version 1.43, 2007/09/02 05:46:58 |
version 1.44, 2007/09/05 06:29:12 |
|
|
Copyright 1997-2007, Theo de Raadt.<br> |
Copyright 1997-2007, Theo de Raadt.<br> |
<font color="#e00000">ISBN 978-0-9784475-0-2</font> |
<font color="#e00000">ISBN 978-0-9784475-0-2</font> |
<br> |
<br> |
<a href="lyrics.html#42">4.2 Song: "XXX"</a> |
<a href="lyrics.html#42">4.2 Song: "To be announced later"</a> |
<p> |
<p> |
|
|
<a href="#new">What's New</a><br> |
<a href="#new">What's New</a><br> |
|
|
|
|
<li>OpenSSH 4.7: |
<li>OpenSSH 4.7: |
<ul> |
<ul> |
<li>... |
<li>Prevent |
|
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> |
|
from using a trusted X11 cookie if creation of an |
|
untrusted cookie fails; found and fixed by Jan Pechanec. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd&sektion=8">sshd(8)</a> |
|
in new installations defaults to SSH Protocol 2 only. |
|
Existing installations are unchanged. |
|
<li>The SSH channel window size has been increased, and both |
|
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> |
|
and |
|
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd&sektion=8">sshd(8)</a> |
|
now send window updates more aggressively.<br> |
|
These improves performance on high-BDP (Bandwidth Delay Product) networks. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> |
|
and |
|
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=sshd&sektion=8">sshd(8)</a> |
|
now preserve MAC contexts between packets, which |
|
saves 2 hash calls per packet and results in 12-16% speedup for |
|
arcfour256/hmac-md5. |
|
<li>A new MAC algorithm has been added, UMAC-64 (RFC4418) which is |
|
approximately 20% faster than HMAC-MD5. |
|
<li>A -K flag was added to |
|
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> |
|
to set GSSAPIAuthentication=Yes. |
|
<li>Failure to establish a |
|
<a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> |
|
TunnelForward is now treated as a |
|
fatal error when the ExitOnForwardFailure option is set. |
|
<li><a href="http://www.openbsd.org/cgi-bin/man.cgi?query=ssh&sektion=1">ssh(1)</a> |
|
returns a sensible exit status if the control master goes |
|
away without passing the full exit status. (bz #1261) |
</ul> |
</ul> |
<p> |
<p> |
|
|
<li>Over 4500 ports, 4300 pre-built packages (for i386), minor robustness improvements in package tools. |
<li>Over 4,500 ports, minor robustness improvements in package tools. |
<!-- XXX update numbers --> |
<li>Many pre-built packages for each architecture: |
|
<table border=0 cellspacing=0 cellpadding=2 width="95%"> |
|
<tr> |
|
<td valign="top" width="33%"> |
|
<ul> |
|
<li>i386: 4360 |
|
<li>sparc64: 4205 |
|
<li>alpha: 3779 |
|
<li>sh: XXXX |
|
</ul></td><td valign=top width="33%"><ul> |
|
<li>amd64: 4283 |
|
<li>powerpc: 4230 |
|
<li>sparc: XXXX |
|
<li>m68k: XXXX |
|
</ul></td><td valign=top width="33%"><ul> |
|
<li>arm: XXXX |
|
<li>hppa: 3215 |
|
</ul></td></tr></table> |
Some highlights: |
Some highlights: |
<ul> |
<ul> |
|
<!-- XXX double check versions --> |
<li>Gnome 2.18. |
<li>Gnome 2.18. |
<li>GNUstep 1.14. |
<li>GNUstep 1.14. |
<li>KDE 3.5.7 and koffice 1.6.3. |
<li>KDE 3.5.7 and koffice 1.6.3. |