summaryrefslogtreecommitdiff
path: root/ssh-keysign.c
AgeCommit message (Collapse)Author
2003-05-18 - djm@cvs.openbsd.org 2003/05/16 03:27:12Damien Miller
[readconf.c ssh_config ssh_config.5 ssh-keysign.c] add AddressFamily option to ssh_config (like -4, -6 on commandline). Portable bug #534; ok markus@
2003-04-09 - markus@cvs.openbsd.org 2003/04/02 14:36:26Damien Miller
[ssh-keysign.c] potential segfault if KEY_UNSPEC; cjwatson@debian.org; bug #526
2003-03-15 - (djm) OpenBSD CVS SyncDamien Miller
- markus@cvs.openbsd.org 2003/03/13 11:42:19 [authfile.c ssh-keysign.c] move RSA_blinding_on to generic key load method
2002-12-23 - (bal) [msg.c msg.h scp.c ssh-keysign.c sshconnect2.c] Resync CVS IDs sinceBen Lindstrom
we already did s/msg_send/ssh_msg_send/
2002-11-09 - markus@cvs.openbsd.org 2002/11/07 22:08:07Ben Lindstrom
[readconf.c readconf.h ssh-keysign.8 ssh-keysign.c] we cannot use HostbasedAuthentication for enabling ssh-keysign(8), because HostbasedAuthentication might be enabled based on the target host and ssh-keysign(8) does not know the remote hostname and not trust ssh(1) about the hostname, so we add a new option EnableSSHKeysign; ok djm@, report from zierke@informatik.uni-hamburg.de
2002-10-04 - (djm) Bug #406: s/msg_send/ssh_msg_send/ for Mac OS X 1.2Damien Miller
2002-07-04 - markus@cvs.openbsd.org 2002/07/03 14:21:05Ben Lindstrom
[ssh-keysign.8 ssh-keysign.c ssh.c ssh_config] re-enable ssh-keysign's sbit, but make ssh-keysign read /etc/ssh/ssh_config and exit if HostbasedAuthentication is disabled globally. based on discussions with deraadt, itojun and sommerfeld; ok itojun@
2002-07-04 - markus@cvs.openbsd.org 2002/07/03 09:55:38Ben Lindstrom
[ssh-keysign.c] use RSA_blinding_on() for rsa hostkeys (suggested by Bill Sommerfeld) in order to avoid a possible Kocher timing attack pointed out by Charles Hannum; ok provos@
2002-06-27 - markus@cvs.openbsd.org 2002/06/26 22:27:32Ben Lindstrom
[ssh-keysign.c] bug #304, xfree(data) called to early; openssh@sigint.cs.purdue.edu
2002-06-21 - deraadt@cvs.openbsd.org 2002/06/19 00:27:55Ben Lindstrom
[auth-bsdauth.c auth-skey.c auth1.c auth2-chall.c auth2-none.c authfd.c authfd.h monitor_wrap.c msg.c nchan.c radix.c readconf.c scp.c sftp.1 ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh-keygen.c ssh-keysign.c ssh.1 sshconnect.c sshconnect.h sshconnect2.c ttymodes.c xmalloc.h] KNF done automatically while reading....
2002-06-09 - markus@cvs.openbsd.org 2002/06/08 05:07:09Ben Lindstrom
[ssh-keysign.c] only accept 20 byte session ids
2002-06-09unexpandBen Lindstrom
2002-06-07 - (bal) Missed __progname in ssh-keysign.c patch by dtucker@zip.com.auBen Lindstrom
2002-06-07 - (bal) ssh-keysign should build and install correctly now. Phase twoBen Lindstrom
would be to clean out any dead wood and disable ssh setuid on install.
2002-06-06 - markus@cvs.openbsd.org 2002/05/23 19:24:30Ben Lindstrom
[authfile.c authfile.h pathnames.h ssh.c sshconnect.c sshconnect.h sshconnect1.c sshconnect2.c ssh-keysign.8 ssh-keysign.c Makefile.in] add /usr/libexec/ssh-keysign: a setuid helper program for hostbased authentication in protocol v2 (needs to access the hostkeys). Note: Makefile.in untested. Will test after merge is finished.