summaryrefslogtreecommitdiff
path: root/usr.bin/ssh
AgeCommit message (Expand)Author
2018-02-23Add experimental support for PQC XMSS keys (Extended Hash-Based Signatures)Markus Friedl
2018-02-23some cleanup for BindInterface and ssh-keyscan;Jason McIntyre
2018-02-23Add ssh-keyscan -D option to make it print its results in SSHFP formatDamien Miller
2018-02-23Add missing braces.Darren Tucker
2018-02-23Add BindInterface ssh_config directive and -B command-line argumentDamien Miller
2018-02-19emphasise that the hostkey rotation may send key types that the clientDamien Miller
2018-02-16Don't send IUTF8 to servers that don't like them.Darren Tucker
2018-02-16Mention recent DH KEX methods:Damien Miller
2018-02-16stop loading DSA keys by default, remove sshd_config stanza and manpageDamien Miller
2018-02-14Ensure that D mod (P-1) and D mod (Q-1) are calculated in constant time.Joel Sing
2018-02-14Some obvious freezero() conversions.Joel Sing
2018-02-13remove space before tabDamien Miller
2018-02-11Don't reset signal handlers inside handlers.Darren Tucker
2018-02-10constify some private key-related functions; based onDamien Miller
2018-02-10Mention ServerAliveTimeout in context of TCPKeepAlives; prompted byDamien Miller
2018-02-10clarify IgnoreUserKnownHosts; based on github PR fromDamien Miller
2018-02-10Shorter, more accurate explanation of NoHostAuthenticationForLocalhostDamien Miller
2018-02-10Disable RemoteCommand and RequestTTY in the ssh session started byDamien Miller
2018-02-10Refuse to create a certificate with an unusable number of principals;Damien Miller
2018-02-10fatal if we're unable to write all the public key; previously weDamien Miller
2018-02-09Remove unused sKerberosTgtPassing from enum. From calestyo via githubDarren Tucker
2018-02-08Rename struct umac_ctx to umac128_ctx too. In portable some linkersDarren Tucker
2018-02-07ssh_free checks for and handles NULL args, remove NULL checks from remainingDarren Tucker
2018-02-07Convert some explicit_bzero()/free() calls to freezero().Joel Sing
2018-02-07Remove some #ifdef notyet code from OpenSSL 0.9.8 days.Joel Sing
2018-02-07Remove all guards for calls to OpenSSL free functions - all of theseJoel Sing
2018-02-06Replace "trojan horse" with the correct term (MITM). From maikel atDarren Tucker
2018-02-05Add a couple of non-negativity checks to avoid close(-1).Theo Buehler
2018-02-05The file descriptors for socket, stdin, stdout and stderr aren'tTheo Buehler
2018-02-05I accidentially a wordDamien Miller
2018-01-25certificate options are case-sensitive; fix case on one that had it wrong.Damien Miller
2018-01-23Fix a logic bug in sshd_exchange_identification which prevented clientsStefan Sperling
2018-01-23Add missing braces; fixes 'write: Socket is not connected' error in ssh.Stefan Sperling
2018-01-23Drop compatibility hacks for some ancient SSH implementations, includingDamien Miller
2018-01-23try harder to preserve errno during ssh_connect_direct() to make theDamien Miller
2018-01-23unbreak support for clients that advertise a protocol versionDamien Miller
2018-01-23don't attempt to force hostnames that are addresses to lowercase, butDamien Miller
2018-01-23avoid modifying pw->pw_passwd; let endpwent() clean up for us, butDamien Miller
2018-01-13clarify authorship; prodded by and ok markus@Christian Weisgerber
2018-01-08group shared source files (e.g. SRCS_KEX) and allow compilation w/o OPENSSLMarkus Friedl
2018-01-08move subprocess() so scp/sftp do not need uidswap.o; ok djm@Markus Friedl
2018-01-08switch ssh-pkcs11-helper to new API; ok djm@Markus Friedl
2018-01-08split client/server kex; only ssh-keygen needs uuencode.o;Markus Friedl
2018-01-08only ssh-keygen needs uuencode.o; only scp/sftp use progressmeter.oMarkus Friedl
2018-01-08uuencode.h is not usedMarkus Friedl
2017-12-21revert stricter key type / signature type checking in userauth path;Damien Miller
2017-12-19include signature type and CA key (if applicable) in some debug messagesDamien Miller
2017-12-18unbreak hostkey rotation; attempting to sign with a desired signatureDamien Miller
2017-12-18log mismatched RSA signature types; ok markus@Damien Miller
2017-12-18pass kex->hostkey_alg and kex->hostkey_nid from pre-auth to post-authDamien Miller
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-15 02:44:13 +0000