summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2020-01-26upstream: clarify order of AllowUsers/DenyUsers vsdjm@openbsd.org
2020-01-25upstream: when AddKeysToAgent=yes is set and the key contains nodjm@openbsd.org
2020-01-25upstream: group14-sha1 is no longer a default algorithmtedu@openbsd.org
2020-01-25upstream: reword HashKnownHosts description a little more; somedjm@openbsd.org
2020-01-25upstream: weaken the language for what HashKnownHosts provides withdjm@openbsd.org
2020-01-25upstream: the GatewayPorts vs -R listen address selection logic isdjm@openbsd.org
2020-01-25upstream: mention that permitopen=/PermitOpen do no name to addressdjm@openbsd.org
2020-01-25include tunnel device path in error messageDamien Miller
2020-01-25upstream: unrevert this:djm@openbsd.org
2020-01-25upstream: Move setting $NC into test-exec since it's now used bydtucker@openbsd.org
2020-01-25Put EC key export inside OPENSSL_HAS_ECC.Darren Tucker
2020-01-25upstream: Wait a bit longer for the multiplex master to become readydtucker@openbsd.org
2020-01-25upstream: Add a connection test for proxycommand. This would havedtucker@openbsd.org
2020-01-25upstream: set UpdateKnownHosts=ask by default; bz#2894; okdjm@openbsd.org
2020-01-25upstream: allow UpdateKnownHosts=yes to function when multipledjm@openbsd.org
2020-01-25upstream: process security key provider via realpath() in agent,djm@openbsd.org
2020-01-25upstream: expose PKCS#11 key labels/X.509 subjects as commentsdjm@openbsd.org
2020-01-25upstream: tweak proctitle to include sshd arguments, as these aredjm@openbsd.org
2020-01-25upstream: add xextendf() to extend a string with a formatdjm@openbsd.org
2020-01-25upstream: minor tweaks to ssh-keygen -Y find-principals:djm@openbsd.org
2020-01-25upstream: remove ssh-rsa (SHA1) from the list of allowed CAdjm@openbsd.org
2020-01-25upstream: when signing a certificate with an RSA key, default todjm@openbsd.org
2020-01-25upstream: allow PEM export of DSA and ECDSA keys; bz3091, patchdjm@openbsd.org
2020-01-25upstream: ssh-keygen -Y find-principals fixes based on feedbackdjm@openbsd.org
2020-01-24upstream: Do not warn about permissions on symlinks.dtucker@openbsd.org
2020-01-23upstream: Handle zlib compression being disabled now that it'sdtucker@openbsd.org
2020-01-23upstream: Fix typo in comment.dtucker@openbsd.org
2020-01-23upstream: When checking for unsafe directories, ignore non-directoriesdtucker@openbsd.org
2020-01-23zlib is now optional.Darren Tucker
2020-01-23Plumb WITH_ZLIB into configure.Darren Tucker
2020-01-23upstream: Make zlib optional. This adds a "ZLIB" build time optiondtucker@openbsd.org
2020-01-23upstream: remove trailing period characters from pub/priv keydjm@openbsd.org
2020-01-23Fix a couple of mysig_t leftovers.Darren Tucker
2020-01-23Remove mysignal wrapper.Darren Tucker
2020-01-23upstream: new sentence, new line;jmc@openbsd.org
2020-01-23upstream: Replace all calls to signal(2) with a wrapper arounddtucker@openbsd.org
2020-01-23upstream: missing header change from previous; spotted by dtucker@djm@openbsd.org
2020-01-23upstream: Check for and warn about StrictModes permission problems. ok tb@dtucker@openbsd.org
2020-01-23upstream: Also test PuTTY chacha20.dtucker@openbsd.org
2020-01-23upstream: Also test PuTTY ecdh kex methods.dtucker@openbsd.org
2020-01-23upstream: Remove unsupported algorithms from list of defaults at rundtucker@openbsd.org
2020-01-23upstream: add a new signature operations "find-principal" to lookdjm@openbsd.org
2020-01-23upstream: Ignore whitespace when checking explict fingerprint.dtucker@openbsd.org
2020-01-22upstream: Increase keyscan timeout from default. On slow hosts 3dtucker@openbsd.org
2020-01-22upstream: remove diffie-hellman-group14-sha1 from default kex totedu@openbsd.org
2020-01-22upstream: For ssh-keygen -lF only add a space after key fingerprintclaudio@openbsd.org
2020-01-22upstream: some __func__ and strerror(errno) here; no functionaldjm@openbsd.org
2020-01-22upstream: factor out parsing of allowed-signers linesdjm@openbsd.org
2020-01-22unbreak fuzzer support for recent ssh-sk.h changesDamien Miller
2020-01-22upstream: expose the number of currently-authenticating connectionsdjm@openbsd.org