ANNOUNCE 2.28 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1
2
3
4
5
6
7
I'd like to announce a new version of LSH, the GNU implementation of
the secure shell protocols. LSH includes a client, a server, and a few
scripts and utility programs.


FEATURES

Niels Möller's avatar
Niels Möller committed
8
Some of the LSH-1.0 features are
Niels Möller's avatar
Niels Möller committed
9
10
11
12
13
14
15
16

o  Strong encryption and data authentication.

o  Strong host authentication using public key techniques.

o  User authentication by either ordinary UN*X passwords
   or public key techniques.

Niels Möller's avatar
Niels Möller committed
17
18
19
20
o  Spawning of remote shells and commands, including pseudo tty support.

o  Forwarding of TCP connections, in both directions.

Niels Möller's avatar
Niels Möller committed
21
22
o  Zlib compression.

Niels Möller's avatar
Niels Möller committed
23
24
25
26
o  Experimental support for Secure REmote Password (SRP) authentication.

o  Experimental support for IPv6.

Niels Möller's avatar
Niels Möller committed
27
28
29
30
31
32
o  A draft manual.


COMPATIBILITY AND PORTABILITY

LSH implements the secsh protocol as defined by the latest drafts from
Niels Möller's avatar
Niels Möller committed
33
34
the IETF secsh working group. It interoperates with both SSH Inc's
SSH2 products and OpenSSH. Note that LSH is *not* compatible with
Niels Möller's avatar
Niels Möller committed
35
36
37
SSH1, although the lshd deamon can fall back to an SSH1 implementation
(e.g. OpenSSH or Datafellow's) when an ssh1 client connects.

Niels Möller's avatar
Niels Möller committed
38
LSH is reported to have worked at least once on GNU/Linux on Sparc,
Niels Möller's avatar
Niels Möller committed
39
Intel, PPC and Alpha, FreeBSD, Solaris and IRIX. There may well be
Niels Möller's avatar
Niels Möller committed
40
portability problems left, please report them to me.
Niels Möller's avatar
Niels Möller committed
41
42
43
44
45


QUALITY

However, LSH does *NOT* try to provide any security on systems that
Niels Möller's avatar
Niels Möller committed
46
47
lack a good /dev/random. LSH is provided AS IS, ABSOLUTELY no
GUARANTEES, etc. Please report any bugs you find.
Niels Möller's avatar
Niels Möller committed
48
49
50
51
52
53


PLANNED FEATURES

Some features that are planned but not yet implemented are

Niels Möller's avatar
Niels Möller committed
54
o  A good, portable, (pseudo) randomness source.
Niels Möller's avatar
Niels Möller committed
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71

o  A "gateway" interface, to let external programs access an LSH
   connection easily and securely.

o  Forwarding of X, ssh-agent, UDP.

o  Support for SPKI certificates, for both authorization and host
   authentication. 

o  Kerberos authentication.

o  A file transfer service.


COPYRIGHT

LSH is distributed under the terms and conditions of the GNU General
Niels Möller's avatar
Niels Möller committed
72
73
Public License. Unlike some other secsh implementations, you can use
LSH freely for any purpose.
Niels Möller's avatar
Niels Möller committed
74
75
76
77
78
79


AVAILABILITY AND FURTHER INFORMATION

The main LSH archive is located at

Niels Möller's avatar
Niels Möller committed
80
  ftp://ftp.lysator.liu.se/pub/security/lsh
Niels Möller's avatar
Niels Möller committed
81
82
83
84
85
86
87

Discussions about LSH takes place on the psst mailing list. See the
psst home page, http://www.net.lut.ac.uk/psst, for details.


Happy hacking,
/Niels Möller, <nisse@lysator.liu.se>