Age | Commit message (Collapse) | Author | |
---|---|---|---|
2016-05-04 | Convert #ifdef to #if, other build changes | Matt Johnston | |
2016-05-02 | options for disabling "normal" DH | Matt Johnston | |
2016-05-02 | move group14 and group16 to options.h, group14-sha256 on by default | Matt Johnston | |
2016-03-12 | Get rid of group15, move group16 to sha512. | Matt Johnston | |
New groups are disabled by default pending draft-ietf-curdle-ssh-kex-sha2-02 being finalised | |||
2016-01-15 | add dh group15 and group16, disabled by default | Matt Johnston | |
2015-10-21 | Test for crypt() rather than crypt.h | Matt Johnston | |
Print a message from configure if getpass() or crypt() were missing | |||
2015-10-21 | fix default build when getpass() is unavailable | Mike Frysinger | |
if the system doesn't support getpass, we still default on the options that require it which causes a build failure. instead, only default enable these when getpass is available. | |||
2015-10-21 | fix default build when crypt() is unavailable | Mike Frysinger | |
if the system doesn't support crypt.h/crypt, then ENABLE_SVR_PASSWORD_AUTH cannot work. rather than default this to on all the time, do so only when support for the header is found. | |||
2015-08-03 | change DROPBEAR_DEFAULT_CLI_AUTHKEY to just prepend homedir | Matt Johnston | |
rather than doing ~ expansion | |||
2015-06-03 | Disable twofish-ctr by default, add config option | Matt Johnston | |
2015-02-24 | DROPBEAR_ prefix for include guards to avoid collisions | Thorsten Horstmann | |
2015-02-10 | Tighten validation of DH values. Odds of x==0 being generated are | Matt Johnston | |
improbable, roughly 2**-1023 Regression in 0.49 | |||
2015-01-28 | Disable non-delayed zlib for server | Matt Johnston | |
2015-01-24 | Default client key path ~/.ssh/id_dropbear | Matt Johnston | |
2015-01-23 | Add config option to disable cbc. Disable twofish by default | Matt Johnston | |
2015-01-13 | Enable sha2 HMACs by default, they're required for ecdsa already | Matt Johnston | |
2014-08-01 | use xauth in /usr/bin | Mike Frysinger | |
Since the x.org rework, X has been installed into standard paths and not its own random prefixes. I think it's time we update the default paths accordingly. | |||
2014-07-09 | Make -K keepalive behave like OpenSSH's ServerAliveInterval | Matt Johnston | |
2014-02-19 | CHANGES for 2014.63 | Matt Johnston | |
2014-01-17 | DROPBEAR_CLI_AUTH_IMMEDIATE fixed, now enabled by default | Matt Johnston | |
2013-11-14 | use oldstyle comments | Matt Johnston | |
2013-11-09 | comments, turn off debugging options | Matt Johnston | |
--HG-- branch : ecc | |||
2013-11-09 | - Make curve25519 work after fixing a typo, interoperates with OpenSSH | Matt Johnston | |
- comment on ecc binary size effects --HG-- branch : ecc | |||
2013-11-08 | Merge | Matt Johnston | |
--HG-- branch : ecc | |||
2013-11-08 | curve25519 | Matt Johnston | |
--HG-- branch : ecc | |||
2013-11-07 | Add '-R' for delayed hostkey option | Matt Johnston | |
--HG-- branch : keyondemand | |||
2013-11-07 | refactor key generation, make it generate as required. | Matt Johnston | |
Needs UI in server command line options --HG-- branch : keyondemand | |||
2013-05-21 | Enable SMALL_CODE by default | Matt Johnston | |
--HG-- branch : ecc | |||
2013-05-21 | merge in HEAD | Matt Johnston | |
--HG-- branch : ecc | |||
2013-05-03 | ecdsa is working | Matt Johnston | |
--HG-- branch : ecc | |||
2013-04-18 | Don't enable CLI_IMMEDIATE_AUTH by default, it breaks blank password logins | Matt Johnston | |
2013-04-09 | start on ecdsa keys | Matt Johnston | |
--HG-- branch : ecc | |||
2013-04-07 | ecc kind of works, needs fixing/testing | Matt Johnston | |
--HG-- branch : ecc | |||
2013-04-03 | Fix a few options and headers | Matt Johnston | |
2013-03-29 | Add kexguess2 behaviour | Matt Johnston | |
--HG-- branch : kexguess | |||
2013-03-26 | refactor kexdh code a bit, start working on ecdh etc | Matt Johnston | |
--HG-- branch : ecc | |||
2013-03-20 | Fix "-c none" so that it allows aes during authentication | Matt Johnston | |
Default for options.h shouldn't allow "none" | |||
2013-03-20 | Merge "none" cipher/MAC branch. Also adds sha256 and sha512 | Matt Johnston | |
2013-02-23 | DSS_PROTOK is not necessary now that private keys are included | Matt Johnston | |
in the random generation input | |||
2013-02-12 | Allow configuring "allow blank password option" at runtime | Paul Eggleton | |
Changes this from a compile-time switch to a command-line option. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> | |||
2012-06-29 | Improve RNG seeding. | Matt Johnston | |
Try to read from /dev/urandom multiple times, take input from extra sources, and use /dev/random when generating private keys | |||
2012-05-17 | - Only request "none" cipher after auth has succeeded | Matt Johnston | |
--HG-- branch : insecure-nocrypto | |||
2012-05-17 | Add ALLOW_NONE_PASSWORD_AUTH option | Matt Johnston | |
--HG-- branch : insecure-nocrypto | |||
2012-05-17 | Merge in "-m"/"-c" code | Matt Johnston | |
--HG-- branch : insecure-nocrypto | |||
2012-05-17 | ENABLE_USER_ALGO_LIST should work for the client | Matt Johnston | |
2012-05-17 | Add rough support for choosing ciphers/hashes with "-c" or "-m" | Matt Johnston | |
2012-05-16 | Update insecure-nocrypto to current head | Matt Johnston | |
--HG-- branch : insecure-nocrypto | |||
2012-05-16 | Disable SHA256 and SHA512 by default in options.h | Matt Johnston | |
--HG-- branch : sha2 | |||
2012-05-10 | - Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to be | Matt Johnston | |
getting keyed incorrectly --HG-- branch : sha2 | |||
2012-05-09 | Fix empty password immediate login | Matt Johnston | |