| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | delete support for legacy v00 certificates; "sure" markus@ dtucker@ |   djm | 2015-07-03 | 1 | -30/+16 |
| * | Don't make parsing of authorized_keys' environment= option conditional | djm | 2015-05-01 | 1 | -9/+14 |
| * | unknown certificate extensions are non-fatal, so don't fatal | djm | 2015-04-22 | 1 | -2/+2 |
| * | swith auth-options to new sshbuf/sshkey; ok djm@ |   markus | 2015-01-14 | 1 | -44/+38 |
| * | Add support for Unix domain socket forwarding. A remote TCP port |   millert | 2014-07-15 | 1 | -2/+3 |
| * | New key API: refactor key-related functions to be more library-like, | djm | 2014-06-24 | 1 | -7/+7 |
| * | simplify freeing of source-address certificate restriction | djm | 2013-12-19 | 1 | -7/+7 |
| * | use calloc for all structure allocations; from markus@ | djm | 2013-11-08 | 1 | -2/+2 |
| * | no need to include monitor_wrap.h and ssh-gss.h | markus | 2013-11-02 | 1 | -5/+1 |
| * | fix pointer-signedness warnings from clang/llvm-3.3; "seems nice" deraadt@ | djm | 2013-07-12 | 1 | -3/+5 |
| * | bye, bye xfree(); ok markus@ | djm | 2013-05-17 | 1 | -30/+30 |
| * | make AllowTcpForwarding accept "local" and "remote" in addition to its | djm | 2012-12-02 | 1 | -2/+2 |
| * | remove explict search for \0 in packet strings, this job is now done | djm | 2011-10-18 | 1 | -15/+1 |
| * | Add wildcard support to PermitOpen, allowing things like "PermitOpen |   dtucker | 2011-09-23 | 1 | -2/+2 |
| * | don't send the actual forced command in a debug message; ok markus deraadt | djm | 2010-12-24 | 1 | -2/+2 |
| * | Add buffer_get_cstring() and related functions that verify that the | djm | 2010-08-31 | 1 | -4/+4 |
| * | Move the permit-* options to the non-critical "extensions" field for v01 | djm | 2010-05-20 | 1 | -102/+180 |
| * | add some optional indirection to matching of principal names listed | djm | 2010-05-07 | 1 | -1/+42 |
| * | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the | djm | 2010-04-16 | 1 | -10/+11 |
| * | spelling in error message. ok djm kettenis |   stevesk | 2010-03-16 | 1 | -3/+3 |
| * | Hold authentication debug messages until after successful authentication. | dtucker | 2010-03-07 | 1 | -8/+1 |
| * | "force-command" is not spelled "forced-command"; spotted by | djm | 2010-03-04 | 1 | -2/+2 |
| * | reject strings with embedded ASCII nul chars in certificate key IDs, | djm | 2010-03-03 | 1 | -8/+20 |
| * | Add support for certificate key types for users and hosts. | djm | 2010-02-26 | 1 | -1/+149 |
| * | another chunk of a2port() diff that got away. wtfdjm?? | djm | 2009-01-22 | 1 | -3/+3 |
| * | support CIDR address matching in .ssh/authorized_keys from="..." stanzas | djm | 2008-06-10 | 1 | -8/+17 |
| * | Implement a channel success/failure status confirmation callback | djm | 2008-05-08 | 1 | -1/+2 |
| * | add no-user-rc authorized_keys option to disable execution of ~/.ssh/rc | djm | 2008-03-26 | 1 | -1/+10 |
| * | almost entirely get rid of the culture of ".h files that include .h files" |   deraadt | 2006-08-03 | 1 | -4/+10 |
| * | move #include <string.h> out of includes.h | stevesk | 2006-07-22 | 1 | -1/+2 |
| * | Use '\0' rather than 0 to terminates strings; ok djm@ | dtucker | 2006-07-17 | 1 | -6/+6 |
| * | move #include <netdb.h> out of includes.h; ok djm@ | stevesk | 2006-07-12 | 1 | -1/+2 |
| * | move #include <pwd.h> out of includes.h; ok markus@ | stevesk | 2006-07-06 | 1 | -1/+5 |
| * | Put $OpenBSD$ tags back (as comments) to replace the RCSID()s that | djm | 2006-03-25 | 1 | -0/+1 |
| * | RCSID() can die | deraadt | 2006-03-19 | 1 | -1/+0 |
| * | two changes to the new ssh tunnel support. this breaks compatibility |   reyk | 2005-12-08 | 1 | -2/+2 |
| * | Add support for tun(4) forwarding over OpenSSH, based on an idea and | reyk | 2005-12-06 | 1 | -1/+40 |
| * | spacing | deraadt | 2005-03-10 | 1 | -2/+2 |
| * | spacing | deraadt | 2005-03-10 | 1 | -3/+3 |
| * | bz#413: allow optional specification of bind address for port forwardings. | djm | 2005-03-01 | 1 | -12/+16 |
| * | deprecate VerifyReverseMapping since it's dangerous if combined | markus | 2003-06-02 | 1 | -2/+2 |
| * | rename log() into logit() to avoid name conflict. markus ok, from netbsd |   itojun | 2003-04-08 | 1 | -3/+3 |
| * | add PermitUserEnvironment (off by default!); from dot@dotat.at; ok provos, deraadt | markus | 2002-07-30 | 1 | -2/+3 |
| * | unneeded includes | stevesk | 2002-07-21 | 1 | -3/+1 |
| * | move the packet_send_debug handling from auth-options.c to auth.c; ok provos@ | markus | 2002-05-13 | 1 | -57/+19 |
| * | clean up prototypes | markus | 2002-03-19 | 1 | -2/+2 |
| * | integrate privilege separated openssh; its turned off by default for now. |   provos | 2002-03-18 | 1 | -15/+65 |
| * | s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@ | markus | 2002-01-29 | 1 | -2/+2 |
| * | validate ports for permitopen key file option. add host/port | stevesk | 2001-08-30 | 1 | -17/+15 |
| * | move ip+hostname check to match.c | markus | 2001-06-24 | 1 | -14/+5 |
