| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
ok markus
|
| |
|
|
|
|
|
| |
the docs from a v2 perspective (i.e. stop pointing out which bits
are v2 only);
ok/tweaks djm ok markus
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer
better performance than plain DH and DSA at the same equivalent symmetric
key length, as well as much shorter keys.
Only the mandatory sections of RFC5656 are implemented, specifically the
three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and
ECDSA. Point compression (optional in RFC5656 is NOT implemented).
Certificate host and user keys using the new ECDSA key types are supported.
Note that this code has not been tested for interoperability and may be
subject to change.
feedback and ok markus@
|
| |
|
|
| |
have multiple items, and .Pa for path names;
|
| |
|
|
| |
"looks ok" markus@
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
| |
- COMPATIBILITY merge
- macro cleanup
- kill whitespace at EOL
- new sentence, new line
ssh pages ok markus@
|
| |
|
|
|
|
|
| |
- new sentence new line
- .Bk for arguments
ok markus@
|
| | |
|
| |
|
|
|
|
|
| |
because HostbasedAuthentication might be enabled based on the
target host and ssh-keysign(8) does not know the remote hostname
and not trust ssh(1) about the hostname, so we add a new option
EnableSSHKeysign; ok djm@, report from zierke@informatik.uni-hamburg.de
|
| |
|
|
|
| |
and exit if HostbasedAuthentication is disabled globally. based on discussions
with deraadt, itojun and sommerfeld; ok itojun@
|
| | |
|
| |
|
jmc
naddy
schwarze
djm
stevesk
markus