summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2016-07-22Stop generating DSA host keys by default (thanks, Santiago Vila; closes: #823...Colin Watson
2016-07-22Add a session cleanup script and a systemd unit file to trigger it, which ser...Colin Watson
2016-07-22Backport upstream patch to close ControlPersist background process stderr whe...Colin Watson
2016-07-22upstream commitdjm@openbsd.org
2016-07-22Close #831902.Colin Watson
2016-07-22CVE-2016-6210: Mitigate user enumeration via covert timing channel.Colin Watson
2016-07-22Search users for one with a valid salt.Darren Tucker
2016-07-22Mitigate timing of disallowed users PAM logins.Darren Tucker
2016-07-22Determine appropriate salt for invalid users.Darren Tucker
2016-06-06Retroactively add a NEWS.Debian entry for the UseDNS change in 6.9 (see LP #1...Colin Watson
2016-05-16Set SSH_PROGRAM=/usr/bin/ssh1 when building openssh-client-ssh1 so that scp1 ...Colin Watson
2016-05-03Copy summary of supported SFTP protocol versions from upstream's PROTOCOL fil...Colin Watson
2016-04-30debian/watch: Switch to HTTP (thanks, Nicholas Luedtke; closes: #822997).Colin Watson
2016-04-28releasing package openssh version 1:7.2p2-5Colin Watson
2016-04-28Backport upstream patch to unbreak authentication using lone certificate keys...Colin Watson
2016-04-28upstream commitdjm@openbsd.org
2016-04-15releasing package openssh version 1:7.2p2-4Colin Watson
2016-04-15Policy version 3.9.7: no changes required.Colin Watson
2016-04-15Drop dependency on libnss-files-udeb (closes: #819686).Colin Watson
2016-04-13releasing package openssh version 1:7.2p2-3Colin Watson
2016-04-13CVE-2015-8325: Ignore PAM environment vars when UseLogin=yes.Colin Watson
2016-04-13ignore PAM environment vars when UseLogin=yesDamien Miller
2016-04-06Fill in CVE-2016-3115 identifier.Colin Watson
2016-04-03Change all openssh.org references to openssh.com (closes: #819213).Colin Watson
2016-03-21releasing package openssh version 1:7.2p2-2Colin Watson
2016-03-21Fix kexgss_server to cope with DH_GRP_MIN/DH_GRP_MAX being stricter on the se...Colin Watson
2016-03-21Various Debian-specific configuration changesColin Watson
2016-03-21Add systemd readiness notification supportMichael Biebl
2016-03-21Support synchronisation with service supervisor using SIGSTOPColin Watson
2016-03-21Give the ssh-askpass-gnome window a default iconVincent Untz
2016-03-21Don't check the status field of the OpenSSL versionKurt Roeckx
2016-03-21Document consequences of ssh-agent being setgid in ssh-agent(1)Colin Watson
2016-03-21Refer to ssh's Upstart job as well as its init scriptColin Watson
2016-03-21Document that HashKnownHosts may break tab-completionColin Watson
2016-03-21ssh(1): Refer to ssh-argv0(1)Colin Watson
2016-03-21Adjust various OpenBSD-specific references in manual pagesColin Watson
2016-03-21Install authorized_keys(5) as a symlink to sshd(8)Tomas Pospisek
2016-03-21Add DebianBanner server configuration optionKees Cook
2016-03-21Include the Debian version in our identificationMatthew Vernon
2016-03-21Mention ssh-keygen in ssh fingerprint changed warningScott Moser
2016-03-21Quieten logs when multiple from= restrictions are usedColin Watson
2016-03-21Force use of DNSSEC even if "options edns0" isn't in resolv.confColin Watson
2016-03-21Look for $SHELL on the path for ProxyCommand/LocalCommandColin Watson
2016-03-21Adjust scp quoting in verbose modeNicolas Valcárcel
2016-03-21Allow harmless group-writabilityColin Watson
2016-03-21Mention ~& when waiting for forwarded connections to terminateMatthew Vernon
2016-03-21Reduce severity of "Killed by signal %d"Peter Samuelson
2016-03-21"LogLevel SILENT" compatibilityJonathan David Amery
2016-03-21Various keepalive extensionsRichard Kettlewell
2016-03-21Accept obsolete ssh-vulnkey configuration optionsColin Watson