diff options
| author | Damien Miller <djm@mindrot.org> | 2010-06-26 10:02:03 +1000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2010-06-26 10:02:03 +1000 |
| commit | 383ffe6c5f31d3ecd89caadc8aef1bc2b821d63a (patch) | |
| tree | e7750eda2d74570aaf7ef5bd3360a6a1a04ea53c /ChangeLog | |
| parent | bda3ecafcafd85856c6ffd0ba54b85afe6d71a84 (diff) | |
- djm@cvs.openbsd.org 2010/06/25 23:10:30
[ssh.c]
log the hostname and address that we connected to at LogLevel=verbose
after authentication is successful to mitigate "phishing" attacks by
servers with trusted keys that accept authentication silently and
automatically before presenting fake password/passphrase prompts;
"nice!" markus@
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 7 |
1 files changed, 7 insertions, 0 deletions
| @@ -67,6 +67,13 @@ | |||
| 67 | [auth1.c auth2-none.c] | 67 | [auth1.c auth2-none.c] |
| 68 | skip the initial check for access with an empty password when | 68 | skip the initial check for access with an empty password when |
| 69 | PermitEmptyPasswords=no; bz#1638; ok markus@ | 69 | PermitEmptyPasswords=no; bz#1638; ok markus@ |
| 70 | - djm@cvs.openbsd.org 2010/06/25 23:10:30 | ||
| 71 | [ssh.c] | ||
| 72 | log the hostname and address that we connected to at LogLevel=verbose | ||
| 73 | after authentication is successful to mitigate "phishing" attacks by | ||
| 74 | servers with trusted keys that accept authentication silently and | ||
| 75 | automatically before presenting fake password/passphrase prompts; | ||
| 76 | "nice!" markus@ | ||
| 70 | 77 | ||
| 71 | 20100622 | 78 | 20100622 |
| 72 | - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512 | 79 | - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512 |