Home » Mailing list archives » openbsd-announce » 2002 » May » 16

OpenSSH 3.2.2 released

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Markus Friedl <Markus_Friedl@...>
Subject: OpenSSH 3.2.2 released
Date: Thursday, May 16, 2002 - 6:35 pm

OpenSSH 3.2.2 has just been released. It will be available from the

mirrors listed at http://www.openssh.com/ shortly.


OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0

implementation and includes sftp client and server support.


We would like to thank the OpenSSH community for their continued

support and encouragement.


Security Changes:

=================


- fixed buffer overflow in Kerberos/AFS token passing

- fixed overflow in Kerberos client code

- sshd no longer auto-enables Kerberos/AFS

- experimental support for privilege separation,

  see UsePrivilegeSeparation in sshd(8) and

	  http://www.citi.umich.edu/u/provos/ssh/privsep.html

  for more information.

- only accept RSA keys of size SSH_RSA_MINIMUM_MODULUS_SIZE (768) or larger


Other Changes:

==============


- improved smartcard support (including support for OpenSC, see www.opensc.org)

- improved Kerberos support (including support for MIT-Kerberos V)

- fixed stderr handling in protocol v2

- client reports failure if -R style TCP forwarding fails in protocol v2

- support configuration of TCP forwarding during interactive sessions (~C)

- improved support for older sftp servers

- improved support for importing old DSA keys (from ssh.com software).

- client side suport for PASSWD_CHANGEREQ in protocol v2

- fixed waitpid race conditions

- record correct lastlogin time


Reporting Bugs:

===============


- please read http://www.openssh.com/report.html and

  http://bugzilla.mindrot.org/


OpenSSH is brought to you by Markus Friedl, Niels Provos, Theo de Raadt,

Kevin Steves, Damien Miller and Ben Lindstrom.
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
Books about OpenBSD: "Absolute OpenBSD" and "Building Firewa..., Austin Hook, (Fri Jan 23, 2:25 am)
OpenSSH 3.9 released, Markus Friedl, (Wed Aug 18, 4:58 am)
OpenBSD 3.6 released! plus.html, Theo de Raadt, (Fri Oct 29, 1:44 pm)
Incorrect md5sum in portable OpenSSH 4.0p1 announcement, Damien Miller, (Wed Mar 9, 3:33 pm)
Re: OpenSSH 4.1 released, Damien Miller, (Thu May 26, 7:15 am)
OpenBSD 3.5 End of Life, Brad, (Mon Jun 20, 7:22 pm)
mailing list server downtime, Todd C. Miller, (Fri Jan 25, 7:35 pm)
EUSecWest papers and CanSecWest CFP, Dragos Ruiu, (Thu Jan 12, 3:09 pm)
OpenBSD 3.7 End of Life, Brad, (Thu May 18, 11:36 pm)
OpenBGPD 4.0 released Nov 1, 2006, Henning Brauer, (Wed Nov 1, 10:43 am)
Mailing list downtime: April 5th, Todd C. Miller, (Tue Apr 1, 10:30 am)
OpenSSH security advisory: cbc.adv, Damien Miller, (Fri Nov 21, 6:19 am)
OpenBSD 4.6 release, Oct 18, Theo de Raadt, (Sun Oct 18, 11:38 am)
Daemon News Magazine Issue #6 Now Available, Chris Coleman, (Sat Mar 2, 1:52 am)
OpenSSH 3.2.2 released, Markus Friedl, (Thu May 16, 6:35 pm)
Please DO NOT download OpenBSD-cvs.2429.gz!, Hans-Guenter Weigand, (Fri Jun 21, 4:37 pm)
Sun to ship OpenBSD on its Intel-based workstations, , (Tue Apr 1, 2:00 pm)
SUCON '03 - Swiss Unix Conference 2003, Henning Brauer, (Wed Aug 20, 9:57 am)
4.2 song, Theo de Raadt, (Sat Oct 6, 1:55 pm)