artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1937a0c) | patch
Add sshd_config CASignatureAlgorithms option to allow control over
authordjm <djm@openbsd.org>
Thu, 20 Sep 2018 03:28:06 +0000 (03:28 +0000)
committerdjm <djm@openbsd.org>
Thu, 20 Sep 2018 03:28:06 +0000 (03:28 +0000)
commita75ddd917977bbe3899c54bd4030d368fec432a1
tree8d56e7fb6d00370e97b44bfd044b3f677df04ae3tree | snapshot
parent1937a0ca0516d00b884d19ce5aa7e35b73e907d1commit | diff
Add sshd_config CASignatureAlgorithms option to allow control over
which signature algorithms a CA may use when signing certificates.
In particular, this allows a sshd to ban certificates signed with
RSA/SHA1.

ok markus@
usr.bin/ssh/auth2-hostbased.c diff | blob | history
usr.bin/ssh/auth2-pubkey.c diff | blob | history
usr.bin/ssh/servconf.c diff | blob | history
usr.bin/ssh/servconf.h diff | blob | history
usr.bin/ssh/sshd_config.5 diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim