ANNOUNCE 2.69 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1
2
3
4
I'd like to announce a new version of LSH, the GNU implementation of
the secure shell protocols. LSH includes a client, a server, and a few
scripts and utility programs.

Niels Möller's avatar
Niels Möller committed
5
6
The LSH-1.2 release, and any following LSH-1.2.x updates, are intended
to be stable. New features will be added to LSH-1.3.x.
Niels Möller's avatar
Niels Möller committed
7
8
9

FEATURES

10
11
12
13
14
15
The most notable new features in LSH-1.2 are

o  Support for RSA keys, for both host and user authentication.

o  The "gateway" mode of operation, implemented by lsh -G and lshg.

Niels Möller's avatar
Niels Möller committed
16
o  Limited Kerberos support, comparable to that available for the
17
18
   original sshd.

Niels Möller's avatar
Niels Möller committed
19
o  An improved randomness generator that works also on systems that
20
21
22
   lack /dev/random.
   
Some of the older (LSH-1.0) features are
Niels Möller's avatar
Niels Möller committed
23
24
25
26
27
28
29
30

o  Strong encryption and data authentication.

o  Strong host authentication using public key techniques.

o  User authentication by either ordinary UN*X passwords
   or public key techniques.

Niels Möller's avatar
Niels Möller committed
31
32
o  Spawning of remote shells and commands, including pseudo tty support.

33
34
35
36
o  A "gateway" interface, that lets you create a single SSH connection
   to a remote host, and reuse that connection for later commands.
   Ideal for applications like remote CVS.

Niels Möller's avatar
Niels Möller committed
37
38
o  Forwarding of TCP connections, in both directions.

Niels Möller's avatar
Niels Möller committed
39
40
o  Zlib compression.

41
o  Experimental support for Secure Remote Password (SRP) authentication.
Niels Möller's avatar
Niels Möller committed
42
43
44

o  Experimental support for IPv6.

Niels Möller's avatar
Niels Möller committed
45
46
47
48
49
50
o  A draft manual.


COMPATIBILITY AND PORTABILITY

LSH implements the secsh protocol as defined by the latest drafts from
Niels Möller's avatar
Niels Möller committed
51
52
the IETF secsh working group. It interoperates with both SSH Inc's
SSH2 products and OpenSSH. Note that LSH is *not* compatible with
Niels Möller's avatar
Niels Möller committed
53
SSH1, although the lshd deamon can fall back to an SSH1 implementation
54
(e.g. OpenSSH or SSH Inc's) when an ssh1 client connects.
Niels Möller's avatar
Niels Möller committed
55

Niels Möller's avatar
Niels Möller committed
56
LSH is reported to have worked at least once on GNU/Linux on Sparc,
Niels Möller's avatar
Niels Möller committed
57
Intel, PPC and Alpha, FreeBSD, Solaris and IRIX. There may well be
Niels Möller's avatar
Niels Möller committed
58
portability problems left, please report them to me.
Niels Möller's avatar
Niels Möller committed
59
60
61
62


QUALITY

63
64
LSH is provided AS IS, ABSOLUTELY no GUARANTEES, etc. Please report
any bugs you find.
Niels Möller's avatar
Niels Möller committed
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80


PLANNED FEATURES

Some features that are planned but not yet implemented are

o  Forwarding of X, ssh-agent, UDP.

o  Support for SPKI certificates, for both authorization and host
   authentication. 

o  Kerberos authentication.

o  A file transfer service.


81
LICENSE
Niels Möller's avatar
Niels Möller committed
82
83

LSH is distributed under the terms and conditions of the GNU General
Niels Möller's avatar
Niels Möller committed
84
85
Public License. Unlike some other secsh implementations, you can use
LSH freely for any purpose.
Niels Möller's avatar
Niels Möller committed
86
87
88
89
90
91


AVAILABILITY AND FURTHER INFORMATION

The main LSH archive is located at

Niels Möller's avatar
Niels Möller committed
92
  ftp://ftp.lysator.liu.se/pub/security/lsh
Niels Möller's avatar
Niels Möller committed
93
94
95
96
97
98
99

Discussions about LSH takes place on the psst mailing list. See the
psst home page, http://www.net.lut.ac.uk/psst, for details.


Happy hacking,
/Niels Möller, <nisse@lysator.liu.se>