diff options
Diffstat (limited to 'CHANGES')
| -rw-r--r-- | CHANGES | 59 |
1 files changed, 55 insertions, 4 deletions
@@ -1,3 +1,54 @@ +2013.58 - Thursday 18 April 2013 + +- Fix building with Zlib disabled, thanks to Hans Harder and cuma@freetz + +- Use % as a separator for ports, fixes scp in multihop mode, from Hans Harder + +- Reject logins for other users when running as non-root, from Hans Harder + +- Disable client immediate authentication request by default, it prevents + passwordless logins from working + +2013.57 - Monday 15 April 2013 + +- Decreased connection setup time particularly with high latency connections, + the number of round trips has been reduced for both client and server. + CPU time hasn't been changed. + +- Client will send an initial key exchange guess to save a round trip. + Dropbear implements an extension kexguess2@matt.ucc.asn.au to allow the first + packet guess to succeed in wider circumstances than the standard behaviour. + When communicating with other implementations the standard behaviour is used. + +- Client side: when public key or password authentication with + $DROPBEAR_PASSWORD is used an initial authentication request will + be sent immediately rather than querying the list of available methods. + This behaviour is enabled by CLI_IMMEDIATE_AUTH option (on by default), + please let the Dropbear author know if it causes any interoperability + problems. + +- Implement client escape characters ~. (terminate session) and + ~^Z (background session) + +- Server will more reliably clean up utmp when connection is closed, reported by + Mattias Walström + +- Don't crash if /dev/urandom isn't writable (RHEL5), thanks to Scott Case + +- Add "-y -y" client option to skip host key checking, thanks to Hans Harder + +- scp didn't work properly on systems using vfork(), thanks to Frank Van Uffelen + +- Added IUTF8 terminal mode support (Linux and Mac OS). Not standardised yet +though probably will be soon + +- Some verbose DROPBEAR_TRACE output is now hidden unless $DROPBEAR_TRACE2 + enviroment variable is set + +- Fix using asymmetric MAC algorithms (broke in ) + +- Renamed configure.in to configure.ac to quieten autoconf, from Mike Frysinger + 2013.56 - Thursday 21 March 2013 - Allow specifying cipher (-c) and MAC (-m) lists for dbclient @@ -20,10 +71,10 @@ - Allow using IPv6 bracket notation for addresses in server "-p" option, from Ben Jencks -- A few improvements for Android from Reimar Döffinger +- A few improvements for Android from Reimar Döffinger - Fix memory leak for TCP forwarded connections to hosts that timed out, - reported by Norbert Benczúr. Appears to be a very long-standing bug. + reported by Norbert Benczúr. Appears to be a very long-standing bug. - Fix "make clean" for out of tree builds @@ -649,7 +700,7 @@ https://secure.ucc.asn.au/hg/dropbear/graph/default Lobenstock and Mihnea Stoenescu - Use daemon() function if available (or our own copy) rather than separate - code (thanks to Frédéric Lavernhe for the report and debugging, and Bernard + code (thanks to Frédéric Lavernhe for the report and debugging, and Bernard Blackham for his suggestion on what to look at) - Fixed up support for first_kex_packet_follows, required to talk to ssh.com @@ -768,7 +819,7 @@ https://secure.ucc.asn.au/hg/dropbear/graph/default - Various signedness fixes - Can listen on multiple ports - added option to disable openpty with configure script, - (from K.-P. Kirchdörfer <kapeka at epost.de>) + (from K.-P. Kirchdörfer <kapeka at epost.de>) - Various cleanups to bignum code (thanks to Tom St Denis <tomstdenis at iahu.ca>) - Fix compile error when disabling RSA |