summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/sshd_config.5
AgeCommit message (Expand)Author
2012-04-12mention AuthorizedPrincipalsFile=none defaultDamien Miller
2012-04-12VersionAddendum option to allow server operators to append some arbitraryDamien Miller
2011-09-09fix typo in IPQoS parsing: there is no "AF14" class, but there isDamien Miller
2011-08-02Add new SHA256 and SHA512 based HMAC modes fromDamien Miller
2011-06-22introduce sandboxing of the pre-auth privsep child using systrace(4).Damien Miller
2011-05-23tweak previous; ok djmJason McIntyre
2011-05-23allow AuthorizedKeysFile to specify multiple files, separated by spaces.Damien Miller
2010-12-08explain that IPQoS arguments are separated by whitespace; iirc requestedDamien Miller
2010-11-18add IPQoS to the various -o lists, and zap some trailing whitespace;Jason McIntyre
2010-11-13allow ssh and sshd to set arbitrary TOS/DSCP/QoS values instead ofDamien Miller
2010-10-28knock out some "-*- nroff -*-" lines;Jason McIntyre
2010-09-22add a KexAlgorithms knob to the client and server configuration to allowDamien Miller
2010-08-31Implement Elliptic Curve Cryptography modes for key exchange (ECDH) andDamien Miller
2010-06-30tweak previous;Jason McIntyre
2010-06-29allow key options (command="..." and friends) in AuthorizedPrincipals;Damien Miller
2010-06-22expose some more sshd_config options inside Match blocks:Damien Miller
2010-05-07tweak previous;Jason McIntyre
2010-05-07add some optional indirection to matching of principal names listedDamien Miller
2010-03-04missing word; spotted by jmc@Damien Miller
2010-03-04tweak previous;Jason McIntyre
2010-03-04Add a TrustedUserCAKeys option to sshd_config to specify CA keys thatDamien Miller
2010-02-26Add support for certificate key types for users and hosts.Damien Miller
2010-01-09Remove RoutingDomain from ssh since it's now not needed. It can be replacedDarren Tucker
2009-12-29sort previous;Jason McIntyre
2009-12-29Rename RDomain config option to RoutingDomain to be more clear andKevin Steves
2009-12-19try to clarify ChrootDirectory pathname argument a bit; resulting fromKevin Steves
2009-11-10clarify that StrictModes does not apply to ChrootDirectory. PermissionsDamien Miller
2009-10-28tweak previous;Jason McIntyre
2009-10-28Allow to set the rdomain in ssh/sftp/scp/sshd and ssh-keyscan.Reyk Floeter
2009-10-08some tweaks now that protocol 1 is not offered by default; ok markusJason McIntyre
2009-10-08disable protocol 1 by default (after a transition period of about 10 years)Markus Friedl
2009-08-16Add PubkeyAuthentication to the list allowed in a Match block (bz #1577)Darren Tucker
2009-04-21clarify we cd to user's home after chroot; ok markus@ onKevin Steves
2009-04-18tweak previous; ok steveskJason McIntyre
2009-04-17clarify that even internal-sftp needs /dev/log for logging to work; okKevin Steves
2009-04-13fix possessive; ok djm@Kevin Steves
2009-02-22missing periodDamien Miller
2009-02-22don't advertise experimental optionsDamien Miller
2009-01-24sync list of preferred ciphers; ok djm@Christian Weisgerber
2008-12-30add AllowAgentForwarding to available Match keywords listOkan Demirmen
2008-11-04Add support for an experimental zero-knowledge password authenticationDamien Miller
2008-10-09support setting PermitEmptyPasswords in a Match blockDamien Miller
2008-07-02increase default size of ssh protocol 1 ephemeral key from 768 to 1024Damien Miller
2008-06-15Allow MaxAuthTries within a Match block. ok djm@Darren Tucker
2008-06-15MaxSessions is allowed in a Match block tooDarren Tucker
2008-06-10tweak previous;Jason McIntyre
2008-06-10better reference for pattern-listDamien Miller
2008-06-10support CIDR address matching in sshd_config "Match address" blocks, withDamien Miller
2008-05-08Make the maximum number of sessions run-time controllable viaDamien Miller
2008-05-07sort;Jason McIntyre
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-05 01:53:17 +0000