- djm@cvs.openbsd.org 2011/08/02 01:22:11

[mac.c myproposal.h ssh.1 ssh_config.5 sshd.8 sshd_config.5] Add new SHA256 and SHA512 based HMAC modes from http://www.ietf.org/id/draft-dbider-sha2-mac-for-ssh-02.txt Patch from mdb AT juniper.net; feedback and ok markus@
author: Damien Miller <djm@mindrot.org> 2011-08-06 06:17:30 +1000
committer: Damien Miller <djm@mindrot.org> 2011-08-06 06:17:30 +1000
commit: 20bd4535c01f4a47f535d6e4dc84420a6c5425a5 (patch)
tree: 286fecc890f7799e26b68c08d9f2436b448bbc55 /sshd.8
parent: adb467fb692600c569d8129dfd96371b481d2653 (diff)
1 files changed, 4 insertions, 3 deletions
diff --git a/sshd.8 b/sshd.8
index 45362e29a..a91be0fad 100644
--- a/sshd.8
+++ b/sshd.8
@@ -33,8 +33,8 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: sshd.8,v 1.262 2011/05/23 07:10:21 jmc Exp $
+.\" $OpenBSD: sshd.8,v 1.263 2011/08/02 01:22:11 djm Exp $
-.Dd $Mdocdate: May 23 2011 $
+.Dd $Mdocdate: August 2 2011 $
 .Dt SSHD 8
 .Os
 .Sh NAME
@@ -314,7 +314,8 @@ The client selects the encryption algorithm
 to use from those offered by the server.
 Additionally, session integrity is provided
 through a cryptographic message authentication code
-(hmac-md5, hmac-sha1, umac-64 or hmac-ripemd160).
+(hmac-md5, hmac-sha1, umac-64, hmac-ripemd160,
+hmac-sha2-256 or hmac-sha2-512).
 .Pp
 Finally, the server and the client enter an authentication dialog.
 The client tries to authenticate itself using
author	Damien Miller <djm@mindrot.org>	2011-08-06 06:17:30 +1000
committer	Damien Miller <djm@mindrot.org>	2011-08-06 06:17:30 +1000
commit	20bd4535c01f4a47f535d6e4dc84420a6c5425a5 (patch)
tree	286fecc890f7799e26b68c08d9f2436b448bbc55 /sshd.8
parent	adb467fb692600c569d8129dfd96371b481d2653 (diff)

diff --git a/sshd.8 b/sshd.8 index 45362e29a..a91be0fad 100644 --- a/sshd.8 +++ b/sshd.8
@@ -33,8 +33,8 @@
33	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	33	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
34	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	34	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35	.\"	35	.\"
36	.\" $OpenBSD: sshd.8,v 1.262 2011/05/23 07:10:21 jmc Exp $	36	.\" $OpenBSD: sshd.8,v 1.263 2011/08/02 01:22:11 djm Exp $
37	.Dd $Mdocdate: May 23 2011 $	37	.Dd $Mdocdate: August 2 2011 $
38	.Dt SSHD 8	38	.Dt SSHD 8
39	.Os	39	.Os
40	.Sh NAME	40	.Sh NAME
@@ -314,7 +314,8 @@ The client selects the encryption algorithm
314	to use from those offered by the server.	314	to use from those offered by the server.
315	Additionally, session integrity is provided	315	Additionally, session integrity is provided
316	through a cryptographic message authentication code	316	through a cryptographic message authentication code
317	(hmac-md5, hmac-sha1, umac-64 or hmac-ripemd160).	317	(hmac-md5, hmac-sha1, umac-64, hmac-ripemd160,
		318	hmac-sha2-256 or hmac-sha2-512).
318	.Pp	319	.Pp
319	Finally, the server and the client enter an authentication dialog.	320	Finally, the server and the client enter an authentication dialog.
320	The client tries to authenticate itself using	321	The client tries to authenticate itself using