CVS log for src/usr.bin/ssh/ssh-agent.1

Request diff between arbitrary revisions

Default branch: MAIN
Current tag: OPENBSD_7_2

Revision 1.73.6.1 / (download) - annotate - [select for diffs], Wed Jul 19 14:08:59 2023 UTC (10 months, 2 weeks ago) by bluhm
Branch: OPENBSD_7_2
Changes since 1.73: +45 -3 lines
Diff to previous 1.73 (colored) next main 1.74 (colored)

Disallow remote addition of FIDO/PKCS11 provider libraries to
ssh-agent by default.

The old behaviour of allowing remote clients from loading providers
can be restored using `ssh-agent -O allow-remote-pkcs11`.

Detection of local/remote clients requires a ssh(1) that supports
the `session-bind@openssh.com` extension. Forwarding access to a
ssh-agent socket using non-OpenSSH tools may circumvent this control.

from djm@; ok markus@

terminate process if requested to load a PKCS#11 provider that
isn't a PKCS#11 provider; from / ok markus@
from djm@

this is errata/7.2/032_ssh_agent.patch.sig

Revision 1.73 / (download) - annotate - [select for diffs], Thu Mar 31 17:27:27 2022 UTC (2 years, 2 months ago) by naddy
Branch: MAIN
CVS Tags: OPENBSD_7_2_BASE, OPENBSD_7_1_BASE, OPENBSD_7_1
Branch point for: OPENBSD_7_2
Changes since 1.72: +4 -4 lines
Diff to previous 1.72 (colored)

man pages: add missing commas between subordinate and main clauses

jmc@ dislikes a comma before "then" in a conditional, so leave those
untouched.

ok jmc@

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.

Diffs between
and

Preferred Diff type:
View only Branch:
Sort log by: