Up to [local] / src / usr.bin / ssh
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: OPENBSD_7_4
Revision 1.312.2.1 / (download) - annotate - [select for diffs], Mon Dec 18 14:56:35 2023 UTC (5 months, 1 week ago) by bluhm
Branch: OPENBSD_7_4
Changes since 1.312: +59 -44 lines
Diff to previous 1.312 (colored) next main 1.313 (colored)
implement "strict key exchange" in ssh and sshd This adds a protocol extension to improve the integrity of the SSH transport protocol, particular in and around the initial key exchange (KEX) phase. Full details of the extension are in the PROTOCOL file. from djm@; with markus@ this is errata/7.4/011_ssh.patch.sig
Revision 1.312 / (download) - annotate - [select for diffs], Mon Aug 28 03:31:16 2023 UTC (9 months ago) by djm
Branch: MAIN
CVS Tags: OPENBSD_7_4_BASE
Branch point for: OPENBSD_7_4
Changes since 1.311: +13 -1 lines
Diff to previous 1.311 (colored)
Add keystroke timing obfuscation to the client. This attempts to hide inter-keystroke timings by sending interactive traffic at fixed intervals (default: every 20ms) when there is only a small amount of data being sent. It also sends fake "chaff" keystrokes for a random interval after the last real keystroke. These are controlled by a new ssh_config ObscureKeystrokeTiming keyword/ feedback/ok markus@