| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| * | update to new API (key_fingerprint => sshkey_fingerprint) |   djm | 2015-01-28 | 1 | -9/+17 |
| * | correctly match ECDSA subtype (== curve) for offered/recevied | djm | 2015-01-26 | 1 | -2/+3 |
| * | Host key rotation support. | djm | 2015-01-26 | 1 | -1/+10 |
| * | Reduce use of <sys/param.h> and transition to <limits.h> throughout. |   deraadt | 2015-01-20 | 1 | -2/+2 |
| * | store compat flags in struct ssh; ok djm@ |   markus | 2015-01-19 | 1 | -2/+2 |
| * | Add FingerprintHash option to control algorithm used for key | djm | 2014-12-21 | 1 | -11/+16 |
| * | explicitly include sys/param.h in files that use the howmany() macro; | djm | 2014-12-11 | 1 | -1/+2 |
| * | add RevokedHostKeys option for the client | djm | 2014-12-04 | 1 | -17/+47 |
| * | Add support for Unix domain socket forwarding. A remote TCP port |   millert | 2014-07-15 | 1 | -2/+2 |
| * | when rekeying, skip file/DNS lookup if it is the same as the key sent | djm | 2014-07-03 | 1 | -4/+19 |
| * | New key API: refactor key-related functions to be more library-like, | djm | 2014-06-24 | 1 | -2/+2 |
| * | make compiling against OpenSSL optional (make OPENSSL=no); | markus | 2014-04-29 | 1 | -1/+5 |
| * | When using VerifyHostKeyDNS with a DNSSEC resolver, down-convert any | djm | 2014-04-01 | 1 | -17/+27 |
| * | in ssh_create_socket(), only do the getaddrinfo for BindAddress when | djm | 2014-02-06 | 1 | -15/+18 |
| * | convert memset of potentially-private data to explicit_bzero() | djm | 2014-02-02 | 1 | -2/+2 |
| * | ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient, | djm | 2014-01-09 | 1 | -1/+4 |
| * | refuse RSA keys from old proprietary clients/servers that use the | djm | 2013-12-30 | 1 | -1/+4 |
| * | when showing other hostkeys, don't forget Ed25519 keys | djm | 2013-12-29 | 1 | -2/+9 |
| * | Implement client-side hostname canonicalisation to allow an explicit | djm | 2013-10-16 | 1 | -45/+29 |
| * | bz#1211: make BindAddress work with UsePrivilegedPort=yes; patch from | djm | 2013-09-19 | 1 | -25/+26 |
| * | Add a ssh_config ProxyUseFDPass option that supports the use of | djm | 2013-08-20 | 1 | -18/+106 |
| * | bye, bye xfree(); ok markus@ | djm | 2013-05-17 | 1 | -21/+20 |
| * | support ProxyCommand=- (stdin/out already point to the proxy); ok djm@ | markus | 2013-02-22 | 1 | -1/+8 |
| * | remove unused variable | markus | 2012-09-14 | 1 | -3/+1 |
| * | Send client banner immediately, rather than waiting for the server to | djm | 2012-08-17 | 1 | -13/+34 |
| * | Remove undocumented legacy options UserKnownHostsFile2 and | djm | 2011-05-24 | 1 | -36/+36 |
| * | remove extra newline | djm | 2011-05-23 | 1 | -2/+1 |
| * | reset the SIGPIPE handler when forking to execute child processes; | djm | 2011-01-16 | 1 | -1/+3 |
| * | reset SIGCHLD handler to SIG_DFL when execuring LocalCommand; | djm | 2011-01-06 | 1 | -1/+4 |
| * | don't mention key type in key-changed-warning, since we also print | markus | 2010-12-14 | 1 | -4/+3 |
| * | automatically order the hostkeys requested by the client based on | djm | 2010-11-29 | 1 | -134/+137 |
| * | swapped args to kill(2) | djm | 2010-10-06 | 1 | -2/+2 |
| * | kill proxy command on fatal() (we already kill it on clean exit); | djm | 2010-10-06 | 1 | -2/+14 |
| * | use default shell /bin/sh if $SHELL is ""; ok markus@ | djm | 2010-10-05 | 1 | -3/+3 |
| * | Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and | djm | 2010-08-31 | 1 | -2/+2 |
| * | oops, %r => remote username, not %u | djm | 2010-04-16 | 1 | -2/+2 |
| * | revised certificate format ssh-{dss,rsa}-cert-v01@openssh.com with the | djm | 2010-04-16 | 1 | -4/+4 |
| * | expand %r => remote username in ssh_config:ProxyCommand; | djm | 2010-04-14 | 1 | -3/+3 |
| * | fix terminology: we didn't find a certificate in known_hosts, we found | djm | 2010-04-10 | 1 | -2/+2 |
| * | Add a TrustedUserCAKeys option to sshd_config to specify CA keys that | djm | 2010-03-04 | 1 | -2/+22 |
| * | Add support for certificate key types for users and hosts. | djm | 2010-02-26 | 1 | -13/+65 |
| * | Fix a couple of typos/mispellings in comments |   dtucker | 2010-01-13 | 1 | -2/+2 |
| * | Remove RoutingDomain from ssh since it's now not needed. It can be replaced | dtucker | 2010-01-09 | 1 | -3/+2 |
| * | Set close-on-exec on various descriptors so they don't get leaked to | dtucker | 2009-11-10 | 1 | -2/+6 |
| * | Allow to set the rdomain in ssh/sftp/scp/sshd and ssh-keyscan. |   reyk | 2009-10-28 | 1 | -2/+3 |
| * | Keep track of number of bytes read and written. Needed for upcoming |   andreas | 2009-05-28 | 1 | -3/+5 |
| * | Un-static ssh_exchange_identification(), part of a larger change from | andreas | 2009-05-27 | 1 | -2/+2 |
| * | use #define ROQUIET here; no binary change. ok dtucker@ |   stevesk | 2008-10-14 | 1 | -3/+3 |
| * | Send CR LF during protocol banner exchanges, but only for Protocol 2 only, | dtucker | 2008-07-01 | 1 | -3/+3 |
| * | Check ExitOnForwardFailure if forwardings are disabled due to a failed | dtucker | 2008-07-01 | 1 | -2/+13 |
