summary refs log tree commit diff homepage
path: root/sshd_config
blob: 9e481078e8c0a9f7dab58e1cefe512aab02eeb22 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
UsePAM no

Match User torus
    PasswordAuthentication yes
    PermitEmptyPasswords yes
    ChrootDirectory /home/torus
    ForceCommand client

    AllowAgentForwarding no
    AllowTcpForwarding no
    AllowStreamLocalForwarding no
    MaxSessions 1
    X11Forwarding no
.com> 2014-01-16authentication: use hidden form instead of refererJason A. Donenfeld This also gives us some CSRF protection. Note that we make use of the hmac to protect the redirect value. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2014-01-16auth: add basic authentication filter frameworkJason A. Donenfeld This leverages the new lua support. See filters/simple-authentication.lua for explaination of how this works. There is also additional documentation in cgitrc.5.txt. Though this is a cookie-based approach, cgit's caching mechanism is preserved for authenticated pages. Very plugable and extendable depending on user needs. The sample script uses an HMAC-SHA1 based cookie to store the currently logged in user, with an expiration date. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2014-01-16t0111: Additions and fixesLukas Fleischer * Rename the capitalize-* filters to dump.* since they also dump the arguments. * Add full argument validation to the email filters. Signed-off-by: Lukas Fleischer <cgit@cryptocrack.de> 2014-01-16parsing.c: Remove leading space from committerLukas Fleischer