Home » Mailing list archives » openbsd-announce » 2003 » March » 31

OpenSSH 3.6 released

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Markus Friedl <markus@...>
Subject: OpenSSH 3.6 released
Date: Monday, March 31, 2003 - 8:48 am

OpenSSH 3.6 has just been released. It will be available from the

mirrors listed at http://www.openssh.com/ shortly.


OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0

implementation and includes sftp client and server support.


We would like to thank the OpenSSH community for their continued

support to the project, especially those who contributed source and

bought T-shirts or posters.


We have a new design of T-shirt available, more info on

	http://www.openbsd.org/tshirts.html#18


For international orders use http://https.openbsd.org/cgi-bin/order

and for European orders, use http://https.openbsd.org/cgi-bin/order.eu


Changes since OpenSSH 3.5:

============================ 


* RSA blinding is now used by ssh(1), sshd(8) and ssh-agent(1).

  in order to avoid potential timing attacks against the RSA keys.

  Older versions of OpenSSH have been using RSA blinding in

  ssh-keysign(1) only.


  Please note that there is no evidence that the SSH protocol is

  vulnerable to the OpenSSL/TLS timing attack described in

        http://crypto.stanford.edu/~dabo/papers/ssl-timing.pdf


* ssh-agent(1) optionally requires user confirmation if a key gets

  used, see '-c' in ssh-add(1).


* sshd(8) now handles PermitRootLogin correctly when UsePrivilegeSeparation

  is enabled.


* sshd(8) now removes X11 cookies when a session gets closed.


* ssh-keysign(8) is disabled by default and only enabled if the

  new EnableSSHKeysign option is set in the global ssh_config(5)

  file.


* ssh(1) and sshd(8) now handle 'kex guesses' correctly (key exchange

  guesses).


* ssh(1) no longer overwrites SIG_IGN.  This matches behaviour from

  rsh(1) and is used by backup tools.


* setting ProxyCommand to 'none' disables the proxy feature, see

  ssh_config(5).


* scp(1) supports add -1 and -2.


* scp(1) supports bandwidth limiting.


* sftp(1) displays a progressmeter.


* sftp(1) has improved error handling for scripting.


Checksums:

==========


- MD5 (openssh-3.6p1.tar.gz) = 72ef1134d521cb6926c99256dad17fe0

- MD5 (openssh-3.6.tgz) = 758822b888c5c3f83a98045aef904254


Reporting Bugs:

===============


- please read http://www.openssh.com/report.html

  and http://bugzilla.mindrot.org/


OpenSSH is brought to you by Markus Friedl, Niels Provos, Theo de Raadt,

Kevin Steves, Damien Miller and Ben Lindstrom.
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
Announcement: New York *BSD user group formed, Wes Sonnenreich, (Wed Jan 14, 6:52 pm)
OpenBSD 3.3 Enf Of Life, Brad, (Wed May 5, 4:20 am)
Call For Papers: Usenix 2005 FREENIX track, Todd C. Miller, (Thu Aug 5, 9:28 am)
anoncvs3.usa.openbsd.org change, Todd C. Miller, (Mon Oct 18, 11:38 am)
OpenSSH 4.0 released, Damien Miller, (Wed Mar 9, 5:54 am)
OpenSSH 4.1 released, Damien Miller, (Thu May 26, 1:38 am)
OpenBGPD 3.7 released, Henning Brauer, (Wed Jun 8, 1:44 pm)
Announce: OpenSSH 4.9 released, Damien Miller, (Sun Mar 30, 9:35 pm)
BSDCan 2006: Call For Papers, Dan Langille, (Fri Nov 25, 3:04 pm)
Re: [FreeBSD-Announce] BSDCan 2006: Call For Papers - reminder, Dan Langille, (Thu Jan 12, 10:19 am)
3.9 Release Available, Bob Beck, (Mon May 1, 1:36 am)
The OpenBSD Foundation Announces Support for C2K8, Kenneth R Westerback, (Thu May 29, 10:39 pm)
DCBSDCon 2009 Call for Papers, Jason Dixon, (Sat Nov 1, 1:43 am)
OpenBSD 4.0 released Nov 1, 2006, Theo de Raadt, (Tue Oct 31, 8:15 pm)
Announce: OpenSSH 5.3 released, Damien Miller, (Thu Oct 1, 9:46 am)
Announce: OpenSSH 4.7 released, Damien Miller, (Tue Sep 4, 8:14 pm)
OpenBSD/sparc64 X support, Jason Wright, (Fri Feb 8, 3:56 pm)
OpenBSD 2.9-STABLE end of life, Miod Vallat, (Wed May 1, 5:18 pm)
OpenSSH 3.3 released, Markus Friedl, (Fri Jun 21, 3:50 pm)
ComixWall 4.2 released, Soner Tari, (Sun Jan 6, 8:52 am)
BSDCon Italy 2003 :: Call For Papers, Ed, (Sun Feb 9, 2:34 pm)
OpenSSH 3.6 released, Markus Friedl, (Mon Mar 31, 8:48 am)
TOORCON 2003 LINEUP FINALIZED, h1kari, (Tue Aug 19, 7:54 am)
OpenBSD 3.2 End Of Life, Margarida Sequeira, (Tue Nov 4, 5:20 pm)