Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-06-04 | buf_getstring and buf_putstring now use non-unsigned char* | Matt Johnston | |
2015-06-04 | Merge pull request #13 from gazoo74/fix-warnings | Matt Johnston | |
Fix warnings | |||
2015-06-03 | Disable twofish-ctr by default, add config option | Matt Johnston | |
2015-05-05 | Turn Algo_Type's name attribute into const char * | Gaël PORTAY | |
2015-05-05 | Fix pointer differ in signess warnings [-Werror=pointer-sign] | Gaël PORTAY | |
2015-02-24 | Fix for old compilers, variable declarations at beginning of functions | Thorsten Horstmann | |
and /**/ comments | |||
2015-02-13 | merge | Matt Johnston | |
2015-02-04 | twofish ctr modes | Matt Johnston | |
2015-01-28 | Keep sha1 default | Matt Johnston | |
2015-01-28 | Disable non-delayed zlib for server | Matt Johnston | |
2015-01-23 | Prefer stronger algorithms in algorithm negotiation. | Fedor Brunner | |
Prefer diffie-hellman-group14-sha1 (2048 bit) over diffie-hellman-group1-sha1 (1024 bit). Due to meet-in-the-middle attacks the effective key length of three key 3DES is 112 bits. AES is stronger and faster then 3DES. Prefer to delay the start of compression until after authentication has completed. This avoids exposing compression code to attacks from unauthenticated users. (github pull request #9) | |||
2015-01-23 | Add config option to disable cbc. Disable twofish by default | Matt Johnston | |
2013-11-14 | use oldstyle comments | Matt Johnston | |
2013-11-12 | Various cleanups and fixes for warnings | Matt Johnston | |
--HG-- branch : ecc | |||
2013-11-08 | curve25519 | Matt Johnston | |
--HG-- branch : ecc | |||
2013-10-31 | Default to some larger key sizes | Matt Johnston | |
--HG-- branch : ecc | |||
2013-05-21 | merge in HEAD | Matt Johnston | |
--HG-- branch : ecc | |||
2013-05-03 | ecdsa is working | Matt Johnston | |
--HG-- branch : ecc | |||
2013-04-09 | start on ecdsa keys | Matt Johnston | |
--HG-- branch : ecc | |||
2013-04-08 | - Fix various hardcoded uses of SHA1 | Matt Johnston | |
- rename curves to nistp256 etc - fix svr-auth.c TRACE problem --HG-- branch : ecc | |||
2013-04-07 | ecc kind of works, needs fixing/testing | Matt Johnston | |
--HG-- branch : ecc | |||
2013-04-03 | merge kexguess branch | Matt Johnston | |
2013-04-03 | Put some #ifdef options around first-follows options in case they | Matt Johnston | |
need to be disabled --HG-- branch : kexguess | |||
2013-04-03 | Don't usually need to recalculate dh_e for the repeated kexdh_init packet | Matt Johnston | |
--HG-- branch : kexguess | |||
2013-03-30 | Get rid of client/server specific buf_match_algo, use single | Matt Johnston | |
function with a couple of if statements instead --HG-- branch : kexguess | |||
2013-03-29 | Add kexguess2 behaviour | Matt Johnston | |
--HG-- branch : kexguess | |||
2013-03-29 | More changes for KEX and ECDH. Set up hash descriptors, make ECC code work, | Matt Johnston | |
ses.hash and ses.session_id are now buffers (doesn't compile) --HG-- branch : ecc | |||
2013-03-27 | more bits on ecc branch | Matt Johnston | |
--HG-- branch : ecc | |||
2013-03-26 | refactor kexdh code a bit, start working on ecdh etc | Matt Johnston | |
--HG-- branch : ecc | |||
2013-03-21 | Make hmac-sha2-256 and hmac-sha2-512 work | Matt Johnston | |
2012-05-17 | - Only request "none" cipher after auth has succeeded | Matt Johnston | |
--HG-- branch : insecure-nocrypto | |||
2012-05-17 | Merge in "-m"/"-c" code | Matt Johnston | |
--HG-- branch : insecure-nocrypto | |||
2012-05-17 | ENABLE_USER_ALGO_LIST should work for the client | Matt Johnston | |
2012-05-17 | Add rough support for choosing ciphers/hashes with "-c" or "-m" | Matt Johnston | |
2012-05-16 | Update insecure-nocrypto to current head | Matt Johnston | |
--HG-- branch : insecure-nocrypto | |||
2012-05-10 | - Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to be | Matt Johnston | |
getting keyed incorrectly --HG-- branch : sha2 | |||
2011-02-24 | Add diffie-hellman-group14-sha1 KEX method | Matt Johnston | |
--HG-- extra : convert_revision : 5b9c394ad43745e48c42d671cefac7a5c346082f | |||
2011-02-23 | Improve capitalisation for all logged strings | Matt Johnston | |
--HG-- extra : convert_revision : 997e53cec7a9efb7413ac6e17b6be60a5597bd2e | |||
2009-09-11 | - Disable compression for non-final multihops | Matt Johnston | |
--HG-- extra : convert_revision : c507a2aacb9e0db4c0266891b8915c614e32857e | |||
2009-06-09 | - Don't memcpy() in place with void_encrypt | Matt Johnston | |
--HG-- extra : convert_revision : d123343d78df1b5998d8dd2674fd83fd682ce0c0 | |||
2008-11-06 | Update nocrypto branch to current head | Matt Johnston | |
--HG-- branch : insecure-nocrypto extra : convert_revision : 9e5e6e33be005d27cd5b3270c574edc45b5c2893 | |||
2008-11-06 | propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵ | Matt Johnston | |
cdcc3c729e29544e8b98a408e2dc60e4483dfd2a) to branch 'au.asn.ucc.matt.dropbear.insecure-nocrypto' (head 0ca38a1cf349f7426ac9de34ebe4c3e3735effab) --HG-- branch : insecure-nocrypto extra : convert_revision : dbb093e087a68abf2e54ab0b711af70771ddb29d | |||
2008-09-29 | - Get rid of blowfish and twofish CTR since they weren't likely | Matt Johnston | |
to be that useful --HG-- extra : convert_revision : e16bd265bb6e8093b3488993dffc86662a2a7a62 | |||
2008-09-29 | - Add Counter Mode support | Matt Johnston | |
--HG-- extra : convert_revision : 5225162bdf32d70b58b6d3ae375a290326c59f3a | |||
2008-09-29 | Add support for zlib@openssh.com delayed compression. | Matt Johnston | |
Are still advertising 'zlib' for the server, need to allow delayed-only as an option --HG-- extra : convert_revision : 319df675cc3c9b35a10b7d8357c94f33fdab1a46 | |||
2007-02-04 | Add comments about requiring keysize <= 2*SHA1_HASH_SIZE | Matt Johnston | |
--HG-- extra : convert_revision : bcb33fce2fad01a7626598209d43af3571bd86f0 | |||
2006-03-10 | propagate from branch 'au.asn.ucc.matt.dropbear' (head ↵ | Matt Johnston | |
7ad1775ed65e75dbece27fe6b65bf1a234db386a) to branch 'au.asn.ucc.matt.dropbear.insecure-nocrypto' (head 88ed2b94d9bfec9a4f661caf592ed01da5eb3b6a) --HG-- branch : insecure-nocrypto extra : convert_revision : 2b954d406290e6a2be8eb4a262d3675ac95ac544 | |||
2005-11-08 | * common-algo.c: use zlib for dbclient | Matt Johnston | |
--HG-- extra : convert_revision : 71c8d2ac84129e8aa204e7e35a44066fd1bea584 | |||
2005-09-23 | - a hack for grahame to run dropbear with "none" cipher. | Matt Johnston | |
DO NOT USE IF YOU DON'T KNOW THE CONSEQUENCES Here is your noose. Use it wisely. --HG-- branch : insecure-nocrypto extra : convert_revision : 88ed2b94d9bfec9a4f661caf592ed01da5eb3b6a | |||
2005-09-02 | use a buffer rather than raw char array for creating | Matt Johnston | |
the comma-seperated algorithm lists --HG-- extra : convert_revision : bd00bc1e914dc1a816e9a2cca38c7bd3b6865dd0 |