ANNOUNCE 2.28 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1 2 3 4 5 6 7
I'd like to announce a new version of LSH, the GNU implementation of
the secure shell protocols. LSH includes a client, a server, and a few
scripts and utility programs.


FEATURES

Niels Möller's avatar
Niels Möller committed
8
Some of the LSH-1.0 features are
Niels Möller's avatar
Niels Möller committed
9 10 11 12 13 14 15 16

o  Strong encryption and data authentication.

o  Strong host authentication using public key techniques.

o  User authentication by either ordinary UN*X passwords
   or public key techniques.

Niels Möller's avatar
Niels Möller committed
17 18 19 20
o  Spawning of remote shells and commands, including pseudo tty support.

o  Forwarding of TCP connections, in both directions.

Niels Möller's avatar
Niels Möller committed
21 22
o  Zlib compression.

Niels Möller's avatar
Niels Möller committed
23 24 25 26
o  Experimental support for Secure REmote Password (SRP) authentication.

o  Experimental support for IPv6.

Niels Möller's avatar
Niels Möller committed
27 28 29 30 31 32
o  A draft manual.


COMPATIBILITY AND PORTABILITY

LSH implements the secsh protocol as defined by the latest drafts from
Niels Möller's avatar
Niels Möller committed
33 34
the IETF secsh working group. It interoperates with both SSH Inc's
SSH2 products and OpenSSH. Note that LSH is *not* compatible with
Niels Möller's avatar
Niels Möller committed
35 36 37
SSH1, although the lshd deamon can fall back to an SSH1 implementation
(e.g. OpenSSH or Datafellow's) when an ssh1 client connects.

Niels Möller's avatar
Niels Möller committed
38
LSH is reported to have worked at least once on GNU/Linux on Sparc,
Niels Möller's avatar
Niels Möller committed
39
Intel, PPC and Alpha, FreeBSD, Solaris and IRIX. There may well be
Niels Möller's avatar
Niels Möller committed
40
portability problems left, please report them to me.
Niels Möller's avatar
Niels Möller committed
41 42 43 44 45


QUALITY

However, LSH does *NOT* try to provide any security on systems that
Niels Möller's avatar
Niels Möller committed
46 47
lack a good /dev/random. LSH is provided AS IS, ABSOLUTELY no
GUARANTEES, etc. Please report any bugs you find.
Niels Möller's avatar
Niels Möller committed
48 49 50 51 52 53


PLANNED FEATURES

Some features that are planned but not yet implemented are

Niels Möller's avatar
Niels Möller committed
54
o  A good, portable, (pseudo) randomness source.
Niels Möller's avatar
Niels Möller committed
55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71

o  A "gateway" interface, to let external programs access an LSH
   connection easily and securely.

o  Forwarding of X, ssh-agent, UDP.

o  Support for SPKI certificates, for both authorization and host
   authentication. 

o  Kerberos authentication.

o  A file transfer service.


COPYRIGHT

LSH is distributed under the terms and conditions of the GNU General
Niels Möller's avatar
Niels Möller committed
72 73
Public License. Unlike some other secsh implementations, you can use
LSH freely for any purpose.
Niels Möller's avatar
Niels Möller committed
74 75 76 77 78 79


AVAILABILITY AND FURTHER INFORMATION

The main LSH archive is located at

Niels Möller's avatar
Niels Möller committed
80
  ftp://ftp.lysator.liu.se/pub/security/lsh
Niels Möller's avatar
Niels Möller committed
81 82 83 84 85 86 87

Discussions about LSH takes place on the psst mailing list. See the
psst home page, http://www.net.lut.ac.uk/psst, for details.


Happy hacking,
/Niels Möller, <nisse@lysator.liu.se>