From 1ab6a51f9b258a6e844f1ee442c15aec7fcb6a72 Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@mindrot.org>
Date: Sat, 26 Jun 2010 10:02:24 +1000
Subject:    - djm@cvs.openbsd.org 2010/06/25 23:10:30      [ssh.c]      log
 the hostname and address that we connected to at LogLevel=verbose      after
 authentication is successful to mitigate "phishing" attacks by      servers
 with trusted keys that accept authentication silently and      automatically
 before presenting fake password/passphrase prompts;      "nice!" markus@

---
 ChangeLog | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'ChangeLog')

diff --git a/ChangeLog b/ChangeLog
index b0f82de2..d86960e3 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -74,6 +74,13 @@
      servers with trusted keys that accept authentication silently and
      automatically before presenting fake password/passphrase prompts;
      "nice!" markus@
+   - djm@cvs.openbsd.org 2010/06/25 23:10:30
+     [ssh.c]
+     log the hostname and address that we connected to at LogLevel=verbose
+     after authentication is successful to mitigate "phishing" attacks by
+     servers with trusted keys that accept authentication silently and
+     automatically before presenting fake password/passphrase prompts;
+     "nice!" markus@
 
 20100622
  - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512
-- 
cgit v1.2.3