openssh-portable

Commit Graph

Author	SHA1	Message	Date
djm@openbsd.org	669aee9943	upstream commit permit KRLs that revoke certificates by serial number or key ID without scoping to a particular CA; ok markus@	2015-01-30 12:17:07 +11:00
Damien Miller	f3747bf401	- djm@cvs.openbsd.org 2013/01/17 23:00:01 [auth.c key.c key.h ssh-keygen.1 ssh-keygen.c sshd_config.5] [krl.c krl.h PROTOCOL.krl] add support for Key Revocation Lists (KRLs). These are a compact way to represent lists of revoked keys and certificates, taking as little as a single bit of incremental cost to revoke a certificate by serial number. KRLs are loaded via the existing RevokedKeys sshd_config option. feedback and ok markus@	2013-01-18 11:44:04 +11:00

Author

SHA1

Message

Date

djm@openbsd.org

669aee9943

upstream commit

permit KRLs that revoke certificates by serial number or
 key ID without scoping to a particular CA; ok markus@

2015-01-30 12:17:07 +11:00

Damien Miller

f3747bf401

- djm@cvs.openbsd.org 2013/01/17 23:00:01

[auth.c key.c key.h ssh-keygen.1 ssh-keygen.c sshd_config.5]
     [krl.c krl.h PROTOCOL.krl]
     add support for Key Revocation Lists (KRLs). These are a compact way to
     represent lists of revoked keys and certificates, taking as little as
     a single bit of incremental cost to revoke a certificate by serial number.
     KRLs are loaded via the existing RevokedKeys sshd_config option.
     feedback and ok markus@

2013-01-18 11:44:04 +11:00

2 Commits