summaryrefslogtreecommitdiff
path: root/ChangeLog
diff options
context:
space:
mode:
authorDamien Miller <djm@mindrot.org>2010-06-26 10:02:03 +1000
committerDamien Miller <djm@mindrot.org>2010-06-26 10:02:03 +1000
commit383ffe6c5f31d3ecd89caadc8aef1bc2b821d63a (patch)
treee7750eda2d74570aaf7ef5bd3360a6a1a04ea53c /ChangeLog
parentbda3ecafcafd85856c6ffd0ba54b85afe6d71a84 (diff)
- djm@cvs.openbsd.org 2010/06/25 23:10:30
[ssh.c] log the hostname and address that we connected to at LogLevel=verbose after authentication is successful to mitigate "phishing" attacks by servers with trusted keys that accept authentication silently and automatically before presenting fake password/passphrase prompts; "nice!" markus@
Diffstat (limited to 'ChangeLog')
-rw-r--r--ChangeLog7
1 files changed, 7 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 2467840e0..b0f82de2f 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -67,6 +67,13 @@
67 [auth1.c auth2-none.c] 67 [auth1.c auth2-none.c]
68 skip the initial check for access with an empty password when 68 skip the initial check for access with an empty password when
69 PermitEmptyPasswords=no; bz#1638; ok markus@ 69 PermitEmptyPasswords=no; bz#1638; ok markus@
70 - djm@cvs.openbsd.org 2010/06/25 23:10:30
71 [ssh.c]
72 log the hostname and address that we connected to at LogLevel=verbose
73 after authentication is successful to mitigate "phishing" attacks by
74 servers with trusted keys that accept authentication silently and
75 automatically before presenting fake password/passphrase prompts;
76 "nice!" markus@
70 77
7120100622 7820100622
72 - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512 79 - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512