Age | Commit message (Expand) | Author |
2012-07-10 | Turn on systrace sandboxing of pre-auth sshd by default for new installs | Damien Miller |
2012-07-06 | missing full stop in usage(); | Jason McIntyre |
2012-07-06 | move setting of tty_flag to after config parsing so RequestTTY options | Damien Miller |
2012-07-06 | fix memory leak of passed-in environment variables and connection | Damien Miller |
2012-07-06 | Add options to specify starting line number and number of lines to process | Darren Tucker |
2012-07-02 | fix a couple of "assigned but not used" warnings. ok markus@ | Darren Tucker |
2012-07-02 | set interactive ToS for forwarded X11 sessions. ok djm@ | Darren Tucker |
2012-06-30 | fix a during the load of the sandbox policies (child can still make | Markus Friedl |
2012-06-29 | match the documented MAC order of preference to the actual one; ok dtucker@ | Christian Weisgerber |
2012-06-28 | Remove hmac-sha2-256-96 and hmac-sha2-512-96 MACs since they were removed | Darren Tucker |
2012-06-26 | Add mquery to the list of allowed syscalls for "UsePrivilegeSeparation | Darren Tucker |
2012-06-22 | Remove unused variable leftover from tab-completion changes. | Darren Tucker |
2012-06-22 | remove dead code following 'for (;;)' loops. | Darren Tucker |
2012-06-21 | fix strlcpy truncation check. from carsten at debian org, ok markus | Darren Tucker |
2012-06-20 | initialise accept() backoff timer to avoid EINVAL from select(2) in | Damien Miller |
2012-06-19 | tweak previous; ok markus | Jason McIntyre |
2012-06-19 | sshd_config: extend Match to allow AcceptEnv and {Allow,Deny}{Users,Groups} | Markus Friedl |
2012-06-18 | Clarify description of -W. Noted by Steve.McClellan at radisys com, ok jmc | Darren Tucker |
2012-06-18 | Remove mention of 'three' key files since there are now four. From | Darren Tucker |
2012-06-18 | RSA instead of DSA twice. From Steve.McClellan at radisys com | Darren Tucker |
2012-06-18 | correct sizeof usage. patch from saw at online.de, ok deraadt | Darren Tucker |
2012-06-01 | fix memory leak when mux socket creation fails; bz#2002 from bert.wesarg | Damien Miller |
2012-06-01 | correct types of port numbers (integers, not strings); bz#2004 from | Damien Miller |
2012-05-23 | add support for RFC6594 SSHFP DNS records for ECDSA key types. | Damien Miller |
2012-05-19 | Document PermitOpen none. bz#2001, patch from Loganaden Velvindron | Darren Tucker |
2012-05-13 | Add "Match LocalAddress" and "Match LocalPort" to sshd and adjust tests | Darren Tucker |
2012-04-23 | fix function proto/source mismatch | Damien Miller |
2012-04-20 | use "brackets" instead of "braces", for consistency; | Jason McIntyre |
2012-04-20 | setlinebuf(3) is more readable than setvbuf(.., _IOLBF, ...) | Damien Miller |
2012-04-12 | mention AuthorizedPrincipalsFile=none default | Damien Miller |
2012-04-12 | VersionAddendum option to allow server operators to append some arbitrary | Damien Miller |
2012-04-11 | now that sshd defaults to offering ECDSA keys, ssh-keyscan should also | Damien Miller |
2012-04-11 | don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a | Damien Miller |
2012-04-11 | Support "none" as an argument for AuthorizedPrincipalsFile to indicate | Damien Miller |
2012-04-11 | don't spin in accept() when out of fds (ENFILE/ENFILE) - back off for a | Damien Miller |
2012-03-29 | Add PermitOpen none option based on patch from Loganaden Velvindron | Darren Tucker |
2012-03-28 | explain certificate extensions/crit split rationale. Mention requirement | Damien Miller |
2012-03-15 | root should always be excluded from the test for /etc/nologin instead | Philip Guenthe |
2012-02-29 | allow conversion of RSA1 keys to public PEM and PKCS8; "nice" markus@ | Damien Miller |
2012-02-09 | move from 6.0-beta to 6.0 | Markus Friedl |
2012-01-25 | packet_read_poll() is not used anymore. | Markus Friedl |
2012-01-25 | memleak in key_load_file(); from Jan Klemkow | Markus Friedl |
2012-01-25 | do not permit SSH2_MSG_SERVICE_REQUEST/ACCEPT during rekeying; | Markus Friedl |
2012-01-18 | Ensure that $DISPLAY contains only valid characters before using it to | Darren Tucker |
2012-01-16 | Fix a memory leak in pkcs11_rsa_private_encrypt(), reported by Jan Klemkow. | Miod Vallat |
2012-01-08 | Fix memory leak in ssh_ecdsa_verify(); from Loganaden Velvindron, ok markus@ | Miod Vallat |
2012-01-07 | fix double-free in new session handler | Damien Miller |
2012-01-05 | memleak on error path | Damien Miller |
2011-12-07 | fix some harmless and/or unreachable int overflows; | Damien Miller |
2011-12-04 | revert: | Damien Miller |