ANNOUNCE 2.57 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1 2 3 4 5 6 7
I'd like to announce a new version of LSH, the GNU implementation of
the secure shell protocols. LSH includes a client, a server, and a few
scripts and utility programs.


FEATURES

8 9 10 11 12 13 14 15 16 17 18 19 20
The most notable new features in LSH-1.2 are

o  Support for RSA keys, for both host and user authentication.

o  The "gateway" mode of operation, implemented by lsh -G and lshg.

o  Limited Kerberos support, similar to that available for the
   original sshd.

o  An improved randomness generator that works also on sysmtems that
   lack /dev/random.
   
Some of the older (LSH-1.0) features are
Niels Möller's avatar
Niels Möller committed
21 22 23 24 25 26 27 28

o  Strong encryption and data authentication.

o  Strong host authentication using public key techniques.

o  User authentication by either ordinary UN*X passwords
   or public key techniques.

Niels Möller's avatar
Niels Möller committed
29 30
o  Spawning of remote shells and commands, including pseudo tty support.

31 32 33 34
o  A "gateway" interface, that lets you create a single SSH connection
   to a remote host, and reuse that connection for later commands.
   Ideal for applications like remote CVS.

Niels Möller's avatar
Niels Möller committed
35 36
o  Forwarding of TCP connections, in both directions.

Niels Möller's avatar
Niels Möller committed
37 38
o  Zlib compression.

39
o  Experimental support for Secure Remote Password (SRP) authentication.
Niels Möller's avatar
Niels Möller committed
40 41 42

o  Experimental support for IPv6.

Niels Möller's avatar
Niels Möller committed
43 44 45 46 47 48
o  A draft manual.


COMPATIBILITY AND PORTABILITY

LSH implements the secsh protocol as defined by the latest drafts from
Niels Möller's avatar
Niels Möller committed
49 50
the IETF secsh working group. It interoperates with both SSH Inc's
SSH2 products and OpenSSH. Note that LSH is *not* compatible with
Niels Möller's avatar
Niels Möller committed
51
SSH1, although the lshd deamon can fall back to an SSH1 implementation
52
(e.g. OpenSSH or SSH Inc's) when an ssh1 client connects.
Niels Möller's avatar
Niels Möller committed
53

Niels Möller's avatar
Niels Möller committed
54
LSH is reported to have worked at least once on GNU/Linux on Sparc,
Niels Möller's avatar
Niels Möller committed
55
Intel, PPC and Alpha, FreeBSD, Solaris and IRIX. There may well be
Niels Möller's avatar
Niels Möller committed
56
portability problems left, please report them to me.
Niels Möller's avatar
Niels Möller committed
57 58 59 60


QUALITY

61 62
LSH is provided AS IS, ABSOLUTELY no GUARANTEES, etc. Please report
any bugs you find.
Niels Möller's avatar
Niels Möller committed
63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81


PLANNED FEATURES

Some features that are planned but not yet implemented are

o  Forwarding of X, ssh-agent, UDP.

o  Support for SPKI certificates, for both authorization and host
   authentication. 

o  Kerberos authentication.

o  A file transfer service.


COPYRIGHT

LSH is distributed under the terms and conditions of the GNU General
Niels Möller's avatar
Niels Möller committed
82 83
Public License. Unlike some other secsh implementations, you can use
LSH freely for any purpose.
Niels Möller's avatar
Niels Möller committed
84 85 86 87 88 89


AVAILABILITY AND FURTHER INFORMATION

The main LSH archive is located at

Niels Möller's avatar
Niels Möller committed
90
  ftp://ftp.lysator.liu.se/pub/security/lsh
Niels Möller's avatar
Niels Möller committed
91 92 93 94 95 96 97

Discussions about LSH takes place on the psst mailing list. See the
psst home page, http://www.net.lut.ac.uk/psst, for details.


Happy hacking,
/Niels Möller, <nisse@lysator.liu.se>