Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / openssh / eb648a749b3fb49c57167877ccc5f0ca8085cfcb^! / . / ChangeLog
commiteb648a749b3fb49c57167877ccc5f0ca8085cfcb[log] [tgz]
authorBen Lindstrom <mouring@eviladmin.org>Mon Mar 05 06:00:29 2001 +0000
committerBen Lindstrom <mouring@eviladmin.org>Mon Mar 05 06:00:29 2001 +0000
tree739dad5f12adb3ad3b351584d62d372f894e80a4
parentf4c73112d00b970698b42765f925050447acc50a [diff] [blame]
   - markus@cvs.openbsd.org 2001/02/23 18:15:13
     [sshd.c]
     the random session key depends now on the session_key_int
     sent by the 'attacker'
             dig1 = md5(cookie|session_key_int);
             dig2 = md5(dig1|cookie|session_key_int);
             fake_session_key = dig1|dig2;
     this change is caused by a mail from anakin@pobox.com
     patch based on discussions with my german advisor niels@openbsd.org

diff --git a/ChangeLog b/ChangeLog
index d49ba05..333decb 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -37,6 +37,15 @@
    - markus@cvs.openbsd.org 2001/02/23 15:34:53
      [serverloop.c]
      debug2->3
+   - markus@cvs.openbsd.org 2001/02/23 18:15:13
+     [sshd.c]
+     the random session key depends now on the session_key_int
+     sent by the 'attacker'
+             dig1 = md5(cookie|session_key_int);
+             dig2 = md5(dig1|cookie|session_key_int);
+             fake_session_key = dig1|dig2;
+     this change is caused by a mail from anakin@pobox.com
+     patch based on discussions with my german advisor niels@openbsd.org
 
 20010304
  - (bal) Remove make-ssh-known-hosts.1 since it's no longer valid.
@@ -4229,4 +4238,4 @@
  - Wrote replacements for strlcpy and mkdtemp
  - Released 1.0pre1
 
-$Id: ChangeLog,v 1.863 2001/03/05 05:58:23 mouring Exp $
+$Id: ChangeLog,v 1.864 2001/03/05 06:00:29 mouring Exp $