summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2016-03-17UseDNS affects ssh hostname processing in authorized_keys, notDamien Miller
2016-03-14unbreak authentication using lone certificate keys in ssh-agent:Damien Miller
2016-03-10sanitise characters destined for xauthDamien Miller
2016-03-07refactor canohost.c: move functions that cache results closer to theDamien Miller
2016-03-04fix ClientAliveInterval when a time-based RekeyLimit is set;Damien Miller
2016-03-02Improve accuracy of reported transfer speeds by waiting for the ack fromDarren Tucker
2016-03-02Improve precision of progressmeter for sftp and scp by storing sub-secondDarren Tucker
2016-03-01Update moduli file.Darren Tucker
2016-02-29Print ssize_t with %zd; ok deraadt@ mmcc@Jeremie Courreges-Anglas
2016-02-28rearrange DH public value tests to be a little more clearDamien Miller
2016-02-23openssh-7.2Damien Miller
2016-02-23fix spurious error message when incorrect passphrase entered forDamien Miller
2016-02-20set ssh(1) protocol version to 2 only.Igor Sobrado
2016-02-20add missing ~/.ssh/id_ecdsa and ~/.ssh/id_ed25519 to IdentityFile.Igor Sobrado
2016-02-20AddressFamily defaults to any.Igor Sobrado
2016-02-17rekey refactor broke SSH1; spotted by Tom G. ChristensenDamien Miller
2016-02-17rsa-sha2-512,rsa-sha2-256 cannot be selected explicitly inDamien Miller
2016-02-17since these pages now clearly tell folks to avoid v1, normaliseJason McIntyre
2016-02-17make sandboxed privilege separation the default, not just for newDamien Miller
2016-02-16no need to state that protocol 2 is the default twice;Jason McIntyre
2016-02-16Replace list of ciphers and MACs adjacent to -1/-2 flag descriptions inDamien Miller
2016-02-16add a "Close session" log entry (at loglevel=verbose) to correspondDamien Miller
2016-02-15memleak of algorithm name in mm_answer_sign; reported by Jakub JelenDamien Miller
2016-02-15Add a function to enable security-related malloc_options. With and okDarren Tucker
2016-02-12avoid fatal() for PKCS11 tokens that present empty key IDsDamien Miller
2016-02-11sync crypto algorithm lists in ssh_config(5) and sshd_config(5)Damien Miller
2016-02-11fix regression in openssh-6.8 sftp client: existing destinationDamien Miller
2016-02-09turn off more old crypto in the client: hmac-md5, ripemd, truncatedDamien Miller
2016-02-08don't attempt to percent_expand() already-canonicalised addresses,Damien Miller
2016-02-08refactor activation of rekeyingDamien Miller
2016-02-05Only check errno if read() has returned an error. EOF is not an error.Christian Weisgerber
2016-02-05avoid an uninitialised value when NumberOfPasswordPrompts is 0Jonathan Gray
2016-02-05mention internal DH-GEX fallback groups; bz#2302Damien Miller
2016-02-05better description for MaxSessions; bz#2531Damien Miller
2016-02-04printf argument casts to avoid warnings on strict compilersDamien Miller
2016-02-01Avoid ugly "DISPLAY "(null)" invalid; disabling X11 forwarding"Todd C. Miller
2016-01-29Remove leftover roaming dead code. ok djm markus.Darren Tucker
2016-01-29include packet type of non-data packets in debug3 output;Damien Miller
2016-01-29Revert "account for packets buffered but not yet processed" change as itDarren Tucker
2016-01-29Allow RekeyLimits in excess of 4G up to 2**63 bits (limited by the returnDarren Tucker
2016-01-29Account for packets buffered but not yet processed when computing whether orDarren Tucker
2016-01-27change old $FreeBSD version string in comment so it doesn't become anDamien Miller
2016-01-27make the debug messages a bit more useful hereDamien Miller
2016-01-23Zero a stack buffer with explicit_bzero() instead of memset() whenJonathan Gray
2016-01-20Include sys/time.h for gettimeofday. From sortie at maxsi.org.Darren Tucker
2016-01-14fd leaks; report Qualys Security Advisory team; ok deraadt@Markus Friedl
2016-01-14remove roaming support; ok djm@Markus Friedl
2016-01-14Disable experimental client-side roaming support. Server side wasTheo de Raadt
2016-01-13eliminate fallback from untrusted X11 forwarding to trustedDamien Miller
2016-01-12use explicit_bzero() more liberally in the buffer code; ok deraadtDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-17 04:19:24 +0000