diff options
| author | Damien Miller <djm@mindrot.org> | 2008-05-19 06:57:41 +0200 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2008-05-19 06:57:41 +0200 |
| commit | 4f755cdc05f5c6dee7cb1894f8d3bcaee33443d0 (patch) | |
| tree | 73c05a3429a9d63d32b373fd3bd92900d43883da /ChangeLog | |
| parent | - djm@cvs.openbsd.org 2008/04/30 10:14:03 (diff) | |
| download | openssh-4f755cdc05f5c6dee7cb1894f8d3bcaee33443d0.tar.xz openssh-4f755cdc05f5c6dee7cb1894f8d3bcaee33443d0.zip | |
- pyr@cvs.openbsd.org 2008/05/07 05:49:37
[servconf.c servconf.h session.c sshd_config.5]
Enable the AllowAgentForwarding option in sshd_config (global and match
context), to specify if agents should be permitted on the server.
As the man page states:
``Note that disabling Agent forwarding does not improve security
unless users are also denied shell access, as they can always install
their own forwarders.''
ok djm@, ok and a mild frown markus@
Diffstat (limited to 'ChangeLog')
| -rw-r--r-- | ChangeLog | 11 |
1 files changed, 10 insertions, 1 deletions
@@ -43,6 +43,15 @@ [ssh-keyscan.1 ssh-keyscan.c] default to rsa (protocol 2) keys, instead of rsa1 keys; spotted by larsnooden AT openoffice.org + - pyr@cvs.openbsd.org 2008/05/07 05:49:37 + [servconf.c servconf.h session.c sshd_config.5] + Enable the AllowAgentForwarding option in sshd_config (global and match + context), to specify if agents should be permitted on the server. + As the man page states: + ``Note that disabling Agent forwarding does not improve security + unless users are also denied shell access, as they can always install + their own forwarders.'' + ok djm@, ok and a mild frown markus@ 20080403 - (djm) [openbsd-compat/bsd-poll.c] Include stdlib.h to avoid compile- @@ -3903,4 +3912,4 @@ OpenServer 6 and add osr5bigcrypt support so when someone migrates passwords between UnixWare and OpenServer they will still work. OK dtucker@ -$Id: ChangeLog,v 1.4915 2008/05/19 04:56:33 djm Exp $ +$Id: ChangeLog,v 1.4916 2008/05/19 04:57:41 djm Exp $ |