djm@openbsd.org
00eb95957d
upstream: disable the DSA signature algorithm by default; ok
...
markus@
(yes, I know this expands to "the Digitial Signature Algorithm
signature algorithm)
OpenBSD-Commit-ID: 961ef594e46dd2dcade8dd5721fa565cee79ffed
2024-06-17 18:48:29 +10:00
jmc@openbsd.org
93c75471a1
upstream: sort -q in the options list;
...
OpenBSD-Commit-ID: 6839b38378f38f754de638a5e988c13b4164cc7c
2024-06-15 14:02:54 +10:00
djm@openbsd.org
d172ad56df
upstream: ssh-keyscan -q man bits
...
OpenBSD-Commit-ID: ba28d0e1ac609a4c99c453e57e86560c79079db1
2024-06-14 15:01:55 +10:00
jmc@openbsd.org
285cf6cd4b
upstream: space between macro and punctuation; sort usage();
...
OpenBSD-Commit-ID: 6141610cfca037700730e41f868d1d9124958f8c
2023-02-16 21:11:38 +11:00
djm@openbsd.org
d651f5c9fe
upstream: let ssh-keygen and ssh-keyscan accept
...
-Ohashalg=sha1|sha256 when outputting SSHFP fingerprints to allow algorithm
selection. bz3493 ok dtucker@
OpenBSD-Commit-ID: e6e07fe21318a873bd877f333e189eb963a11b3d
2023-02-10 16:12:42 +11:00
djm@openbsd.org
1192588546
upstream: allow ssh-keyscan(1) to accept CIDR address ranges, e.g.
...
ssh-keyscan 192.168.0.0/24
If a CIDR range is passed, then it will be expanded to all possible
addresses in the range including the all-0s and all-1s addresses.
bz#976 feedback/ok markus@
OpenBSD-Commit-ID: ce6c5211f936ac0053fd4a2ddb415277931e6c4b
2022-10-28 13:39:35 +11:00
dtucker@openbsd.org
38ed6c57e9
upstream: Add missing *-sk types to ssh-keyscan manpage. From
...
skazi0 via github PR#294.
OpenBSD-Commit-ID: fda2c869cdb871f3c90a89fb3f985370bb5d25c0
2022-06-03 14:33:18 +10:00
jmc@openbsd.org
483cc723d1
upstream: tweak the Nd lines for a bit of consistency; ok markus
...
OpenBSD-Commit-ID: 876651bdde06bc1e72dd4bd7ad599f42a6ce5a16
2019-12-11 19:08:22 +11:00
jmc@openbsd.org
0bcd871ccd
upstream: move the input format details to -f; remove the output
...
format details and point to sshd(8), where it is documented;
ok dtucker
OpenBSD-Commit-ID: 95f17e47dae02a6ac7329708c8c893d4cad0004a
2018-03-12 11:48:15 +11:00
jmc@openbsd.org
f493d2b0b6
upstream: apply a lick of paint; tweaks/ok dtucker
...
OpenBSD-Commit-ID: 518a6736338045e0037f503c21027d958d05e703
2018-03-03 14:20:47 +11:00
jmc@openbsd.org
7d330a1ac0
upstream: some cleanup for BindInterface and ssh-keyscan;
...
OpenBSD-Commit-ID: 1a719ebeae22a166adf05bea5009add7075acc8c
2018-02-26 11:32:29 +11:00
djm@openbsd.org
1a348359e4
upstream: Add ssh-keyscan -D option to make it print its results in
...
SSHFP format bz#2821, ok dtucker@
OpenBSD-Commit-ID: 831446b582e0f298ca15c9d99c415c899e392221
2018-02-23 17:00:52 +11:00
jmc@openbsd.org
f10c0d32cd
upstream commit
...
rsa1 is no longer valid;
Upstream-ID: 9953d09ed9841c44b7dcf7019fa874783a709d89
2017-05-08 09:18:05 +10:00
djm@openbsd.org
873d3e7d9a
upstream commit
...
remove KEY_RSA1
ok markus@
Upstream-ID: 7408517b077c892a86b581e19f82a163069bf133
2017-05-01 10:05:01 +10:00
jmc@openbsd.org
e72a8575ff
upstream commit
...
-c before -H, in SYNOPSIS and usage();
Upstream-ID: 25e8c58a69e1f37fcd54ac2cd1699370acb5e404
2015-11-09 14:25:41 +11:00
djm@openbsd.org
3a424cdd21
upstream commit
...
Add "ssh-keyscan -c ..." flag to allow fetching
certificates instead of plain keys; ok markus@
Upstream-ID: 0947e2177dba92339eced9e49d3c5bf7dda69f82
2015-11-09 14:25:40 +11:00
sobrado@openbsd.org
f70b22bcdd
upstream commit
...
improve capitalization for the Ed25519 public-key
signature system.
ok djm@
2014-10-13 11:37:32 +11:00
Damien Miller
94bfe0fbd6
- naddy@cvs.openbsd.org 2014/03/12 13:06:59
...
[ssh-keyscan.1]
scan for Ed25519 keys by default too
2014-04-20 13:00:51 +10:00
Damien Miller
f8f35bc471
- jmc@cvs.openbsd.org 2014/01/28 14:13:39
...
[ssh-keyscan.1]
kill some bad Pa;
From: Jan Stary
2014-02-04 11:09:12 +11:00
Damien Miller
8ba0ead698
- naddy@cvs.openbsd.org 2013/12/07 11:58:46
...
[ssh-add.1 ssh-agent.1 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8 ssh.1]
[ssh_config.5 sshd.8 sshd_config.5]
add missing mentions of ed25519; ok djm@
2013-12-18 17:46:27 +11:00
Damien Miller
5be9d9e3cb
- markus@cvs.openbsd.org 2013/12/06 13:39:49
...
[authfd.c authfile.c key.c key.h myproposal.h pathnames.h readconf.c]
[servconf.c ssh-agent.c ssh-keygen.c ssh-keyscan.1 ssh-keyscan.c]
[ssh-keysign.c ssh.c ssh_config.5 sshd.8 sshd.c verify.c ssh-ed25519.c]
[sc25519.h sc25519.c hash.c ge25519_base.data ge25519.h ge25519.c]
[fe25519.h fe25519.c ed25519.c crypto_api.h blocks.c]
support ed25519 keys (hostkeys and user identities) using the public
domain ed25519 reference code from SUPERCOP, see
http://ed25519.cr.yp.to/software.html
feedback, help & ok djm@
2013-12-07 11:24:01 +11:00
Damien Miller
bf836e535d
- schwarze@cvs.openbsd.org 2013/07/16 00:07:52
...
[scp.1 sftp-server.8 ssh-keyscan.1 ssh-keysign.8 ssh-pkcs11-helper.8]
use .Mt for email addresses; from Jan Stary <hans at stare dot cz>; ok jmc@
2013-07-18 16:14:13 +10:00
Damien Miller
839f743464
- djm@cvs.openbsd.org 2012/04/11 13:34:17
...
[ssh-keyscan.1 ssh-keyscan.c]
now that sshd defaults to offering ECDSA keys, ssh-keyscan should also
look for them by default; bz#1971
2012-04-22 11:24:21 +10:00
Damien Miller
eb8b60e320
- djm@cvs.openbsd.org 2010/08/31 11:54:45
...
[PROTOCOL PROTOCOL.agent PROTOCOL.certkeys auth2-jpake.c authfd.c]
[authfile.c buffer.h dns.c kex.c kex.h key.c key.h monitor.c]
[monitor_wrap.c myproposal.h packet.c packet.h pathnames.h readconf.c]
[ssh-add.1 ssh-add.c ssh-agent.1 ssh-agent.c ssh-keygen.1 ssh-keygen.c]
[ssh-keyscan.1 ssh-keyscan.c ssh-keysign.8 ssh.1 ssh.c ssh2.h]
[ssh_config.5 sshconnect.c sshconnect2.c sshd.8 sshd.c sshd_config.5]
[uuencode.c uuencode.h bufec.c kexecdh.c kexecdhc.c kexecdhs.c ssh-ecdsa.c]
Implement Elliptic Curve Cryptography modes for key exchange (ECDH) and
host/user keys (ECDSA) as specified by RFC5656. ECDH and ECDSA offer
better performance than plain DH and DSA at the same equivalent symmetric
key length, as well as much shorter keys.
Only the mandatory sections of RFC5656 are implemented, specifically the
three REQUIRED curves nistp256, nistp384 and nistp521 and only ECDH and
ECDSA. Point compression (optional in RFC5656 is NOT implemented).
Certificate host and user keys using the new ECDSA key types are supported.
Note that this code has not been tested for interoperability and may be
subject to change.
feedback and ok markus@
2010-08-31 22:41:14 +10:00
Darren Tucker
7bd98e7f74
- dtucker@cvs.openbsd.org 2010/01/09 23:04:13
...
[channels.c ssh.1 servconf.c sshd_config.5 sshd.c channels.h servconf.h
ssh-keyscan.1 ssh-keyscan.c readconf.c sshconnect.c misc.c ssh.c
readconf.h scp.1 sftp.1 ssh_config.5 misc.h]
Remove RoutingDomain from ssh since it's now not needed. It can be
replaced with "route exec" or "nc -V" as a proxycommand. "route exec"
also ensures that trafic such as DNS lookups stays withing the specified
routingdomain. For example (from reyk):
# route -T 2 exec /usr/sbin/sshd
or inherited from the parent process
$ route -T 2 exec sh
$ ssh 10.1.2.3
ok deraadt@ markus@ stevesk@ reyk@
2010-01-10 10:31:12 +11:00
Darren Tucker
34e314da1b
- reyk@cvs.openbsd.org 2009/10/28 16:38:18
...
[ssh_config.5 sshd.c misc.h ssh-keyscan.1 readconf.h sshconnect.c
channels.c channels.h servconf.h servconf.c ssh.1 ssh-keyscan.c scp.1
sftp.1 sshd_config.5 readconf.c ssh.c misc.c]
Allow to set the rdomain in ssh/sftp/scp/sshd and ssh-keyscan.
ok markus@
2010-01-08 17:03:46 +11:00
Damien Miller
b2c17d4b17
- stevesk@cvs.openbsd.org 2008/12/29 01:12:36
...
[ssh-keyscan.1]
fix example, default key type is rsa for 3+ years; from
frederic.perrin@resel.fr
2009-01-28 16:18:03 +11:00
Damien Miller
c1719f7f0d
- sobrado@cvs.openbsd.org 2008/11/01 11:14:36
...
[ssh-keyscan.1 ssh-keyscan.c]
the ellipsis is not an optional argument; while here, improve spacing.
2008-11-03 19:27:07 +11:00
Damien Miller
bacb7fbd7e
- djm@cvs.openbsd.org 2008/04/30 10:14:03
...
[ssh-keyscan.1 ssh-keyscan.c]
default to rsa (protocol 2) keys, instead of rsa1 keys; spotted by
larsnooden AT openoffice.org
2008-05-19 14:56:33 +10:00
Darren Tucker
aa4d5eda10
- jmc@cvs.openbsd.org 2007/05/31 19:20:16
...
[scp.1 ssh_config.5 sftp-server.8 ssh-agent.1 sshd_config.5 sftp.1
ssh-keygen.1 ssh-keyscan.1 ssh-add.1 sshd.8 ssh.1 ssh-keysign.8]
convert to new .Dd format;
(We will need to teach mdoc2man.awk to understand this too.)
2007-06-05 18:27:13 +10:00
Darren Tucker
ffe88e15af
- ray@cvs.openbsd.org 2006/09/25 04:55:38
...
[ssh-keyscan.1 ssh.1]
Change "a SSH" to "an SSH". Hurray, I'm not the only one who
pronounces "SSH" as "ess-ess-aich".
OK jmc@ and stevesk@.
2006-10-18 07:53:06 +10:00
Darren Tucker
28e8e59b35
- jaredy@cvs.openbsd.org 2005/09/30 20:34:26
...
[ssh-keyscan.1]
deploy .An -nosplit; ok jmc
2005-10-03 18:20:28 +10:00
Damien Miller
9a2fdbd0d6
- jmc@cvs.openbsd.org 2005/03/01 15:47:14
...
[ssh-keyscan.1 ssh-keyscan.c]
sort options and sync usage();
2005-03-02 12:04:01 +11:00
Damien Miller
db7b8171ee
- djm@cvs.openbsd.org 2005/03/01 10:41:28
...
[ssh-keyscan.1 ssh-keyscan.c]
option to hash hostnames output by ssh-keyscan; ok markus@ deraadt@
2005-03-01 21:48:03 +11:00
Darren Tucker
3ca4508201
- brad@cvs.openbsd.org 2004/07/12 23:34:25
...
[ssh-keyscan.1]
Fix incorrect macro, .I -> .Em
From: Eric S. Raymond <esr at thyrsus dot com>
ok jmc@
2004-07-17 16:13:15 +10:00
Damien Miller
f1ce505daf
- jmc@cvs.openbsd.org 2003/06/10 09:12:11
...
[scp.1 sftp-server.8 ssh.1 ssh-add.1 ssh-agent.1 ssh_config.5]
[sshd.8 sshd_config.5 ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8]
- section reorder
- COMPATIBILITY merge
- macro cleanup
- kill whitespace at EOL
- new sentence, new line
ssh pages ok markus@
2003-06-11 22:04:39 +10:00
Damien Miller
935063553a
- markus@cvs.openbsd.org 2003/05/12 18:35:18
...
[ssh-keyscan.1]
typo: DSA keys are of type ssh-dss; Brian Poole
2003-05-14 13:46:33 +10:00
Damien Miller
495dca3518
- (djm) OpenBSD CVS Sync
...
- jmc@cvs.openbsd.org 2003/03/28 10:11:43
[scp.1 sftp.1 ssh.1 ssh-add.1 ssh-agent.1 ssh_config.5 sshd_config.5]
[ssh-keygen.1 ssh-keyscan.1 ssh-keysign.8]
- killed whitespace
- new sentence new line
- .Bk for arguments
ok markus@
2003-04-01 21:42:14 +10:00
Damien Miller
7af3d10588
- mpech@cvs.openbsd.org 2002/02/13 08:33:47
...
[ssh-keyscan.1]
When you give command examples and etc., in a manual page prefix them with: $ command
or
# command
2002-02-19 15:19:42 +11:00
Damien Miller
05eda437a6
- (djm) OpenBSD CVS Sync
...
- deraadt@cvs.openbsd.org 2002/02/09 17:37:34
[pathnames.h session.c ssh.1 sshd.8 sshd_config ssh-keyscan.1]
move ssh config files to /etc/ssh
- (djm) Adjust portable Makefile.in tnd ssh-rand-helper.c o match
2002-02-10 18:32:28 +11:00
Ben Lindstrom
594e203894
- deraadt@cvs.openbsd.org 2001/09/05 06:23:07
...
[scp.1 sftp.1 ssh.1 ssh-agent.1 sshd.8 ssh-keygen.1 ssh-keyscan.1]
avoid first person in manual pages
2001-09-12 18:35:30 +00:00
Ben Lindstrom
8d066fb262
- stevesk@cvs.openbsd.org 2001/08/23 18:08:59
...
[ssh-add.1 ssh-keyscan.1]
minor cleanup
2001-09-12 17:06:13 +00:00
Ben Lindstrom
325e70c90f
- markus@cvs.openbsd.org 2001/08/05 23:18:20
...
[ssh-keyscan.1 ssh-keyscan.c]
ssh 2 support; from wayned@users.sourceforge.net
2001-08-06 22:41:30 +00:00
Ben Lindstrom
0b5afb98eb
- mpech@cvs.openbsd.org 2001/08/02 18:37:35
...
[ssh-keyscan.1]
o) .Sh AUTHOR -> .Sh AUTHORS;
o) .Sh EXAMPLE -> .Sh EXAMPLES;
o) Delete .Sh OPTIONS. Text moved to .Sh DESCRIPTION;
millert@ ok
2001-08-06 22:01:29 +00:00
Ben Lindstrom
2464322d7e
- itojun@cvs.openbsd.org 2001/06/23 17:48:18
...
[sftp.1 ssh.1 sshd.8 ssh-keyscan.1]
kill whitespace at EOL.
2001-06-25 05:08:11 +00:00
Ben Lindstrom
d2bf0d64d9
- mpech@cvs.openbsd.org 2001/06/22 10:17:51
...
[ssh.1 sshd.8 ssh-keyscan.1]
o) .Sh AUTHOR -> .Sh AUTHORS;
o) remove unnecessary .Pp;
o) better -mdoc style;
o) typo;
o) sort SEE ALSO;
aaron@ ok
2001-06-25 04:10:54 +00:00
Ben Lindstrom
a238f6e834
- pvalchev@cvs.openbsd.org 2001/06/05 05:05:39
...
[ssh-keyscan.1 ssh-keyscan.c]
License clarification from David Mazieres, ok deraadt@
2001-06-09 01:30:39 +00:00
Ben Lindstrom
f73e05eca8
- ian@cvs.openbsd.org 2001/04/18 16:21:05
...
[ssh-keyscan.1]
Fix typo reported in PR/1779
2001-04-19 20:31:02 +00:00
Ben Lindstrom
b22c2b86af
- deraadt@cvs.openbsd.org 2001/03/01 03:38:33
...
[cli.c cli.h rijndael.h ssh-keyscan.1]
copyright notices on all source files
2001-03-05 06:50:47 +00:00
Ben Lindstrom
36579d3daa
- niklas@cvs.openbsd.org 2001/01/2001
...
[atomicio.h canohost.h clientloop.h deattack.h dh.h dispatch.h
groupaccess.c groupaccess.h hmac.h hostfile.h includes.h kex.h
key.h log.h login.h match.h misc.h myproposal.h nchan.ms pathnames.h
radix.h readpass.h rijndael.h serverloop.h session.h sftp.h ssh-add.1
ssh-dss.h ssh-keygen.1 ssh-keyscan.1 ssh-rsa.h ssh1.h ssh_config
sshconnect.h sshd_config tildexpand.h uidswap.h uuencode.h]
$OpenBSD$
2001-01-29 07:39:26 +00:00