Age | Commit message (Expand) | Author |
2019-03-21 | limit password length to 100 | Matt Johnston |
2018-08-23 | Wait to fail invalid usernames | Matt Johnston |
2016-05-04 | Convert #ifdef to #if, other build changes | Matt Johnston |
2015-06-04 | buf_getstring and buf_putstring now use non-unsigned char* | Matt Johnston |
2015-06-03 | note about constant_time_strcmp and lengths | Matt Johnston |
2013-10-03 | Constant time memcmp for the hmac and password crypt | Matt Johnston |
2013-04-29 | Avoid segfault for locked accounts (invalid salt to crypt()) | Matt Johnston |
2013-02-12 | Allow configuring "allow blank password option" at runtime | Paul Eggleton |
2012-05-09 | Fix empty password immediate login | Matt Johnston |
2012-05-09 | Return immediate success for blank passwords if allowed | Matt Johnston |
2011-10-26 | - Add ALLOW_BLANK_PASSWORD option | Matt Johnston |
2011-02-23 | Improve capitalisation for all logged strings | Matt Johnston |
2008-01-13 | Make a copy of passwd fields since getpwnam()'s retval isn't safe to keep | Matt Johnston |
2005-03-13 | * fix longstanding bug with connections being closed on failure to | Matt Johnston |
2004-12-23 | Log the IP along with auth success/fail attempts | Matt Johnston |
2004-09-12 | Don't need to burn the payload buffer since process-packet.c does it | Matt Johnston |
2004-08-12 | Merging in the changes from 0.41-0.43 main Dropbear tree | Matt Johnston |
2004-08-12 | cleaning up the pubkey defines | Matt Johnston |
2004-08-08 | burn the buffer a bit earlier | Matt Johnston |
2004-08-08 | Be a bit safer with reentrant pw_name | Matt Johnston |
2004-07-27 | Progressing client support | Matt Johnston |
2004-06-01 | Makefile.in contains updated files required | Matt Johnston |