-31 | replace most bzero with explicit_bzero, except a few that cna be memset | Ted Unangst |
| 2014-01-29 | use kill(0, ...) instead of killpg(0, ...); on most operating systems | Damien Miller |
| 2014-01-27 | replace openssl MD5 with our ssh_digest_*; ok djm@ | Markus Friedl |
| 2014-01-09 | ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient, | Damien Miller |
| 2013-12-30 | refuse RSA keys from old proprietary clients/servers that use the | Damien Miller |
| 2013-12-06 | support ed25519 keys (hostkeys and user identities) using the public domain | Markus Friedl |
| 2013-11-20 | delay closure of in/out fds until after "Bad protocol version | Damien Miller |
| 2013-11-02 | use curve25519 for default key exchange (curve25519-sha256@libssh.org); | Markus Friedl |
| 2013-10-23 | include local address and port in "Connection from ..." message (only | Damien Miller |
| 2013-10-17 | include remote port in bad banner message; bz#2162 | Damien Miller |
| 2013-10-10 | bz#2139: fix re-exec fallback by ensuring that startup_pipe is correctly | Damien Miller |
| 2013-09-02 | All the instances of arc4random_stir() are bogus, since arc4random() | Theo de Raadt |
| 2013-08-22 | Stir PRNG after post-accept fork. The child gets a different PRNG state | Damien Miller |
| 2013-07-19 | add ssh-agent(1) support to sshd(8); allows encrypted hostkeys, | Markus Friedl |
| 2013-06-05 | When running sshd -D, close stderr unless we have explicitly requesting | Darren Tucker |
| 2013-05-17 | bye, bye xfree(); ok markus@ | Damien Miller |
| 2013-05-16 | Fix some "unused result" warnings found via clang and -portable. ok markus@ | Darren Tucker |
| 2013-05-16 | Add RekeyLimit to sshd with the same syntax as the client allowing rekeying | Darren Tucker |
| 2013-04-07 | Add -E option to ssh and sshd to append debugging logs to a specified file | Darren Tucker |
| 2013-04-06 | handle ECONNABORTED for accept(); ok deraadt some time ago... | Markus Friedl |
| 2013-02-11 | Add openssl version to debug output similar to the client. ok markus@ | Darren Tucker |
| 2012-11-04 | Support multiple required authentication via an AuthenticationMethods | Damien Miller |
