[openssh-commits] [openssh] branch master updated (d97874cb -> e9d910b0)

git+noreply at mindrot.org git+noreply at mindrot.org
Fri Apr 13 15:26:48 AEST 2018


This is an automated email from the git hooks/post-receive script.

dtucker pushed a change to branch master
in repository openssh.

      from  d97874cb  Using "==" in shell tests is not portable.
       new  e9d910b0  upstream: Defend against user enumeration timing attacks. This

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Detailed log of new commits:

commit e9d910b0289c820852f7afa67f584cef1c05fe95
Author: dtucker at openbsd.org <dtucker at openbsd.org>
Date:   Fri Apr 13 03:57:26 2018 +0000

    upstream: Defend against user enumeration timing attacks. This
    
    establishes a minimum time for each failed authentication attempt (5ms) and
    adds a per-user constant derived from a host secret (0-4ms).  Based on work
    by joona.kannisto at tut.fi, ok markus@ djm at .
    
    OpenBSD-Commit-ID: b7845b355bb7381703339c8fb0e57e81a20ae5ca

Summary of changes:
 auth2.c    | 43 ++++++++++++++++++++++++++++++++++++++++++-
 servconf.h |  3 ++-
 sshd.c     | 41 ++++++++++++++++++++++++++++++++++++++++-
 3 files changed, 84 insertions(+), 3 deletions(-)

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.


More information about the openssh-commits mailing list