Mercurial > dropbear

comparison CHANGES @ 801:7dcb46da72d9 ecc

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
merge in HEAD
author Matt Johnston <matt@ucc.asn.au>
date Tue, 21 May 2013 12:09:35 +0800
parents ea04e3eb03e2
children 32862e8283e7
comparison
equal deleted inserted replaced
799:c344607b7341 801:7dcb46da72d9
1 2013.58 - Thursday 18 April 2013
2
3 - Fix building with Zlib disabled, thanks to Hans Harder and cuma@freetz
4
5 - Use % as a separator for ports, fixes scp in multihop mode, from Hans Harder
6
7 - Reject logins for other users when running as non-root, from Hans Harder
8
9 - Disable client immediate authentication request by default, it prevents
10 passwordless logins from working
11
12 2013.57 - Monday 15 April 2013
13
14 - Decreased connection setup time particularly with high latency connections,
15 the number of round trips has been reduced for both client and server.
16 CPU time hasn't been changed.
17
18 - Client will send an initial key exchange guess to save a round trip.
19 Dropbear implements an extension [email protected] to allow the first
20 packet guess to succeed in wider circumstances than the standard behaviour.
21 When communicating with other implementations the standard behaviour is used.
22
23 - Client side: when public key or password authentication with
24 $DROPBEAR_PASSWORD is used an initial authentication request will
25 be sent immediately rather than querying the list of available methods.
26 This behaviour is enabled by CLI_IMMEDIATE_AUTH option (on by default),
27 please let the Dropbear author know if it causes any interoperability
28 problems.
29
30 - Implement client escape characters ~. (terminate session) and
31 ~^Z (background session)
32
33 - Server will more reliably clean up utmp when connection is closed, reported by
34 Mattias Walström
35
36 - Don't crash if /dev/urandom isn't writable (RHEL5), thanks to Scott Case
37
38 - Add "-y -y" client option to skip host key checking, thanks to Hans Harder
39
40 - scp didn't work properly on systems using vfork(), thanks to Frank Van Uffelen
41
42 - Added IUTF8 terminal mode support (Linux and Mac OS). Not standardised yet
43 though probably will be soon
44
45 - Some verbose DROPBEAR_TRACE output is now hidden unless $DROPBEAR_TRACE2
46 enviroment variable is set
47
48 - Fix using asymmetric MAC algorithms (broke in )
49
50 - Renamed configure.in to configure.ac to quieten autoconf, from Mike Frysinger
51
1 2013.56 - Thursday 21 March 2013 52 2013.56 - Thursday 21 March 2013
2 53
3 - Allow specifying cipher (-c) and MAC (-m) lists for dbclient 54 - Allow specifying cipher (-c) and MAC (-m) lists for dbclient
4 55
5 - Allow using 'none' cipher or MAC (off by default, use options.h). Encryption 56 - Allow using 'none' cipher or MAC (off by default, use options.h). Encryption
18 69
19 - Add "-B" runtime option to allow blank passwords 70 - Add "-B" runtime option to allow blank passwords
20 71
21 - Allow using IPv6 bracket notation for addresses in server "-p" option, from Ben Jencks 72 - Allow using IPv6 bracket notation for addresses in server "-p" option, from Ben Jencks
22 73
23 - A few improvements for Android from Reimar D�ffinger 74 - A few improvements for Android from Reimar Döffinger
24 75
25 - Fix memory leak for TCP forwarded connections to hosts that timed out, 76 - Fix memory leak for TCP forwarded connections to hosts that timed out,
26 reported by Norbert Bencz�r. Appears to be a very long-standing bug. 77 reported by Norbert Benczúr. Appears to be a very long-standing bug.
27 78
28 - Fix "make clean" for out of tree builds 79 - Fix "make clean" for out of tree builds
29 80
30 - Fix compilation when ENABLE_{SVR,CLI}_AGENTFWD are unset 81 - Fix compilation when ENABLE_{SVR,CLI}_AGENTFWD are unset
31 82
647 698
648 - Various makefile improvements for cross-compiling, thanks to Friedrich 699 - Various makefile improvements for cross-compiling, thanks to Friedrich
649 Lobenstock and Mihnea Stoenescu 700 Lobenstock and Mihnea Stoenescu
650 701
651 - Use daemon() function if available (or our own copy) rather than separate 702 - Use daemon() function if available (or our own copy) rather than separate
652 code (thanks to Fr�d�ric Lavernhe for the report and debugging, and Bernard 703 code (thanks to Frédéric Lavernhe for the report and debugging, and Bernard
653 Blackham for his suggestion on what to look at) 704 Blackham for his suggestion on what to look at)
654 705
655 - Fixed up support for first_kex_packet_follows, required to talk to ssh.com 706 - Fixed up support for first_kex_packet_follows, required to talk to ssh.com
656 clients. Thanks to Marian Stagarescu for the bug report. 707 clients. Thanks to Marian Stagarescu for the bug report.
657 708
766 - More commenting, fix minor compile warnings, make return values more 817 - More commenting, fix minor compile warnings, make return values more
767 consistent etc 818 consistent etc
768 - Various signedness fixes 819 - Various signedness fixes
769 - Can listen on multiple ports 820 - Can listen on multiple ports
770 - added option to disable openpty with configure script, 821 - added option to disable openpty with configure script,
771 (from K.-P. Kirchd�rfer <kapeka at epost.de>) 822 (from K.-P. Kirchdörfer <kapeka at epost.de>)
772 - Various cleanups to bignum code 823 - Various cleanups to bignum code
773 (thanks to Tom St Denis <tomstdenis at iahu.ca>) 824 (thanks to Tom St Denis <tomstdenis at iahu.ca>)
774 - Fix compile error when disabling RSA 825 - Fix compile error when disabling RSA
775 (from Marc Kleine-Budde <kleine-budde at gmx.de>) 826 (from Marc Kleine-Budde <kleine-budde at gmx.de>)
776 - Other cleanups, splitting large functions for packet and kex handling etc 827 - Other cleanups, splitting large functions for packet and kex handling etc