diff CHANGES @ 718:9644f50434f1

2013.56 changelog
author Matt Johnston <matt@ucc.asn.au>
date Thu, 21 Mar 2013 23:19:06 +0800
parents b207d5183bb7
children 1b8b2b9d6e94
line wrap: on
line diff
--- a/CHANGES	Thu Mar 21 23:11:16 2013 +0800
+++ b/CHANGES	Thu Mar 21 23:19:06 2013 +0800
@@ -1,16 +1,20 @@
 - Allow specifying cipher (-c) and MAC (-m) lists for dbclient
-- Allow using 'none' cipher or MAC
+- Allow using 'none' cipher or MAC (off by default, use options.h). Encryption
+  is used during authentication then disabled, similar to OpenSSH HPN mode
 - Allow a user in immediately if the account has a blank password and blank
   passwords are enabled
 - Include a few extra sources of entropy from /proc on Linux, hash private keys
-  as well
+  as well. Dropbear will also write gathered entropy back into /dev/urandom
-- Added sha2-256 and sha2-512 hashes
+- Added hmac-sha2-256 and hmac-sha2-512 support (off by default, use options.h)
-- Don't sent "localhost" for -R forward connections, reported by Denis Bider
+- Don't sent bad address "localhost" for -R forward connections, 
+  reported by Denis Bider
 - Add "-B" runtime option to allow blank passwords
@@ -21,6 +25,10 @@
 - Fix memory leak for TCP forwarded connections to hosts that timed out,
   reported by Norbert Bencz˙r. Appears to be a very long-standing bug.
+- Fix "make clean" for out of tree builds
+- Fix compilation when ENABLE_{SVR,CLI}_AGENTFWD are unset
 2012.55 - Wednesday 22 February 2012
 - Security: Fix use-after-free bug that could be triggered if command="..."