ssh-2.0.13 and ssh-1.2.27 have been released today to the public.
It is recommended that you upgrade your ssh versions to these current
versions.
Enjoy.
ChangeLog from ssh-2.0.13 (the most current entries are not in the
distributions CHANGES file):
--begin--
1999-05-12 Sami Lehtinen <[EMAIL PROTECTED]>
* ssh-2.0.13.
* Fixes for pty-handling and wtmp-handling for linux 2.2.x with
glibc-2.1.x.
1999-04-29 Sami Lehtinen <[EMAIL PROTECTED]>
* Previous by tri: Added NoDelay config parameter. Used to toggle
TCP_NODELAY socket option.
* Added configuration parameter KeepAlive and LoginGraceTime.
1999-04-26 Sami Lehtinen <[EMAIL PROTECTED]>
* Added configure-parameters --disable-tcp-port-forwarding and
--disable-X11-forwarding.
1999-04-23 Sami Lehtinen <[EMAIL PROTECTED]>
* ssh-2.0.13.pre1 (ie. pre-release 1).
1999-04-20 Sami Lehtinen <[EMAIL PROTECTED]>
* Fixed passing of arguments when executing ssh1 in compatibility
mode. Now uses ssh_getopt.
* Fixed code in wtmp.c, which caused the compilation to fail on
newer Linux/Glibc 2.x systems.
1999-04-16 Sami Lehtinen <[EMAIL PROTECTED]>
* Fixed a draft incompatibility in public key
authentication. Works with older versions too, because of a
compatibility work-around.
* "hostbased"-authentication is now working. Uses /etc/hosts.equiv
and /etc/shosts.equiv, plus the user's .rhosts and .shosts
files. Note that you don't have to run ssh2 as suid for this, as
the challenge is signed by ssh-signer2, a small program which is
considered bug-free :), which does run as suid.
Read 'man sshd2' for additional configuration parameters etc.
1999-04-09 Sami Lehtinen <[EMAIL PROTECTED]>
* Added "CheckMail" configuration parameter.
* "hostbased"-authentication method is almost done. Needs to be
polished a bit still, though.
1999-04-07 Timo J. Rinne <[EMAIL PROTECTED]>
* Integrated sshpgp library into ssh2. Now ssh2 is able
to use pgp keys.
1999-02-16 Sami Lehtinen <[EMAIL PROTECTED]>
* Added configuration parameter AllowedAuthentications, which
obsoletes {Password,Pubkey}Authentication config-parameters,
and RequiredAuthentications, which is a list of authentication
methods required from users before they are allowed access.
* Added code to send and parse tty-modes.
* Fixed a bug in wildcard expansion. It didn't correctly expand
paths which started from the root directory. Also fixed a
misfeature, which re-opened the connection, and started the
authentication again after wildcard-expansion. Very annoying.
1999-01-29 Sami Lehtinen <[EMAIL PROTECTED]>
* ssh-2.0.12.
[Older log messages snipped]
--end quote--
ChangeLog for ssh-1.2.27:
--begin--
Thu Apr 29 10:46:21 1999 Timo J. Rinne <[EMAIL PROTECTED]>
* Replaced OSF1/C2 security support with more complete SIA
(Security Integration Architecture).
Mon Feb 22 10:00:12 1999 Timo J. Rinne <[EMAIL PROTECTED]>
* Added snprintf from ssh2.
* Tatu's sprintf -> snprintf fixes.
* Fixed potential buffer overflows.
* Kerberos authentication disabled, if client is suid-root.
This is the only way to avoid security problems that are
in Kerberos rather than in ssh.
Wed Nov 25 00:04:11 1998 Tatu Ylonen <[EMAIL PROTECTED]>
* sshd.c (sgi_project_setup): patches from Luigi Pugnetti
<[EMAIL PROTECTED]>, Eivind Gjelseth <[EMAIL PROTECTED]>,
Randolph J. Herber <[EMAIL PROTECTED]>, Sevo Stille <[EMAIL PROTECTED]>.
* sshd.c (sgi_project_acct_on): patches from Vern Staats,
[EMAIL PROTECTED]
* sshd.c (login_permitted): Added support for locked accounts on
AIX. Thanks to "Delius, Felix von"
<[EMAIL PROTECTED]>.
* login.c: Improvements for glibc 2.0.100+ from D.A. Harris
<[EMAIL PROTECTED]>.
Tue Nov 24 23:27:20 1998 Tatu Ylonen <[EMAIL PROTECTED]>
* login.c: Removed assignment to ux.ut_exit.e_{termination,exit},
because they are already zeroed and the assignment is causing
problems on some platforms.
* Fixed uninitialized variable err in sgi_project_setup (from
Eivind Gjelseth <[EMAIL PROTECTED]>).
* ssh-agent.c: Fixed -D (from Ian Goldberg <[EMAIL PROTECTED]>).
* Fixed undefined __udiv_qrnnd bug on Solaris (reported by Karl
Berry <[EMAIL PROTECTED]>).
* Fixed a bug in idle timeouts (reported by "David
M. Dandarnobody"@nowhere).
* Fixed deattack.c on Cray (patch from Andreas Schott
<[EMAIL PROTECTED]>).
* Fixed x11 forwarding on SunOS 4.1.4 (gethostbyname bug, reported
by Bradford Hull <[EMAIL PROTECTED]>.
* Added snprintf from ssh2. Changed most sprintfs to snprintf.
* Fixed a hard-to-exploit security bug in Kerberos code.
* Added length limitations in manu sprintfs.
Mon Jul 13 16:23:15 1998 Tero Kivinen <[EMAIL PROTECTED]>
* Removed extra ux.ut_syslen setting. Reported by Felix von
Leitner <[EMAIL PROTECTED]>.
[Older log messages snipped]
--end quote--
--
[[EMAIL PROTECTED] -- Sami J. Lehtinen -- [EMAIL PROTECTED]]
[work:+358 9 43543214][gsm:+358 50 5170 258][http://www.iki.fi/~sjl]
[SSH Communications Security Ltd. http://www.ssh.fi/]
