From 383ffe6c5f31d3ecd89caadc8aef1bc2b821d63a Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@mindrot.org>
Date: Sat, 26 Jun 2010 10:02:03 +1000
Subject:    - djm@cvs.openbsd.org 2010/06/25 23:10:30      [ssh.c]      log
 the hostname and address that we connected to at LogLevel=verbose      after
 authentication is successful to mitigate "phishing" attacks by      servers
 with trusted keys that accept authentication silently and      automatically
 before presenting fake password/passphrase prompts;      "nice!" markus@

---
 ChangeLog | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'ChangeLog')

diff --git a/ChangeLog b/ChangeLog
index 2467840e..b0f82de2 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -67,6 +67,13 @@
      [auth1.c auth2-none.c]
      skip the initial check for access with an empty password when
      PermitEmptyPasswords=no; bz#1638; ok markus@
+   - djm@cvs.openbsd.org 2010/06/25 23:10:30
+     [ssh.c]
+     log the hostname and address that we connected to at LogLevel=verbose
+     after authentication is successful to mitigate "phishing" attacks by
+     servers with trusted keys that accept authentication silently and
+     automatically before presenting fake password/passphrase prompts;
+     "nice!" markus@
 
 20100622
  - (djm) [loginrec.c] crank LINFO_NAMESIZE (username length) to 512
-- 
cgit v1.2.3