summaryrefslogtreecommitdiff
path: root/ChangeLog
diff options
context:
space:
mode:
authorBen Lindstrom <mouring@eviladmin.org>2001-03-05 06:00:29 +0000
committerBen Lindstrom <mouring@eviladmin.org>2001-03-05 06:00:29 +0000
commiteb648a749b3fb49c57167877ccc5f0ca8085cfcb (patch)
tree739dad5f12adb3ad3b351584d62d372f894e80a4 /ChangeLog
parentf4c73112d00b970698b42765f925050447acc50a (diff)
- markus@cvs.openbsd.org 2001/02/23 18:15:13
[sshd.c] the random session key depends now on the session_key_int sent by the 'attacker' dig1 = md5(cookie|session_key_int); dig2 = md5(dig1|cookie|session_key_int); fake_session_key = dig1|dig2; this change is caused by a mail from anakin@pobox.com patch based on discussions with my german advisor niels@openbsd.org
Diffstat (limited to 'ChangeLog')
-rw-r--r--ChangeLog11
1 files changed, 10 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index d49ba05f..333decb4 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -37,6 +37,15 @@
- markus@cvs.openbsd.org 2001/02/23 15:34:53
[serverloop.c]
debug2->3
+ - markus@cvs.openbsd.org 2001/02/23 18:15:13
+ [sshd.c]
+ the random session key depends now on the session_key_int
+ sent by the 'attacker'
+ dig1 = md5(cookie|session_key_int);
+ dig2 = md5(dig1|cookie|session_key_int);
+ fake_session_key = dig1|dig2;
+ this change is caused by a mail from anakin@pobox.com
+ patch based on discussions with my german advisor niels@openbsd.org
20010304
- (bal) Remove make-ssh-known-hosts.1 since it's no longer valid.
@@ -4229,4 +4238,4 @@
- Wrote replacements for strlcpy and mkdtemp
- Released 1.0pre1
-$Id: ChangeLog,v 1.863 2001/03/05 05:58:23 mouring Exp $
+$Id: ChangeLog,v 1.864 2001/03/05 06:00:29 mouring Exp $