log options.h @ 1863:b550845e500b

age author description
Thu, 01 Mar 2018 22:12:30 +0800 Matt Johnston mention localoptions.h being build directory, fix underscore in CHANGES
Mon, 19 Feb 2018 22:16:50 +0800 Matt Johnston - Fix dependencies and remove old default_options.h from version control
Sun, 18 Feb 2018 11:22:13 +0800 Matt Johnston include config.h for options.h. don't need to include options.h when
Sat, 24 Jun 2017 23:32:25 +0800 Matt Johnston add configuration option for default RSA size.
Wed, 04 May 2016 15:33:40 +0200 Matt Johnston Convert #ifdef to #if, other build changes
Mon, 02 May 2016 23:48:16 +0200 Matt Johnston options for disabling "normal" DH
Mon, 02 May 2016 17:03:55 +0200 Matt Johnston move group14 and group16 to options.h, group14-sha256 on by default
Sat, 12 Mar 2016 16:21:13 +0800 Matt Johnston Get rid of group15, move group16 to sha512.
Fri, 15 Jan 2016 00:19:11 +0800 Matt Johnston add dh group15 and group16, disabled by default
Wed, 21 Oct 2015 23:08:22 +0800 Matt Johnston Test for crypt() rather than crypt.h
Wed, 21 Oct 2015 22:48:15 +0800 Mike Frysinger fix default build when getpass() is unavailable
Wed, 21 Oct 2015 22:40:11 +0800 Mike Frysinger fix default build when crypt() is unavailable
Mon, 03 Aug 2015 20:45:04 +0800 Matt Johnston change DROPBEAR_DEFAULT_CLI_AUTHKEY to just prepend homedir
Wed, 03 Jun 2015 22:59:59 +0800 Matt Johnston Disable twofish-ctr by default, add config option
Mon, 16 Mar 2015 21:34:05 +0800 Matt Johnston merge pam branch up to date pam
Tue, 24 Feb 2015 20:43:01 +0800 Thorsten Horstmann DROPBEAR_ prefix for include guards to avoid collisions
Tue, 10 Feb 2015 21:46:19 +0800 Matt Johnston Tighten validation of DH values. Odds of x==0 being generated are
Wed, 28 Jan 2015 21:38:27 +0800 Matt Johnston Disable non-delayed zlib for server
Sat, 24 Jan 2015 00:05:26 +0800 Matt Johnston Default client key path ~/.ssh/id_dropbear
Fri, 23 Jan 2015 22:37:14 +0800 Matt Johnston Add config option to disable cbc. Disable twofish by default
Fri, 23 Jan 2015 21:38:47 +0800 Matt Johnston Merge up to date pam
Tue, 13 Jan 2015 20:55:04 +0800 Matt Johnston Enable sha2 HMACs by default, they're required for ecdsa already
Fri, 01 Aug 2014 06:14:19 -0400 Mike Frysinger use xauth in /usr/bin
Wed, 09 Jul 2014 00:15:20 +0800 Matt Johnston Make -K keepalive behave like OpenSSH's ServerAliveInterval
Wed, 12 Mar 2014 23:40:02 +0800 Matt Johnston Better PAM through recursion pam
Wed, 19 Feb 2014 22:01:01 +0800 Matt Johnston CHANGES for 2014.63
Fri, 17 Jan 2014 21:39:27 +0800 Matt Johnston DROPBEAR_CLI_AUTH_IMMEDIATE fixed, now enabled by default
Thu, 14 Nov 2013 22:03:30 +0800 Matt Johnston use oldstyle comments
Sat, 09 Nov 2013 00:14:28 +0800 Matt Johnston comments, turn off debugging options ecc
Sat, 09 Nov 2013 00:02:26 +0800 Matt Johnston - Make curve25519 work after fixing a typo, interoperates with OpenSSH ecc
Fri, 08 Nov 2013 23:32:13 +0800 Matt Johnston Merge ecc
Fri, 08 Nov 2013 23:11:43 +0800 Matt Johnston curve25519 ecc
Thu, 07 Nov 2013 23:49:37 +0800 Matt Johnston Add '-R' for delayed hostkey option keyondemand
Thu, 07 Nov 2013 00:18:52 +0800 Matt Johnston refactor key generation, make it generate as required. keyondemand
Tue, 21 May 2013 13:44:48 +0800 Matt Johnston Enable SMALL_CODE by default ecc
Tue, 21 May 2013 12:09:35 +0800 Matt Johnston merge in HEAD ecc
Fri, 03 May 2013 23:07:48 +0800 Matt Johnston ecdsa is working ecc
Thu, 18 Apr 2013 21:47:38 +0800 Matt Johnston Don't enable CLI_IMMEDIATE_AUTH by default, it breaks blank password logins
Tue, 09 Apr 2013 00:36:04 +0800 Matt Johnston start on ecdsa keys ecc
Sun, 07 Apr 2013 01:36:42 +0800 Matt Johnston ecc kind of works, needs fixing/testing ecc
Tue, 26 Mar 2013 01:35:22 +0800 Matt Johnston refactor kexdh code a bit, start working on ecdh etc ecc
Wed, 03 Apr 2013 07:33:47 +0800 Matt Johnston Fix a few options and headers
Fri, 29 Mar 2013 23:29:48 +0800 Matt Johnston Add kexguess2 behaviour kexguess
Wed, 20 Mar 2013 23:52:49 +0800 Matt Johnston Fix "-c none" so that it allows aes during authentication
Wed, 20 Mar 2013 22:41:07 +0800 Matt Johnston Merge "none" cipher/MAC branch. Also adds sha256 and sha512
Sat, 23 Feb 2013 17:55:46 +0800 Matt Johnston DSS_PROTOK is not necessary now that private keys are included
Tue, 12 Feb 2013 15:52:57 +0000 Paul Eggleton Allow configuring "allow blank password option" at runtime
Fri, 29 Jun 2012 23:19:43 +0800 Matt Johnston Improve RNG seeding.
Thu, 17 May 2012 20:52:57 +0800 Matt Johnston - Only request "none" cipher after auth has succeeded insecure-nocrypto
Thu, 17 May 2012 08:33:11 +0800 Matt Johnston Add ALLOW_NONE_PASSWORD_AUTH option insecure-nocrypto
Thu, 17 May 2012 08:09:19 +0800 Matt Johnston Merge in "-m"/"-c" code insecure-nocrypto
Thu, 17 May 2012 00:26:12 +0800 Matt Johnston ENABLE_USER_ALGO_LIST should work for the client
Thu, 17 May 2012 00:12:42 +0800 Matt Johnston Add rough support for choosing ciphers/hashes with "-c" or "-m"
Wed, 16 May 2012 22:54:51 +0800 Matt Johnston Update insecure-nocrypto to current head insecure-nocrypto
Wed, 16 May 2012 21:56:50 +0800 Matt Johnston Disable SHA256 and SHA512 by default in options.h sha2
Thu, 10 May 2012 08:38:37 +0800 Matt Johnston - Add hmac-sha2-256 and hmac-sha2-512. Needs debugging, seems to be sha2
Wed, 09 May 2012 22:51:59 +0800 Matt Johnston Fix empty password immediate login
Thu, 12 Apr 2012 21:57:30 +0800 Matt Johnston Improve comment about sha1-96
Mon, 21 Nov 2011 19:52:28 +0800 Matt Johnston - Update tfm changes to current default tip dropbear-tfm
Mon, 21 Nov 2011 19:19:57 +0800 Matt Johnston - Bring in original tomsfastmath patch against 0.52 from Peter Turczak dropbear-tfm
Wed, 26 Oct 2011 15:49:47 +0000 Matt Johnston - Add ALLOW_BLANK_PASSWORD option
Mon, 28 Feb 2011 13:51:34 +0000 Matt Johnston merge of '8a608f0ed5e4b491dba4bf330e560636ec7376fd'
Mon, 28 Feb 2011 13:51:27 +0000 Matt Johnston - Don't allow setting memLevel since that doesn't work properly
Mon, 28 Feb 2011 13:39:18 +0000 Matt Johnston Compile fix for when both client and server agent forwarding is disabled
Thu, 24 Feb 2011 12:45:17 +0000 Matt Johnston It happened to sony
Tue, 08 Sep 2009 14:53:53 +0000 Matt Johnston - Test for pam_fail_delay() function in configure
Tue, 01 Sep 2009 16:38:26 +0000 Matt Johnston Rearrange getaddrstring() etc
Wed, 26 Aug 2009 14:09:22 +0000 Matt Johnston - set $SSH_ORIGINAL_COMMAND if a command is forced, and log it
Thu, 30 Jul 2009 15:15:12 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear.cli-agent' (head eb0dae4b62e243ba37a897beb7ba81a4f637d8b3)
Wed, 29 Jul 2009 02:58:33 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head bbe4e11695a7b22bd89a722600eb4a4020b6fdf3) agent-client
Tue, 28 Jul 2009 16:16:14 +0000 Matt Johnston Use /usr/bin/X11/xauth default path instead
Sun, 26 Jul 2009 15:39:47 +0000 Matt Johnston - Add option to change zlib windowBits/memLevel
Fri, 24 Jul 2009 13:49:07 +0000 Matt Johnston Disable Blowfish by default, it has inefficient key memory use
Wed, 01 Jul 2009 04:16:32 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head 899a8851a5edf840b2f7925bcc26ffe99dcac54d) agent-client
Tue, 03 Mar 2009 13:42:54 +0000 Matt Johnston - Turn DROPBEAR_SMALL_CODE off by default
Tue, 11 Nov 2008 14:15:54 +0000 Matt Johnston PAM shouldn't be on by default
Fri, 07 Nov 2008 14:11:06 +0000 Matt Johnston Idle timeout patch from Farrell Aultman. Needs testing, unsure if server
Thu, 06 Nov 2008 13:33:06 +0000 Matt Johnston Update nocrypto branch to current head insecure-nocrypto
Thu, 06 Nov 2008 13:16:55 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head cdcc3c729e29544e8b98a408e2dc60e4483dfd2a) insecure-nocrypto
Wed, 05 Nov 2008 14:14:40 +0000 Matt Johnston - Update manuals, include section on authorized_keys
Wed, 05 Nov 2008 13:30:23 +0000 Matt Johnston - Set a default path, since bash won't export one otherwise (though it will set
Mon, 29 Sep 2008 14:30:47 +0000 Matt Johnston - Get rid of blowfish and twofish CTR since they weren't likely
Mon, 29 Sep 2008 13:53:31 +0000 Matt Johnston - Add Counter Mode support
Tue, 23 Sep 2008 16:05:04 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head 4fb35083f0f46ea667e7043e7d4314aecd3df46c) agent-client
Tue, 23 Sep 2008 16:02:51 +0000 Matt Johnston Split options.h out into sysoptions.h for options that aren't usually
Tue, 23 Sep 2008 13:16:22 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear.pubkey-options' (head 537a6ebebb46424b967ffe787f0f8560e5f447e8)
Mon, 22 Sep 2008 15:28:52 +0000 Matt Johnston Idle-timeout patch from Farrell Aultman, need to figure whether to only idle-timeout
Thu, 18 Sep 2008 14:47:02 +0000 Matt Johnston Add multihop 'onion-forwarding' mode. Needs refinement, works.
Wed, 17 Sep 2008 14:49:12 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear.dbclient-netcat-alike' (head b02ba6628cf2095017c60d202ac630f231e6b553)
Wed, 17 Sep 2008 14:36:49 +0000 Matt Johnston Rework netcat-alike to be a proper mode, with -B argument. dbclient-netcat-alike
Mon, 15 Sep 2008 14:40:30 +0000 Matt Johnston - "-J 'nc localhost 22'" kind of works, needs fixing hostkeys, ptys etc.
Mon, 15 Sep 2008 12:51:50 +0000 Matt Johnston - Split main socket var into ses.sock_in/ses.sock_out in preparation
Mon, 08 Sep 2008 15:14:02 +0000 Matt Johnston * Patch from Frédéric Moulins adding options to authorized_keys. pubkey-options
Thu, 27 Mar 2008 13:34:34 +0000 Matt Johnston Forgot to bump actual version number DROPBEAR_0.51
Thu, 16 Aug 2007 13:34:37 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head 8a7db1e2fdc5636abb338adb636babc32f465739) agent-client
Wed, 08 Aug 2007 15:27:41 +0000 Matt Johnston Prepare for 0.50 release
Wed, 08 Aug 2007 15:12:06 +0000 Matt Johnston - Add -K keepalive flag for dropbear and dbclient
Wed, 25 Jul 2007 15:44:25 +0000 Matt Johnston Add -W <windowsize> argument and document it.
Tue, 24 Jul 2007 15:40:23 +0000 Matt Johnston Rearrange the channel buffer sizes into three neat use-editable values in
Thu, 19 Jul 2007 15:47:32 +0000 Matt Johnston Just use /dev/urandom since that's what everyone ends up using anyway.
Mon, 16 Apr 2007 13:39:50 +0000 Matt Johnston Add -u option to specify /dev/urandom instead
Sat, 17 Mar 2007 06:30:11 +0000 Matt Johnston Allow reading dbclient password from an environment var
Thu, 22 Feb 2007 15:46:57 +0000 Matt Johnston 0.49 probably done
Thu, 22 Feb 2007 14:53:49 +0000 Matt Johnston merge of 'a9b0496634cdd25647b65e585cc3240f3fa699ee'
Thu, 22 Feb 2007 14:52:46 +0000 Matt Johnston Add -p [address:]port option for binding to addresses, patch from
Mon, 12 Feb 2007 15:02:48 +0000 Matt Johnston Changes for 0.49test1
Mon, 02 Oct 2006 06:40:51 +0000 Matt Johnston Comment cleanups insecure-nocrypto
Sun, 01 Oct 2006 16:35:13 +0000 Matt Johnston just shuffle some variables names about, a brief comment channel-fix
Wed, 09 Aug 2006 16:45:50 +0000 Matt Johnston blah, forgot PAM options.h debug-unrandom
Wed, 09 Aug 2006 16:45:05 +0000 Matt Johnston make sure that random number generator is correct endian debug-unrandom
Mon, 07 Aug 2006 13:41:23 +0000 Matt Johnston merge of '9a4e042fd565f46141e81e0c1ab90260303348fe'
Mon, 07 Aug 2006 13:41:16 +0000 Matt Johnston Add (disabled by default) LOG_COMMANDS option to log the commands executed
Fri, 04 Aug 2006 17:37:45 +0000 Matt Johnston be sure not to include uninitialised buffers in the unrandom number debug-unrandom
Fri, 07 Jul 2006 09:28:32 +0000 Matt Johnston From Erik Hovland
Mon, 12 Jun 2006 16:05:09 +0000 Matt Johnston 0.49 is close to done.
Sat, 10 Jun 2006 15:59:38 +0000 Matt Johnston increase the size of listening sockets if the port count increases
Mon, 27 Mar 2006 08:36:44 +0000 matt-ucc *hack hack hack* ucc-axis-hack
Sun, 26 Mar 2006 13:05:31 +0000 matt-ucc serial works better. enable DSS. ucc-axis-hack
Sun, 26 Mar 2006 08:26:39 +0000 Matt Johnston add inetd server mode ucc-axis-hack
Sat, 25 Mar 2006 17:12:50 +0000 Matt Johnston Use password file, add serial option ucc-axis-hack
Sat, 25 Mar 2006 12:59:58 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head 11034278bd1917bebcbdc69cf53b1891ce9db121) ucc-axis-hack
Sat, 25 Mar 2006 12:57:09 +0000 Matt Johnston Various changes to compile+kind of run on UCC's axis board. ucc-axis-hack
Tue, 21 Mar 2006 16:20:59 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head 0501e6f661b5415eb76f3b312d183c3adfbfb712) agent-client
Fri, 10 Mar 2006 06:31:29 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head 7ad1775ed65e75dbece27fe6b65bf1a234db386a) contrib-blacklist
Fri, 10 Mar 2006 06:30:52 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head 7ad1775ed65e75dbece27fe6b65bf1a234db386a) insecure-nocrypto
Thu, 09 Mar 2006 15:03:22 +0000 Matt Johnston 0.48 bump DROPBEAR_0.48
Thu, 09 Mar 2006 12:37:38 +0000 Matt Johnston 0.48 progress
Wed, 08 Mar 2006 14:20:24 +0000 Matt Johnston Update to scp from OpenSSH portable 4.3p2
Wed, 08 Mar 2006 12:41:27 +0000 Matt Johnston * Per-IP connection unauthed connection limits
Fri, 09 Dec 2005 06:10:27 +0000 Matt Johnston * options.h: bump the version number DROPBEAR_0.47
Wed, 30 Nov 2005 10:11:24 +0000 Matt Johnston * options.h, common-kex.c: fix support of 4096 byte host keys
Fri, 23 Sep 2005 16:29:19 +0000 Matt Johnston - a hack for grahame to run dropbear with "none" cipher. insecure-nocrypto
Tue, 20 Sep 2005 17:35:21 +0000 Matt Johnston added keyboard-interactive client support
Tue, 06 Sep 2005 04:57:14 +0000 Matt Johnston propagate from branch 'au.asn.ucc.matt.dropbear' (head c9347a030ac9ef5454b7a84f4915e91dc44efd6c) contrib-blacklist
Tue, 06 Sep 2005 04:52:46 +0000 Matt Johnston - blacklisting patch from Michael Deiters contrib-blacklist
Fri, 02 Sep 2005 15:33:09 +0000 Matt Johnston disapproval of revision ac41ae96770156bca2c0193b500ee07ee8d9a027
Fri, 02 Sep 2005 07:14:50 +0000 Matt Johnston Increase algorithm list buffer length
Tue, 30 Aug 2005 18:00:11 +0000 Matt Johnston bytes/bits in a comment.
Tue, 30 Aug 2005 17:30:39 +0000 Matt Johnston - "twofish-cbc" is an alias for "twofish256-cbc"
Tue, 30 Aug 2005 16:58:57 +0000 Matt Johnston - Fixed twofish algorithm naming so it actually works.
Mon, 18 Jul 2005 14:32:52 +0000 Matt Johnston - progress towards client agent forwarding agent-client
Fri, 08 Jul 2005 14:28:21 +0000 Matt Johnston * preparing for 0.46 release
Fri, 08 Jul 2005 13:19:10 +0000 Matt Johnston * move RSA_BLINDING to options.h
Wed, 01 Jun 2005 16:15:38 +0000 Matt Johnston * defined USING_LISTENERS when tcp forwarding is enabled but not
Mon, 07 Mar 2005 04:25:43 +0000 Matt Johnston * fix comment style in options.h DROPBEAR_0.45
Mon, 07 Mar 2005 03:57:26 +0000 Matt Johnston changes for 0.45
Mon, 28 Feb 2005 13:01:00 +0000 Matt Johnston * add SSH_ASKPASS support (based on patch from Paul Whittaker
Mon, 28 Feb 2005 10:15:16 +0000 Matt Johnston * respect DO_HOST_LOOKUP config option
Sun, 02 Jan 2005 17:08:27 +0000 Matt Johnston 0.44 release changes
Mon, 20 Dec 2004 13:11:15 +0000 Matt Johnston Cleaned up the random code, use /dev/random by default,
Tue, 14 Sep 2004 13:47:10 +0000 Matt Johnston Oops, PAM was on by default in options.h
Tue, 14 Sep 2004 13:22:32 +0000 Matt Johnston 0.44test4 probably
Tue, 14 Sep 2004 12:51:16 +0000 Matt Johnston PAM improvements private-rez
Sun, 12 Sep 2004 05:52:36 +0000 Matt Johnston propagate of 08347df3bca787bd3621602fe2b466c85c9dc3e2 and 717950f4061f1123659ee87c7c168805af920ab7 from branch 'matt.dbclient.rez' to 'matt.dbclient.authpam' private-rez
Sun, 12 Sep 2004 04:56:50 +0000 Matt Johnston propagate of 717950f4061f1123659ee87c7c168805af920ab7 and 839f98f136788cc1466e4641bf796f96040a085d from branch 'matt.dbclient.authpam' to 'matt.dbclient.rez' private-rez
Fri, 27 Aug 2004 17:01:18 +0000 Matt Johnston options.h
Sat, 04 Sep 2004 14:19:19 +0000 Matt Johnston merge of 00b67a11e33c3ed390556805ed6d1078528bee70 DROPBEAR_0.44test3
Tue, 24 Aug 2004 04:12:08 +0000 Matt Johnston Default port is now set as a string
Sat, 04 Sep 2004 14:19:17 +0000 Matt Johnston merge of 00b67a11e33c3ed390556805ed6d1078528bee70 DROPBEAR_0.44test2
Tue, 17 Aug 2004 10:20:20 +0000 Matt Johnston default initialisers for mp_ints
Sat, 14 Aug 2004 18:03:36 +0000 Matt Johnston - It'll be called 0.44test1
Thu, 12 Aug 2004 17:18:53 +0000 Matt Johnston adding inetd mode back from 0.43
Thu, 12 Aug 2004 16:41:58 +0000 Matt Johnston Merging in the changes from 0.41-0.43 main Dropbear tree
Thu, 12 Aug 2004 14:56:22 +0000 Matt Johnston cleaning up the pubkey defines
Thu, 12 Aug 2004 14:19:05 +0000 Matt Johnston Some more sanity-checking of args, and just warn and ignore OpenSSH args
Thu, 12 Aug 2004 13:54:31 +0000 Matt Johnston Oops, forgot to call the actual code.
Thu, 12 Aug 2004 13:48:42 +0000 Matt Johnston TCP forwarding works.
Tue, 10 Aug 2004 17:09:52 +0000 Matt Johnston just checkpointing
Sun, 08 Aug 2004 16:57:37 +0000 Matt Johnston svr-authpam code merged and works. needs tidying a log authpam
Sun, 08 Aug 2004 16:17:05 +0000 Matt Johnston - Hostkey checking is mostly there, just aren't appending yet.
Fri, 06 Aug 2004 16:18:01 +0000 Matt Johnston - client pubkey auth works
Tue, 03 Aug 2004 15:51:55 +0000 Matt Johnston Improved signkey code
Mon, 02 Aug 2004 04:25:05 +0000 Matt Johnston Banner printing
Sun, 01 Aug 2004 08:54:01 +0000 Matt Johnston - Added terminal mode handling etc for the client, and window change
Tue, 27 Jul 2004 16:30:46 +0000 Matt Johnston Progressing client support
Mon, 26 Jul 2004 02:44:20 +0000 Matt Johnston snapshot of stuff
Thu, 03 Jun 2004 18:08:34 +0000 Matt Johnston Fixed stupid agentfwd error (using the listening FD, not the accepted on. gah)
Thu, 03 Jun 2004 16:45:53 +0000 Matt Johnston - Reworked non-channel fd handling to listener.c
Tue, 01 Jun 2004 02:46:09 +0000 Matt Johnston Makefile.in contains updated files required