| Age | Commit message (Expand) | Author |
|---|
| 2016-12-19 | openssh-7.4 | Damien Miller |
| 2016-12-15 | Add missing braces in DenyUsers code. Patch from zev at bewilderbeest.net, | Darren Tucker |
| 2016-12-15 | Fix text in error message. Patch from zev at bewilderbeest.net. | Darren Tucker |
| 2016-12-14 | disable Unix-domain socket forwarding when privsep is disabled | Damien Miller |
| 2016-12-09 | log connections dropped in excess of MaxStartups at verbose LogLevel; | Damien Miller |
| 2016-12-06 | make IdentityFile successfully load and use certificates that have no | Damien Miller |
| 2016-12-04 | Fix public key authentication when multiple authentication is in use. | Damien Miller |
| 2016-12-04 | Unlink PidFile on SIGHUP and always recreate it when the new sshd starts. | Darren Tucker |
| 2016-11-30 | tweak previous; | Jason McIntyre |
| 2016-11-30 | add a whitelist of paths from which ssh-agent will load (via | Damien Miller |
| 2016-11-30 | Add a sshd_config DisableForwaring option that disables X11, agent, | Damien Miller |
| 2016-11-30 | When a forced-command appears in both a certificate and an | Damien Miller |
| 2016-11-30 | On startup, check to see if sshd is already daemonized and if so, | Darren Tucker |
| 2016-11-29 | Factor out code to disconnect from controlling terminal into its own | Darren Tucker |
| 2016-11-25 | use sshbuf_allocate() to pre-allocate the buffer used for loading | Damien Miller |
| 2016-11-25 | split allocation out of sshbuf_reserve() into a separate | Damien Miller |
| 2016-11-23 | allow ClientAlive{Interval,CountMax} in Match; ok dtucker, djm | Markus Friedl |
| 2016-11-08 | unbreak DenyUsers; reported by henning@ | Damien Miller |
| 2016-11-06 | Validate address ranges for AllowUser/DenyUsers at configuration load | Damien Miller |
| 2016-10-28 | Improve pkcs11_add_provider() logging: demote some excessively | Damien Miller |
| 2016-10-25 | Fix logic in add_local_forward() that inverted a test when code was | Jonathan Gray |
| 2016-10-24 | Remove dead breaks, found via opencoverage.net. ok deraadt@ | Darren Tucker |
| 2016-10-23 | Factor out "can bind to low ports" check into its own function. This will make | Darren Tucker |
| 2016-10-19 | When tearing down ControlMaster connecctions, don't pollute stderr when | Darren Tucker |
| 2016-10-18 | Remove channel_input_port_forward_request(); the only caller was the | Darren Tucker |
| 2016-10-18 | Install a signal handler for tty-generated signals and wait for the | Todd C. Miller |
| 2016-10-15 | various formatting fixes, specifically removing Dq; | Jason McIntyre |
| 2016-10-11 | Add a per-packet input hook that is called with the decrypted packet | Damien Miller |
| 2016-10-10 | Unregister the KEXINIT handler after message has been received. | Markus Friedl |
| 2016-10-07 | tidy up the formatting in this file. more specifically, replace | Jason McIntyre |
| 2016-10-04 | add a comment about implicitly-expected checks to | Damien Miller |
| 2016-09-30 | fix some -Wpointer-sign warnings in the new mux proxy; ok markus@ | Damien Miller |
| 2016-09-30 | ssh proxy mux mode (-O proxy; idea from Simon Tatham): | Markus Friedl |
| 2016-09-28 | put back some pre-auth zlib bits that I shouldn't have removed - | Damien Miller |
| 2016-09-28 | restore pre-auth compression support in the client -- the previous | Damien Miller |
| 2016-09-28 | use a separate TOKENS section, as we've done for sshd_config(5); | Jason McIntyre |
| 2016-09-28 | Remove support for pre-authentication compression. Doing compression | Damien Miller |
| 2016-09-26 | Avoid a theoretical signed integer overflow should BN_num_bytes() | Damien Miller |
| 2016-09-22 | missing bit from previous commit | Damien Miller |
| 2016-09-22 | organise the token stuff into a separate section; | Jason McIntyre |
| 2016-09-22 | mention curve25519-sha256 KEX | Damien Miller |
| 2016-09-22 | support plain curve25519-sha256 KEX algorithm now that it is | Damien Miller |
| 2016-09-22 | If ssh receives a PACKET_DISCONNECT during userauth it will cause | Darren Tucker |
| 2016-09-21 | correctly return errors from kex_send_ext_info(). Fix from Sami Farin | Damien Miller |
| 2016-09-21 | cast uint64_t for printf | Damien Miller |
| 2016-09-21 | Revert two recent changes to negated address matching. The new | Damien Miller |
| 2016-09-21 | add a way for principals command to get see key ID and serial too | Damien Miller |
| 2016-09-19 | move inbound NEWKEYS handling to kex layer; otherwise early NEWKEYS causes | Markus Friedl |
| 2016-09-19 | Replace two more arc4random() loops with arc4random_buf(). | Martin Natano |
| 2016-09-17 | replace two arc4random loops with arc4random_buf | Ted Unangst |
