CVSROOT: /cvs
Module name: src
Changes by: d...@cvs.openbsd.org 2010/03/04 03:36:03
Modified files:
usr.bin/ssh : auth-rh-rsa.c auth-rsa.c auth.c auth.h
auth2-hostbased.c auth2-pubkey.c authfile.c
authfile.h hostfile.c hostfile.h servconf.c
servconf.h ssh-keygen.c ssh.1 sshconnect.c
sshd_config.5
Log message:
Add a TrustedUserCAKeys option to sshd_config to specify CA keys that
are trusted to authenticate users (in addition than doing it per-user
in authorized_keys).
Add a RevokedKeys option to sshd_config and a @revoked marker to
known_hosts to allow keys to me revoked and banned for user or host
authentication.
feedback and ok markus@
