summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2015-05-22add knob to relax GSSAPI host credential check for multihomed hostsDamien Miller
2015-05-22Update DH groupsDarren Tucker
2015-05-21Support "ssh-keygen -lF hostname" to find search known_hosts andDamien Miller
2015-05-21add AuthorizedPrincipalsCommand that allows getting authorized_principalsDamien Miller
2015-05-21support arguments to AuthorizedKeysCommandDamien Miller
2015-05-21refactor: split base64 encoding of pubkey into its ownDamien Miller
2015-05-18getentropy() and sendsyslog() have been around long enough.Theo de Raadt
2015-05-15Use a salted hash of the lock passphrase instead of plain text and doDarren Tucker
2015-05-08moar whitespace at eolDamien Miller
2015-05-08whitespace at EOLDamien Miller
2015-05-08whitespace at EOLDamien Miller
2015-05-08Use xcalloc for permitted_adm_opens instead of xmalloc to ensure it's zeroed.Darren Tucker
2015-05-08don't choke on new-format private keys encrypted with an AEAD cipher;Damien Miller
2015-05-06Clarify pseudo-terminal request behaviour and use "pseudo-terminal"Darren Tucker
2015-05-06Blacklist DH-GEX for specific PuTTY versions known to send non-RFC4419Darren Tucker
2015-05-05WinSCP doesn't implement RFC4419 DH-GEX so flag it so we don't offer thatDarren Tucker
2015-05-05use the sizeof the struct not the sizeof a pointer to the structJonathan Gray
2015-05-04Remove pattern length argument from match_pattern_list(),Damien Miller
2015-05-01mention that the user's shell from /etc/passwd is used for commandsDamien Miller
2015-05-01refactor ssh_dispatch_run_fatal() to use sshpkt_fatal() to betterDamien Miller
2015-05-01a couple of parse targets were missing activep checks, causing themDamien Miller
2015-05-01make handling of AuthorizedPrincipalsFile=none more consistentDamien Miller
2015-05-01remove failed remote forwards established by muliplexing from theDamien Miller
2015-05-01reduce stderr spam when using ssh -S /path/mux -O forward -R 0:...Damien Miller
2015-05-01prevent authorized_keys options picked up on public key tests withoutDamien Miller
2015-05-01Don't make parsing of authorized_keys' environment= option conditionalDamien Miller
2015-04-29Allow ListenAddress, Port and AddressFamily in any order. bz#68,Darren Tucker
2015-04-28enviroment -> environment: apologies to darren for not spotting that firstJason McIntyre
2015-04-28Fix typo in previousDarren Tucker
2015-04-28Document that the TERM environment variable is not subject to SendEnvDarren Tucker
2015-04-27Make sshd default to PermitRootLogin=no;Damien Miller
2015-04-27more OPENSSL=no fixes; ok dtucker@Damien Miller
2015-04-27fix compilation with OPENSSL=no; ok dtucker@Damien Miller
2015-04-27Include stdio.h for FILE (used in sshkey.h) so it compiles with OPENSSL=no.Darren Tucker
2015-04-27allow "sshd -f none" to skip reading the config file, much likeDamien Miller
2015-04-24combine -Dd onto one line and update usage();Jason McIntyre
2015-04-24add ssh-agent -D to leave ssh-agent in foreground without enablingDamien Miller
2015-04-242*len -> use xreallocarray()Theo de Raadt
2015-04-24rename xrealloc() to xreallocarray() since it follows that form.Theo de Raadt
2015-04-23Two small fixes for sshd -T: ListenAddress'es are added to a list head soDarren Tucker
2015-04-23Check for and reject missing arguments for VersionAddendum and ForceCommand.Darren Tucker
2015-04-22unknown certificate extensions are non-fatal, so don't fatalDamien Miller
2015-04-21Add back a backslash removed in rev 1.42 so KEX_SERVER_ENCRYPT willJonathan Gray
2015-04-17s/recommended/required/ that private keys be og-rDamien Miller
2015-04-17don't try to cleanup NULL KEX proposals in kex_prop_free();Damien Miller
2015-04-17use error/logit/fatal instead of fprintf(stderr, ...) and exit(0),Damien Miller
2015-04-17debug log missing DISPLAY environment when X11 forwardingDamien Miller
2015-04-17don't call record_login() in monitor when UseLogin is enabled;Damien Miller
2015-04-17Add some missing options to sshd -T and fix the output of VersionAddendumDarren Tucker
2015-04-16Document "none" for PidFile XAuthLocation TrustedUserCAKeys and RevokedKeys.Darren Tucker
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-18 04:56:02 +0000