summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2024-08-23As defined in the RFC, the SSH protocol has negotiable compression supportTheo de Raadt
2024-08-22sntrup761x25519-sha512 now has an IANA codepoint assigned,Damien Miller
2024-08-21Import regenerated moduli.Darren Tucker
2024-08-20actually use the length parameter that was passed in rather than aDamien Miller
2024-08-20place shielded keys (i.e. keys at rest in RAM) into memory allocatedDamien Miller
2024-08-17mention that ed25519 is the default key type generated andDamien Miller
2024-08-17fix minor memory leak in Subsystem option parsing;Damien Miller
2024-08-17fix swapping of source and destination addresses in some sshd log messagesDamien Miller
2024-08-15Convert RSA and ECDSA key to the libcrypto EVP_PKEY API. DSA remainsDamien Miller
2024-08-14Reorder calloc argumentsTobias Stoeckmann
2024-08-14Extend sshbuf validationTobias Stoeckmann
2024-08-14Use freezero for better readabilityTobias Stoeckmann
2024-08-14Fix typo in commentTobias Stoeckmann
2024-07-31add a random amount of time (up to 4 seconds) to the grace login time.David Gwynne
2024-07-26document the reduced logingrace penaltyChristian Weisgerber
2024-07-25reduce logingrace penalty.Damien Miller
2024-07-25Fix proxy multiplexing (-O proxy) bugDamien Miller
2024-07-18mention mux proxy modeDamien Miller
2024-07-14fix double word; ok dtucker@Jonathan Gray
2024-07-10correct keyword; from Yatao Su via GHPR509Damien Miller
2024-07-08don't need return at end of void functionDamien Miller
2024-07-04fix grammar: "a pattern lists" -> "one or more pattern lists"Damien Miller
2024-07-01openssh-9.8Damien Miller
2024-07-01when sending ObscureKeystrokeTiming chaff packets, we can'tDamien Miller
2024-06-27delete obsolete commentDamien Miller
2024-06-27retire unused APIDamien Miller
2024-06-27ssl(8) no longer contains a HISTORY section;Jason McIntyre
2024-06-26move child process waitpid() loop out of SIGCHLD handler;Damien Miller
2024-06-26Instead of using possibly complex ssh_signal(), write all the partsTheo de Raadt
2024-06-26save_errno wrappers inside two small signal handlers that performTheo de Raadt
2024-06-24- uppercase start of sentenceJason McIntyre
2024-06-24mention SshdSessionPath optionDamien Miller
2024-06-20stricter check for overfull tables in penalty record pathDamien Miller
2024-06-19put back reaping of preauth child process when writes from the monitorDamien Miller
2024-06-17remove one more mention of DSAChristian Weisgerber
2024-06-17disable the DSA signature algorithm by default; ok markus@Damien Miller
2024-06-17promote connection-closed messages from verbose to info log level;Damien Miller
2024-06-14sort -q in the options list;Jason McIntyre
2024-06-14clarify KEXAlgorithms supported vs available. Inspired by bz3701Damien Miller
2024-06-14ssh-keyscan -q man bitsDamien Miller
2024-06-14make host/banner comments go to stderr instead of stdout, so theyDamien Miller
2024-06-13separate keywords with commaChristian Weisgerber
2024-06-12split PerSourcePenalties address tracking. Previously it used oneDamien Miller
2024-06-11do not mark up "(default: 20ms)";Jason McIntyre
2024-06-11reap preauth net child if it hangs up during privsep message send, notDamien Miller
2024-06-11reap the pre-auth [net] child if it hangs up during privsep messageDamien Miller
2024-06-11a little more RB_TREE paranoiaDamien Miller
2024-06-11fix off-by-one comparison for PerSourcePenalty overflow:deny-all modeDamien Miller
2024-06-11move tree init before possible early returnDamien Miller
2024-06-11update to mention that PerSourcePenalties default to being enabledDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 12:21:30 +0000