summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2015-05-28wrap all moduli-related code in #ifdef WITH_OPENSSL.Damien Miller
2015-05-28Increase the allowed length of the known host file name in the logDarren Tucker
2015-05-28Fix typo (keywork->keyword)Darren Tucker
2015-05-28add error message on ftruncate failure; bz#2176Damien Miller
2015-05-28make ssh-keygen default to ed25519 keys when compiled withoutDamien Miller
2015-05-28Remove intermediate copy of the moduli file. "make" will rebuild anyDarren Tucker
2015-05-28Remove 1k bit groups. ok deraadt@, markus@Darren Tucker
2015-05-27Reorder client proposal to prefer diffie-hellman-group-exchange-sha1 overDarren Tucker
2015-05-27Add a stronger (4k bit) fallback group that sshd can use when the moduliDarren Tucker
2015-05-27support PKCS#11 devices with external PIN entry devicesDamien Miller
2015-05-26Cap DH-GEX group size at 4kbits for Cisco implementations. Some of themDarren Tucker
2015-05-24add missing 'c' option to getopt(), case statement was alreadyDamien Miller
2015-05-23fix a memory leak in an error pathJonathan Gray
2015-05-22mention ssh-keygen -E for comparing legacy MD5 fingerprints; bz#2332Damien Miller
2015-05-22Reorder EscapeChar option parsing to avoid a single-byte out-Damien Miller
2015-05-22add knob to relax GSSAPI host credential check for multihomed hostsDamien Miller
2015-05-22Update DH groupsDarren Tucker
2015-05-21Support "ssh-keygen -lF hostname" to find search known_hosts andDamien Miller
2015-05-21add AuthorizedPrincipalsCommand that allows getting authorized_principalsDamien Miller
2015-05-21support arguments to AuthorizedKeysCommandDamien Miller
2015-05-21refactor: split base64 encoding of pubkey into its ownDamien Miller
2015-05-18getentropy() and sendsyslog() have been around long enough.Theo de Raadt
2015-05-15Use a salted hash of the lock passphrase instead of plain text and doDarren Tucker
2015-05-08moar whitespace at eolDamien Miller
2015-05-08whitespace at EOLDamien Miller
2015-05-08whitespace at EOLDamien Miller
2015-05-08Use xcalloc for permitted_adm_opens instead of xmalloc to ensure it's zeroed.Darren Tucker
2015-05-08don't choke on new-format private keys encrypted with an AEAD cipher;Damien Miller
2015-05-06Clarify pseudo-terminal request behaviour and use "pseudo-terminal"Darren Tucker
2015-05-06Blacklist DH-GEX for specific PuTTY versions known to send non-RFC4419Darren Tucker
2015-05-05WinSCP doesn't implement RFC4419 DH-GEX so flag it so we don't offer thatDarren Tucker
2015-05-05use the sizeof the struct not the sizeof a pointer to the structJonathan Gray
2015-05-04Remove pattern length argument from match_pattern_list(),Damien Miller
2015-05-01mention that the user's shell from /etc/passwd is used for commandsDamien Miller
2015-05-01refactor ssh_dispatch_run_fatal() to use sshpkt_fatal() to betterDamien Miller
2015-05-01a couple of parse targets were missing activep checks, causing themDamien Miller
2015-05-01make handling of AuthorizedPrincipalsFile=none more consistentDamien Miller
2015-05-01remove failed remote forwards established by muliplexing from theDamien Miller
2015-05-01reduce stderr spam when using ssh -S /path/mux -O forward -R 0:...Damien Miller
2015-05-01prevent authorized_keys options picked up on public key tests withoutDamien Miller
2015-05-01Don't make parsing of authorized_keys' environment= option conditionalDamien Miller
2015-04-29Allow ListenAddress, Port and AddressFamily in any order. bz#68,Darren Tucker
2015-04-28enviroment -> environment: apologies to darren for not spotting that firstJason McIntyre
2015-04-28Fix typo in previousDarren Tucker
2015-04-28Document that the TERM environment variable is not subject to SendEnvDarren Tucker
2015-04-27Make sshd default to PermitRootLogin=no;Damien Miller
2015-04-27more OPENSSL=no fixes; ok dtucker@Damien Miller
2015-04-27fix compilation with OPENSSL=no; ok dtucker@Damien Miller
2015-04-27Include stdio.h for FILE (used in sshkey.h) so it compiles with OPENSSL=no.Darren Tucker
2015-04-27allow "sshd -f none" to skip reading the config file, much likeDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-28 17:42:52 +0000