Forgot your password?

Close
typodupeerror
Encryption Security Software IT

OpenSSH 5.4 Released 127

Posted by timothy
from the but-it's-secret dept.
HipToday writes "As posted on the OpenBSD Journal, OpenSSH 5.4 has been released: 'Some highlights of this release are the disabling of protocol 1 by default, certificate authentication, a new "netcat mode," many changes on the sftp front (both client and server) and a collection of assorted bugfixes. The new release can already be found on a large number of mirrors and of course on www.openssh.com.'"
This discussion has been archived. No new comments can be posted.

OpenSSH 5.4 Released More

OpenSSH 5.4 Released

Comments Filter:

  • Re:New, Problematic Protocol Introduced (Score:3, Insightful)

    by Kjella (173770) on Wednesday March 10 2010, @05:06PM (#31430936) Homepage

    Please do tell what are the vital differences from version 1.4 made in 2008, because I think you're trolling. It looks like all RFCs normally look, either you haven't read many and don't have a clue what you're talking about or you are just trying to spread FUD.

  • Re:Cygwin's package was updated, too (Score:3, Insightful)

    by Aladrin (926209) on Wednesday March 10 2010, @05:59PM (#31431650)

    Just because it's public data doesn't mean you want anyone else to know what that particular user is doing.

  • Re:Cygwin's package was updated, too (Score:5, Insightful)

    by roman_mir (125474) on Wednesday March 10 2010, @06:00PM (#31431654) Homepage Journal

    Yes, you are missing the point.

    FTP is a fucking mess, I hate it, I wish I could kill it today everywhere. It is a disaster to manage with a firewall. The horrendous idea of using separate random ports for data connection vs control connections, the active/passive methods, it's is pure evil.

    SFTP is not FTP over SSH if you did not understand, it is a proper FTP that happens to run over a secured link.

  • Re:Cygwin's package was updated, too (Score:3, Insightful)

    by klui (457783) on Wednesday March 10 2010, @07:30PM (#31432592)
    I think I've just seen another incantation of ssh black magic (the other being command= in authorized_keys). Thanks for the insight.

  • Re:Cygwin's package was updated, too (Score:4, Insightful)

    by value_added (719364) on Thursday March 11 2010, @12:25AM (#31434492)

    I am running OpenBSD firewall ... I have the pf and ftp-proxy configured correctly (checked by someone who knows this by heart), still can't have the ftp working for the internal network. Gone through all configurations, docs, still don't have it working. Have to waste more time on this later, just because the users 'need' the ftp to download shit from other firm...

    Sorry, but the pf/ftp-proxy combination works as advertised. I'd suggest your configuration is wrong. Asserting that it doesn't work because "someone who knows this by heart" examined it is meaningless.

    Fix your configuration and stop complaining. Both pf and ftp-proxy can do detailed logging. If you understand FTP, and you examine the logged output, you'll quickly find the source of your errors and, by extension, the solution.

    Granted FTP is a creaky protocol, and while it's true that most people don't understand it (even those that claim they do), it's just as true that it ain't going anywhere. Maybe it's time to brush up on the RFCs?

  • Re:Cygwin's package was updated, too (Score:3, Insightful)

    by Sir_Lewk (967686) <sirlewk AT gmail DOT com> on Thursday March 11 2010, @12:31AM (#31434530)

    SFTP is not FTP over SSH ... it is a proper FTP

    I believe what he is saying is that FTP, in the classical sense, is not a properly done File Transfer Protocol. I'm inclined to agree.

  • Re:Please note: (Score:4, Insightful)

    by Abcd1234 (188840) on Thursday March 11 2010, @01:41AM (#31434808) Homepage

    In the 10 years since the inception of the OpenSSH project, these companies have contributed not even a dime of thanks in support of the OpenSSH project (despite numerous requests).

    And they don't have to, either morally or legally.

    OpenSSH is released under the BSD license, and the devs know full well that they may not be financially rewarded for their work. To suddenly expect those users to donate cash just because they use the very code you freed is, to say, the least, hypocritical. After all, if you wanted to be paid for the work you do, why are you releasing it for free to the world under one of the most liberal software licenses possible? Why not a dual license that requires payment for commercial use? Naturally because the BSDs are all about freedom, of course.

    Well, unless they think they're getting screwed financially.

  • Re:Please note: (Score:3, Insightful)

    by Gaygirlie (1657131) <`gaygirlie' `at' `hotmail.com'> on Thursday March 11 2010, @03:36AM (#31435264) Homepage

    "And they don't have to, either morally or legally."

    Legally, no. But morally? Well, I beg to differ: those companies generate millions of dollars a year and would be in a completely different situation right now if they didn't have OpenSSH to benefit from. As such I see it as rather greedy and selfish not to donate anything at all.

    But alas, this only proves that people have different views of what is morally or ethically acceptable: what I find morally questionable you find completely acceptable, and the same thing would probably work also vice versa on some other topic.

Grandpa Charnock's Law: You never really learn to swear until you learn to drive. [I thought it was when your kids learned to drive. Ed.]