summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2010-03-08sort the list of constraints (to -O); ok djmJason McIntyre
2010-03-08document permit-agent-forwarding certificate constraint; patch fromDamien Miller
2010-03-07make internal strptime string match strftime format;Damien Miller
2010-03-07openssh-5.4Damien Miller
2010-03-07Hold authentication debug messages until after successful authentication.Darren Tucker
2010-03-05mention loading of certificate files from [private]-cert.pub whenDamien Miller
2010-03-05document certificate authentication; help/ok djmJason McIntyre
2010-03-05tweak previous;Jason McIntyre
2010-03-05make the warning for a revoked key louder and more noticableDamien Miller
2010-03-04"force-command" is not spelled "forced-command"; spotted byDamien Miller
2010-03-04move section on CA and revoked keys from ssh.1 to sshd.8's known hostsDamien Miller
2010-03-04missing word; spotted by jmc@Damien Miller
2010-03-04fix Bk/Ek;Jason McIntyre
2010-03-04Add a -L flag to print the contents of a certificate; ok markus@Damien Miller
2010-03-04tweak previous;Jason McIntyre
2010-03-04Add a TrustedUserCAKeys option to sshd_config to specify CA keys thatDamien Miller
2010-03-04use buffer_get_string_ptr_ret() where we are checking the returnDamien Miller
2010-03-03s/similar same/similar/; from imorgan AT nas.nasa.govDamien Miller
2010-03-03the authorized_keys option for CA keys is "cert-authority", notDamien Miller
2010-03-03reject strings with embedded ASCII nul chars in certificate key IDs,Damien Miller
2010-03-02Add RCS IdentDamien Miller
2010-03-02POSIX strptime is stricter than OpenBSD's so do a little dance toDamien Miller
2010-03-01zap what seems to be a left-over debug message; ok markus@Otto Moerbeek
2010-02-26tweak previous;Jason McIntyre
2010-02-26Add support for certificate key types for users and hosts.Damien Miller
2010-02-24Add $OpenBSD$ tags in comments, our portable-syncing scripts use theseDamien Miller
2010-02-21dlclose() call should also be #ifdef HAVE_DLOPENTheo de Raadt
2010-02-20unbreak build for NOPIC systems; noticed, help and ok deraadt@Markus Friedl
2010-02-19gcc2 requires decls before codeTheo de Raadt
2010-02-11correct commentDamien Miller
2010-02-11libarary -> library;Jason McIntyre
2010-02-10pkcs#11 is no longer optional; improve wording; ok jmc@Markus Friedl
2010-02-09enable PKCS#11 code; ok djmMarkus Friedl
2010-02-09fix whitespace; from jmc@Markus Friedl
2010-02-09add manpage; ok djm@Markus Friedl
2010-02-09unbreak ChrootDirectory+internal-sftp by skipping check for executable shellDamien Miller
2010-02-09constify the arguments to buffer_len, buffer_ptr and buffer_dumpDamien Miller
2010-02-09fix -WallDamien Miller
2010-02-09fallout from PKCS#11: unbreak -DDamien Miller
2010-02-08tweak previous; ok markusJason McIntyre
2010-02-08obsoleteMarkus Friedl
2010-02-08remove scardMarkus Friedl
2010-02-08remove obsole scard codeMarkus Friedl
2010-02-08replace our obsolete smartcard code with PKCS#11.Markus Friedl
2010-02-02make buffer_get_string_ret() really non-fatal in all cases (it wasDamien Miller
2010-01-30fake local addr:port when stdio fowarding as some servers (Tectia atDamien Miller
2010-01-30debug output goes to stderr, not "the system log"; ok markus dtuckerDamien Miller
2010-01-30don't mark channel as read failed if it is already closing; suppressesDamien Miller
2010-01-29kill correct channel (was killing already-dead mux channel, notDamien Miller
2010-01-29set FD_CLOEXEC on sock_in/sock_out; bz#1706 from jchadima AT redhat.comDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-02 02:49:39 +0000