- djm@cvs.openbsd.org 2010/06/25 23:10:30 [ssh.c] log the hostname and address that we connected to at LogLevel=verbose after authentication is successful to mitigate "phishing" attacks by servers with trusted keys that accept authentication silently and automatically before presenting fake password/passphrase prompts; "nice!" markus@

commit: 383ffe6c5f31d3ecd89caadc8aef1bc2b821d63a [log] [tgz]
author: Damien Miller <djm@mindrot.org> Sat Jun 26 10:02:03 2010 +1000
committer: Damien Miller <djm@mindrot.org> Sat Jun 26 10:02:03 2010 +1000
tree: e7750eda2d74570aaf7ef5bd3360a6a1a04ea53c
parent: bda3ecafcafd85856c6ffd0ba54b85afe6d71a84 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 2467840..b0f82de 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -67,6 +67,13 @@
      [auth1.c auth2-none.c]
      skip the initial check for access with an empty password when
      PermitEmptyPasswords=no; bz#1638; ok markus@
+   - djm@cvs.openbsd.org 2010/06/25 23:10:30
+     [ssh.c]
+     log the hostname and address that we connected to at LogLevel=verbose
+     after authentication is successful to mitigate "phishing" attacks by
+     servers with trusted keys that accept authentication silently and
+     automatically before presenting fake password/passphrase prompts;
+     "nice!" markus@
 
 20100622
  - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512
commit	383ffe6c5f31d3ecd89caadc8aef1bc2b821d63a	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Sat Jun 26 10:02:03 2010 +1000
committer	Damien Miller <djm@mindrot.org>	Sat Jun 26 10:02:03 2010 +1000
tree	e7750eda2d74570aaf7ef5bd3360a6a1a04ea53c
parent	bda3ecafcafd85856c6ffd0ba54b85afe6d71a84 [diff] [blame]