| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2012-08-24 | comment about bsd.own.mk is now false; ok markus | Theo de Raadt | |
| 2012-08-17 | Send client banner immediately, rather than waiting for the server to | Damien Miller | |
| move first for SSH protocol 2 connections (the default). Patch based on one in bz#1999 by tls AT panix.com, feedback dtucker@ ok markus@ | |||
| 2012-08-17 | print details of which host lines were deleted when using | Damien Miller | |
| "ssh-keygen -R host"; ok markus@ | |||
| 2012-08-17 | add some comments about better handling first-KEX-follows notifications | Damien Miller | |
| from the server. Nothing uses these right now. No binary change | |||
| 2012-08-17 | Force a clean shutdown of ControlMaster client sessions when the ~. escape | Darren Tucker | |
| sequence is used. This means that ~. should now work in mux clients even if the server is no longer responding. Found by tedu, ok djm. | |||
| 2012-08-15 | a little more info on certificate validity; | Jason McIntyre | |
| requested by Ross L Richardson, and provided by djm | |||
| 2012-08-02 | remove leftover NOLINT, WANTLINT, LINTFLAGS, LOBJ vars and lint targets. | Okan Demirmen | |
| ok guenther@ | |||
| 2012-07-22 | openssh 6.1 | Markus Friedl | |
| 2012-07-13 | handle long comments in config files better. bz#2025, ok markus | Darren Tucker | |
| 2012-07-10 | Turn on systrace sandboxing of pre-auth sshd by default for new installs | Damien Miller | |
| by shipping a config that overrides the current UsePrivilegeSeparation=yes default. Make it easier to flip the default in the future by adding too. prodded markus@ feedback dtucker@ "get it in" deraadt@ | |||
| 2012-07-06 | missing full stop in usage(); | Jason McIntyre | |
| 2012-07-06 | move setting of tty_flag to after config parsing so RequestTTY options | Damien Miller | |
| are correctly picked up. bz#1995 patch from przemoc AT gmail.com; ok dtucker@ | |||
| 2012-07-06 | fix memory leak of passed-in environment variables and connection | Damien Miller | |
| context when new session message is malformed; bz#2003 from Bert.Wesarg AT googlemail.com | |||
| 2012-07-06 | Add options to specify starting line number and number of lines to process | Darren Tucker | |
| when screening moduli candidates. This allows processing of different parts of a candidate moduli file in parallel. man page help jmc@, ok djm@ | |||
| 2012-07-02 | fix a couple of "assigned but not used" warnings. ok markus@ | Darren Tucker | |
| 2012-07-02 | set interactive ToS for forwarded X11 sessions. ok djm@ | Darren Tucker | |
| 2012-06-30 | fix a during the load of the sandbox policies (child can still make | Markus Friedl | |
| the read-syscall and wait forever for systrace-answers) by replacing the read/write synchronisation with SIGSTOP/SIGCONT; report and help hshoexer@; ok djm@, dtucker@ | |||
| 2012-06-29 | match the documented MAC order of preference to the actual one; ok dtucker@ | Christian Weisgerber | |
| 2012-06-28 | Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed | Darren Tucker | |
| from draft6 of the spec and will not be in the RFC when published. Patch from mdb at juniper net via bz#2023, ok markus. | |||
| 2012-06-26 | Add mquery to the list of allowed syscalls for "UsePrivilegeSeparation | Darren Tucker | |
| sandbox" since malloc now uses it. From johnw.mail at gmail com. | |||
| 2012-06-22 | Remove unused variable leftover from tab-completion changes. | Darren Tucker | |
| From Steve.McClellan at radisys com, ok markus@ | |||
| 2012-06-22 | remove dead code following 'for (;;)' loops. | Darren Tucker | |
| From Steve.McClellan at radisys com, ok markus@ | |||
| 2012-06-21 | fix strlcpy truncation check. from carsten at debian org, ok markus | Darren Tucker | |
| 2012-06-20 | initialise accept() backoff timer to avoid EINVAL from select(2) in | Damien Miller | |
| rekeying | |||
| 2012-06-19 | tweak previous; ok markus | Jason McIntyre | |
| 2012-06-19 | sshd_config: extend Match to allow AcceptEnv and {Allow,Deny}{Users,Groups} | Markus Friedl | |
| this allows 'Match LocalPort 1022' combined with 'AllowUser bauer' ok djm@ (back in March) | |||
| 2012-06-18 | Clarify description of -W. Noted by Steve.McClellan at radisys com, ok jmc | Darren Tucker | |
| 2012-06-18 | Remove mention of 'three' key files since there are now four. From | Darren Tucker | |
| Steve.McClellan at radisys com. | |||
| 2012-06-18 | RSA instead of DSA twice. From Steve.McClellan at radisys com | Darren Tucker | |
| 2012-06-18 | correct sizeof usage. patch from saw at online.de, ok deraadt | Darren Tucker | |
| 2012-06-01 | fix memory leak when mux socket creation fails; bz#2002 from bert.wesarg | Damien Miller | |
| AT googlemail.com | |||
| 2012-06-01 | correct types of port numbers (integers, not strings); bz#2004 from | Damien Miller | |
| bert.wesarg AT googlemail.com | |||
| 2012-05-23 | add support for RFC6594 SSHFP DNS records for ECDSA key types. | Damien Miller | |
| patch from bugzilla-m67 AT nulld.me in bz#1978; ok + tweak markus@ | |||
| 2012-05-19 | Document PermitOpen none. bz#2001, patch from Loganaden Velvindron | Darren Tucker | |
| 2012-05-13 | Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests | Darren Tucker | |
| to match. Feedback and ok djm@ markus@. | |||
| 2012-04-23 | fix function proto/source mismatch | Damien Miller | |
| 2012-04-20 | use "brackets" instead of "braces", for consistency; | Jason McIntyre | |
| 2012-04-20 | setlinebuf(3) is more readable than setvbuf(.., _IOLBF, ...) | Damien Miller | |
| 2012-04-12 | mention AuthorizedPrincipalsFile=none default | Damien Miller | |
| 2012-04-12 | VersionAddendum option to allow server operators to append some arbitrary | Damien Miller | |
| text to the SSH-... banner; ok deraadt@ "don't care" markus@ | |||
| 2012-04-11 | now that sshd defaults to offering ECDSA keys, ssh-keyscan should also | Damien Miller | |
| look for them by default; bz#1971 | |||
| 2012-04-11 | don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a | Damien Miller | |
| while; ok deraadt@ markus@ | |||
| 2012-04-11 | Support "none" as an argument for AuthorizedPrincipalsFile to indicate | Damien Miller | |
| no file should be read. | |||
| 2012-04-11 | don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a | Damien Miller | |
| while; ok deraadt@ markus@ | |||
| 2012-03-29 | Add PermitOpen none option based on patch from Loganaden Velvindron | Darren Tucker | |
| (bz #1949). ok djm@ | |||
| 2012-03-28 | explain certificate extensions/crit split rationale. Mention requirement | Damien Miller | |
| that each appear at most once per cert. | |||
| 2012-03-15 | root should always be excluded from the test for /etc/nologin instead | Philip Guenthe | |
| of having it always enforced even when marked as ignorenologin. This regressed when the logic was incompletely flipped around in rev 1.251 ok halex@ millert@ | |||
| 2012-02-29 | allow conversion of RSA1 keys to public PEM and PKCS8; "nice" markus@ | Damien Miller | |
| 2012-02-09 | move from 6.0-beta to 6.0 | Markus Friedl | |
| 2012-01-25 | packet_read_poll() is not used anymore. | Markus Friedl | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |