summaryrefslogtreecommitdiff
path: root/sshd.8
AgeCommit message (Collapse)Author
2005-12-24 - stevesk@cvs.openbsd.org 2005/12/21 22:44:26Damien Miller
[sshd.8] clarify precedence of -p, Port, ListenAddress; ok and help jmc@
2005-12-13 - reyk@cvs.openbsd.org 2005/12/06 22:38:28Damien Miller
[auth-options.c auth-options.h channels.c channels.h clientloop.c] [misc.c misc.h readconf.c readconf.h scp.c servconf.c servconf.h] [serverloop.c sftp.c ssh.1 ssh.c ssh_config ssh_config.5 sshconnect.c] [sshconnect.h sshd.8 sshd_config sshd_config.5] Add support for tun(4) forwarding over OpenSSH, based on an idea and initial channel code bits by markus@. This is a simple and easy way to use OpenSSH for ad hoc virtual private network connections, e.g. administrative tunnels or secure wireless access. It's based on a new ssh channel and works similar to the existing TCP forwarding support, except that it depends on the tun(4) network interface on both ends of the connection for layer 2 or layer 3 tunneling. This diff also adds support for LocalCommand in the ssh(1) client. ok djm@, markus@, jmc@ (manpages), tested and discussed with others
2005-11-28 - (tim) [configure.ac sshd.8] Enable locked account check (a "*LK*" string)Tim Rice
for UnixWare.
2005-10-05 - (dtucker) [configure.ac sshd.8] Enable locked account check (a prependedDarren Tucker
"*LOCKED*" string) for FreeBSD. Patch jeremie at le-hen.org and senthilkumar_sen at hotpop.com.
2005-06-16 - djm@cvs.openbsd.org 2005/06/08 03:50:00Damien Miller
[ssh-keygen.1 ssh-keygen.c sshd.8] increase default rsa/dsa key length from 1024 to 2048 bits; ok markus@ deraadt@
2005-05-26 - djm@cvs.openbsd.org 2005/04/21 06:17:50Damien Miller
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh.1 ssh_config.5 sshd.8] [sshd_config.5] OpenSSH doesn't ever look at the $HOME environment variable, so don't say that we do (bz #623); ok deraadt@
2005-03-02 - jmc@cvs.openbsd.org 2005/03/01 14:59:49Damien Miller
[sshd.8] new sentence, new line; whitespace;
2005-03-01 - djm@cvs.openbsd.org 2005/03/01 10:40:27Damien Miller
[hostfile.c hostfile.h readconf.c readconf.h ssh.1 ssh_config.5] [sshconnect.c sshd.8] add support for hashing host names and addresses added to known_hosts files, to improve privacy of which hosts user have been visiting; ok markus@ deraadt@
2005-03-01 - jmc@cvs.openbsd.org 2005/02/25 10:55:13Damien Miller
[sshd.8] add /etc/motd and $HOME/.hushlogin to FILES; from michael knudsen;
2004-12-06 - dtucker@cvs.openbsd.org 2004/12/06 11:41:03Darren Tucker
[auth-rsa.c auth2-pubkey.c authfile.c misc.c misc.h ssh.h sshd.8] Discard over-length authorized_keys entries rather than complaining when they don't decode. bz #884, with & ok djm@
2004-08-29 - markus@cvs.openbsd.org 2004/08/26 16:00:55Darren Tucker
[ssh.1 sshd.8] get rid of references to rhosts authentication; with jmc@
2004-05-02 - dtucker@cvs.openbsd.org 2004/05/02 11:54:31Darren Tucker
[sshd.8] Man page grammar fix (bz #858), from damerell at chiark.greenend.org.uk via Debian; ok djm@
2003-10-15 - jmc@cvs.openbsd.org 2003/10/08 08:27:36Darren Tucker
[scp.1 scp.c sftp-server.8 sftp.1 sftp.c ssh.1 sshd.8] scp and sftp: add options list and sort options. options list requested by deraadt@ sshd: use same format as ssh ssh: remove wrong option from list sftp-server: Subsystem is documented in ssh_config(5), not sshd(8) ok deraadt@ markus@
2003-08-25 - (dtucker) [acconfig.h auth.c configure.ac sshd.8] Bug #422 again: denyDarren Tucker
any access to locked accounts. ok djm@
2003-08-13 - markus@cvs.openbsd.org 2003/08/13 08:46:31Darren Tucker
[auth1.c readconf.c readconf.h servconf.c servconf.h ssh.c ssh_config ssh_config.5 sshconnect1.c sshd.8 sshd.c sshd_config sshd_config.5] remove RhostsAuthentication; suggested by djm@ before; ok djm@, deraadt@, fgsch@, miod@, henning@, jakob@ and others
2003-06-11 - jmc@cvs.openbsd.org 2003/06/10 09:12:11Damien Miller
[scp.1 sftp-server.8 ssh.1 ssh-add.1 ssh-agent.1 ssh_config.5] [sshd.8 sshd_config.5 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8] - section reorder - COMPATIBILITY merge - macro cleanup - kill whitespace at EOL - new sentence, new line ssh pages ok markus@
2003-05-23 - jmc@cvs.openbsd.org 2003/05/20 12:09:31Damien Miller
[ssh.1 ssh_config.5 sshd.8 sshd_config.5 ssh-keygen.1] new sentence, new line
2003-05-14 - david@cvs.openbsd.org 2003/04/30 20:41:07Damien Miller
[sshd.8] fix invalid .Pf macro usage introduced in previous commit ok jmc@ mouring@
2003-05-14 - mouring@cvs.openbsd.org 2003/04/30 01:16:20Damien Miller
[sshd.8 sshd_config.5] Escape ?, * and ! in .Ql for nroff compatibility. OpenSSH Portable Bug #550 and * escaping suggested by jmc@.
2003-02-24 - jmc@cvs.openbsd.org 2003/01/31 21:54:40Damien Miller
[sshd.8] typos; sshd(8): help and ok markus@ help and ok millert@
2002-09-25 - todd@cvs.openbsd.org 2002/09/24 20:59:44Damien Miller
[sshd.8] tweak the example $HOME/.ssh/rc script to not show on any cmdline the sensitive data it handles. This fixes bug # 402 as reported by kolya@mit.edu (Nickolai Zeldovich). ok markus@ and stevesk@
2002-09-19 - stevesk@cvs.openbsd.org 2002/09/16 22:03:13Damien Miller
[sshd.8] reference moduli(5) in FILES /etc/moduli.
2002-09-05 - (djm) OpenBSD CVS SyncDamien Miller
- stevesk@cvs.openbsd.org 2002/09/04 18:52:42 [servconf.c sshd.8 sshd_config.5] default LoginGraceTime to 2m; 1m may be too short for slow systems. ok markus@
2002-09-04 - stevesk@cvs.openbsd.org 2002/08/21 19:38:06Damien Miller
[servconf.c sshd.8 sshd_config sshd_config.5] change LoginGraceTime default to 1 minute; ok mouring@ markus@
2002-09-04 - espie@cvs.openbsd.org 2002/08/21 11:20:59Damien Miller
[sshd.8] `RSA' updated to refer to `public key', where it matters. okay markus@
2002-08-20 - stevesk@cvs.openbsd.org 2002/08/12 17:30:35Ben Lindstrom
[ssh.1 sshd.8 sshd_config.5] more PermitUserEnvironment; ok markus@
2002-08-20 - marc@cvs.openbsd.org 2002/08/02 16:00:07Ben Lindstrom
[ssh.1 sshd.8] note that .ssh/environment is only read when allowed (PermitUserEnvironment in sshd_config). OK markus@
2002-06-23 - stevesk@cvs.openbsd.org 2002/06/22 16:45:29Ben Lindstrom
[ssh-agent.1 sshd.8 sshd_config.5] use process ID vs. pid/PID/process identifier
2002-06-23 - stevesk@cvs.openbsd.org 2002/06/22 16:32:54Ben Lindstrom
[sshd.8] add /var/empty in FILES section
2002-06-21 - stevesk@cvs.openbsd.org 2002/06/20 19:56:07Ben Lindstrom
[ssh.1 sshd.8] move configuration file options from ssh.1/sshd.8 to ssh_config.5/sshd_config.5; ok deraadt@ millert@
2002-06-06 - stevesk@cvs.openbsd.org 2002/05/29 03:06:30Ben Lindstrom
[ssh.1 sshd.8] spelling
2002-06-06 - markus@cvs.openbsd.org 2002/05/15 21:56:38Ben Lindstrom
[servconf.c sshd.8 sshd_config] re-enable privsep and disable setuid for post-3.2.2
2002-05-15 - markus@cvs.openbsd.org 2002/05/15 21:02:53Ben Lindstrom
[servconf.c sshd.8 sshd_config] disable privsep and enable setuid for the 3.2.2 release
2002-05-15 - millert@cvs.openbsd.org 2002/05/06 23:34:33Ben Lindstrom
[ssh.1 sshd.8] Kill/adjust r(login|exec)d? references now that those are no longer in the tree.
2002-05-15 - deraadt@cvs.openbsd.org 2002/05/04 02:39:35Ben Lindstrom
[servconf.c sshd.8 sshd_config] enable privsep by default; provos ok (historical)
2002-04-23 - markus@cvs.openbsd.org 2002/04/22 16:16:53Damien Miller
[servconf.c sshd.8 sshd_config] do not auto-enable KerberosAuthentication; ok djm@, provos@, deraadt@
2002-04-23 - stevesk@cvs.openbsd.org 2002/04/21 16:19:27Damien Miller
[sshd.8 sshd_config] document default AFSTokenPassing no; ok deraadt@
2002-04-05 - stevesk@cvs.openbsd.org 2002/04/05 20:56:21Ben Lindstrom
[sshd.8] clarify sshrc some and handle X11UseLocalhost=yes; ok markus@
2002-04-02 - stevesk@cvs.openbsd.org 2002/03/29 19:16:22Ben Lindstrom
[sshd.8] RSA key modulus size minimum 768; ok markus@
2002-03-27 - markus@cvs.openbsd.org 2002/03/26 11:34:49Ben Lindstrom
[ssh.1 sshd.8] update to recent drafts
2002-03-22 - stevesk@cvs.openbsd.org 2002/03/19 05:23:08Ben Lindstrom
[sshd.8] Banner has no default.
2002-03-22 - provos@cvs.openbsd.org 2002/03/18 17:59:09Ben Lindstrom
[sshd.8] document UsePrivilegeSeparation
2002-03-22 - provos@cvs.openbsd.org 2002/03/18 17:53:08Ben Lindstrom
[sshd.8] credits for privsep
2002-03-05 - stevesk@cvs.openbsd.org 2002/02/28 20:46:10Ben Lindstrom
[sshd.8] -u0 DNS for user@host
2002-03-05 - stevesk@cvs.openbsd.org 2002/02/28 20:36:42Ben Lindstrom
[sshd.8] DenyUsers allows user@host pattern also
2002-02-10 - deraadt@cvs.openbsd.org 2002/02/10 01:07:05Damien Miller
[readconf.h sshd.8] more /etc/ssh; openbsd@davidkrause.com
2002-02-10 - (djm) OpenBSD CVS SyncDamien Miller
- deraadt@cvs.openbsd.org 2002/02/09 17:37:34 [pathnames.h session.c ssh.1 sshd.8 sshd_config ssh-keyscan.1] move ssh config files to /etc/ssh - (djm) Adjust portable Makefile.in tnd ssh-rand-helper.c o match
2002-02-05 - stevesk@cvs.openbsd.org 2002/02/03 22:35:57Damien Miller
[ssh.1 sshd.8] some KeepAlive cleanup/clarify; ok markus@
2002-02-05 - markus@cvs.openbsd.org 2002/01/29 14:32:03Damien Miller
[auth2.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c canohost.c servconf.c servconf.h session.c sshd.8 sshd_config] s/ReverseMappingCheck/VerifyReverseMapping/ and avoid confusion; ok stevesk@
2002-02-05 - stevesk@cvs.openbsd.org 2002/01/27 14:57:46Damien Miller
[channels.c servconf.c servconf.h session.c sshd.8 sshd_config] add X11UseLocalhost; ok markus@