ANNOUNCE 2.69 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1 2 3 4
I'd like to announce a new version of LSH, the GNU implementation of
the secure shell protocols. LSH includes a client, a server, and a few
scripts and utility programs.

Niels Möller's avatar
Niels Möller committed
5 6
The LSH-1.2 release, and any following LSH-1.2.x updates, are intended
to be stable. New features will be added to LSH-1.3.x.
Niels Möller's avatar
Niels Möller committed
7 8 9

FEATURES

10 11 12 13 14 15
The most notable new features in LSH-1.2 are

o  Support for RSA keys, for both host and user authentication.

o  The "gateway" mode of operation, implemented by lsh -G and lshg.

Niels Möller's avatar
Niels Möller committed
16
o  Limited Kerberos support, comparable to that available for the
17 18
   original sshd.

Niels Möller's avatar
Niels Möller committed
19
o  An improved randomness generator that works also on systems that
20 21 22
   lack /dev/random.
   
Some of the older (LSH-1.0) features are
Niels Möller's avatar
Niels Möller committed
23 24 25 26 27 28 29 30

o  Strong encryption and data authentication.

o  Strong host authentication using public key techniques.

o  User authentication by either ordinary UN*X passwords
   or public key techniques.

Niels Möller's avatar
Niels Möller committed
31 32
o  Spawning of remote shells and commands, including pseudo tty support.

33 34 35 36
o  A "gateway" interface, that lets you create a single SSH connection
   to a remote host, and reuse that connection for later commands.
   Ideal for applications like remote CVS.

Niels Möller's avatar
Niels Möller committed
37 38
o  Forwarding of TCP connections, in both directions.

Niels Möller's avatar
Niels Möller committed
39 40
o  Zlib compression.

41
o  Experimental support for Secure Remote Password (SRP) authentication.
Niels Möller's avatar
Niels Möller committed
42 43 44

o  Experimental support for IPv6.

Niels Möller's avatar
Niels Möller committed
45 46 47 48 49 50
o  A draft manual.


COMPATIBILITY AND PORTABILITY

LSH implements the secsh protocol as defined by the latest drafts from
Niels Möller's avatar
Niels Möller committed
51 52
the IETF secsh working group. It interoperates with both SSH Inc's
SSH2 products and OpenSSH. Note that LSH is *not* compatible with
Niels Möller's avatar
Niels Möller committed
53
SSH1, although the lshd deamon can fall back to an SSH1 implementation
54
(e.g. OpenSSH or SSH Inc's) when an ssh1 client connects.
Niels Möller's avatar
Niels Möller committed
55

Niels Möller's avatar
Niels Möller committed
56
LSH is reported to have worked at least once on GNU/Linux on Sparc,
Niels Möller's avatar
Niels Möller committed
57
Intel, PPC and Alpha, FreeBSD, Solaris and IRIX. There may well be
Niels Möller's avatar
Niels Möller committed
58
portability problems left, please report them to me.
Niels Möller's avatar
Niels Möller committed
59 60 61 62


QUALITY

63 64
LSH is provided AS IS, ABSOLUTELY no GUARANTEES, etc. Please report
any bugs you find.
Niels Möller's avatar
Niels Möller committed
65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80


PLANNED FEATURES

Some features that are planned but not yet implemented are

o  Forwarding of X, ssh-agent, UDP.

o  Support for SPKI certificates, for both authorization and host
   authentication. 

o  Kerberos authentication.

o  A file transfer service.


81
LICENSE
Niels Möller's avatar
Niels Möller committed
82 83

LSH is distributed under the terms and conditions of the GNU General
Niels Möller's avatar
Niels Möller committed
84 85
Public License. Unlike some other secsh implementations, you can use
LSH freely for any purpose.
Niels Möller's avatar
Niels Möller committed
86 87 88 89 90 91


AVAILABILITY AND FURTHER INFORMATION

The main LSH archive is located at

Niels Möller's avatar
Niels Möller committed
92
  ftp://ftp.lysator.liu.se/pub/security/lsh
Niels Möller's avatar
Niels Möller committed
93 94 95 96 97 98 99

Discussions about LSH takes place on the psst mailing list. See the
psst home page, http://www.net.lut.ac.uk/psst, for details.


Happy hacking,
/Niels Möller, <nisse@lysator.liu.se>