- djm@cvs.openbsd.org 2014/01/09 23:26:48 [sshconnect.c sshd.c] ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient, deranged and might make some attacks on KEX easier; ok markus@

commit: 58cd63bc63038acddfb4051ed14e11179d8f4941 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Fri Jan 10 10:59:24 2014 +1100
committer: Damien Miller <djm@mindrot.org> Fri Jan 10 10:59:24 2014 +1100
tree: eb65dbe7f28e207756131ad75ec746310ff5eaa2
parent: b3051d01e505c9c2dc00faab472a0d06fa6b0e65 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index a1d37bc..be7d868 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -18,6 +18,10 @@
      rather than calling OpenSSL EVP_Digest* directly. Will make it easier
      to build a reduced-feature OpenSSH without OpenSSL in future;
      feedback, ok markus@
+   - djm@cvs.openbsd.org 2014/01/09 23:26:48
+     [sshconnect.c sshd.c]
+     ban clients/servers that suffer from SSH_BUG_DERIVEKEY, they are ancient,
+     deranged and might make some attacks on KEX easier; ok markus@
 
 20140108
  - (djm) [regress/.cvsignore] Ignore regress test droppings; ok dtucker@
commit	58cd63bc63038acddfb4051ed14e11179d8f4941	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Fri Jan 10 10:59:24 2014 +1100
committer	Damien Miller <djm@mindrot.org>	Fri Jan 10 10:59:24 2014 +1100
tree	eb65dbe7f28e207756131ad75ec746310ff5eaa2
parent	b3051d01e505c9c2dc00faab472a0d06fa6b0e65 [diff] [blame]