summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2010-08-05Fix a trio of bugs in the local/remote window calculation for datagramDamien Miller
2010-08-04clean for -WuninitializedDamien Miller
2010-08-04Support CA keys in PKCS#11 tokens; feedback and ok markus@Damien Miller
2010-08-04commited the wrong version of the hostbased certificate diff; thisDamien Miller
2010-08-04enable certificates for hostbased authentication, from Iain Morgan;Damien Miller
2010-08-04tighten the rules for certificate encoding by requiring that optionsDamien Miller
2010-08-04Remove mentions of weird "addr/port" alternate address format for IPv6Damien Miller
2010-07-23Ciphers is documented in ssh_config(5) these daysDarren Tucker
2010-07-21sync timingsafe_bcmp() with the one dempsky@ committed to sys/lib/libkernDamien Miller
2010-07-19add a "ControlPersist" option that automatically starts a backgroundDamien Miller
2010-07-19bz#1797: fix swapped args in upload_dir_internal(), breaking recursiveDamien Miller
2010-07-16more timing paranoia - compare all parts of the expected decryptedDamien Miller
2010-07-16avoid bogus compiler warningDamien Miller
2010-07-15repair incorrect block nesting, which screwed up indentation;Ingo Schwarze
2010-07-14finally ssh synopsis looks nice again! this commit just removes a ton ofJason McIntyre
2010-07-13s/timing_safe_cmp/timingsafe_bcmp/gDamien Miller
2010-07-13implement a timing_safe_cmp() function to compare memory without leakingDamien Miller
2010-07-12expand %h to the hostname in ssh_config Hostname options. While thisDamien Miller
2010-07-12Make ExitOnForwardFailure work with fork-after-authentication ("ssh -f")Damien Miller
2010-07-02unbreak strdelim() skipping past quoted strings, e.g.Damien Miller
2010-07-01Fix a longstanding problem where if you suspend scp at theTodd C. Miller
2010-06-30tweak previous;Jason McIntyre
2010-06-30sort usage();Jason McIntyre
2010-06-30tweak previous;Jason McIntyre
2010-06-29allow key options (command="..." and friends) in AuthorizedPrincipals;Damien Miller
2010-06-29allow import (-i) and export (-e) of PEM and PKCS#8 encoded keys;Damien Miller
2010-06-26oops, forgot to #include <canohost.h>; spotted and patch from chl@Damien Miller
2010-06-26tweak previous;Jason McIntyre
2010-06-25Add X11ForwardTimeout option to specify timeout for untrusted X11Damien Miller
2010-06-25log the hostname and address that we connected to at LogLevel=verboseDamien Miller
2010-06-25skip the initial check for access with an empty password whenDamien Miller
2010-06-25bz#1750: fix requirement for /dev/null inside ChrootDirectory forDamien Miller
2010-06-25bz#1327: remove hardcoded limit of 100 permitopen clauses and portDamien Miller
2010-06-23fix printing of extensions in v01 certificates that I broke in r1.190Damien Miller
2010-06-22include the user name on "subsystem request for ..." log messages;Damien Miller
2010-06-22replace verbose and overflow-prone Linebuf code with read_keyfile_line()Damien Miller
2010-06-22queue auth debug messages for bad ownership or permissions on the user'sDamien Miller
2010-06-22standardise error messages when attempting to open private keyDamien Miller
2010-06-22expose some more sshd_config options inside Match blocks:Damien Miller
2010-06-18fix memory leak in do_realpath() error path; bz#1771, patch fromDamien Miller
2010-06-18Missing check for chroot_director == "none" (we already checked againstDamien Miller
2010-06-18unbreak ls in working directories that contains globbing characters inDamien Miller
2010-06-17Correct sizing of object to be allocated by calloc(), replacingDamien Miller
2010-06-08check length of value returned C_GetAttributValue for != 0Markus Friedl
2010-05-21colon() returns char*, so s/return (0)/return NULL/Damien Miller
2010-05-20Move the permit-* options to the non-critical "extensions" field for v01Damien Miller
2010-05-20fix logspam when key options (from="..." especially) deny non-matching keys;Damien Miller
2010-05-16mux support for remote forwarding with dynamic port allocation,Markus Friedl
2010-05-14Pause the mux channel while waiting for reply from aynch callbacks.Damien Miller
2010-05-14check that the certificate matches the corresponding private key beforeDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-17 10:26:28 +0000