![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / ssh
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: OPENBSD_7_3
Revision 1.297.4.1 / (download) - annotate - [select for diffs], Wed Jul 19 14:07:53 2023 UTC (10 months, 1 week ago) by bluhm
Branch: OPENBSD_7_3
Changes since 1.297: +21 -2 lines
Diff to previous 1.297 (colored) next main 1.298 (colored)
Disallow remote addition of FIDO/PKCS11 provider libraries to ssh-agent by default. The old behaviour of allowing remote clients from loading providers can be restored using `ssh-agent -O allow-remote-pkcs11`. Detection of local/remote clients requires a ssh(1) that supports the `session-bind@openssh.com` extension. Forwarding access to a ssh-agent socket using non-OpenSSH tools may circumvent this control. from djm@; ok markus@ terminate process if requested to load a PKCS#11 provider that isn't a PKCS#11 provider; from / ok markus@ from djm@ this is errata/7.3/010_ssh_agent.patch.sig
Revision 1.297 / (download) - annotate - [select for diffs], Thu Mar 9 21:06:24 2023 UTC (14 months, 3 weeks ago) by jcs
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE
Branch point for: OPENBSD_7_3
Changes since 1.296: +3 -3 lines
Diff to previous 1.296 (colored)
modify parentheses in conditionals to make it clearer what is being assigned and what is being checked ok djm dtucker