===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/48.html,v
retrieving revision 1.13
retrieving revision 1.14
diff -u -r1.13 -r1.14
--- www/48.html 2010/09/25 21:30:17 1.13
+++ www/48.html 2010/09/26 09:13:47 1.14
@@ -91,6 +91,8 @@
driver for ABIT temperature, voltage and fan sensors.
New owctr(4)
driver for 1-Wire counter devices.
+ New pgs(4)
+ driver for Programmers Switch found on some macppc machines.
Support for 82576 fiber and 82577/82578 (PCH) based devices
has been added to em(4).
Support for 24-bit encodings and USB 2.0 playback
@@ -106,6 +108,9 @@
Support for Intel Core i3/i5 internal graphics (Ironlake)
has been added to inteldrm(4)
and agp(4).
+ The ss(4) and
+ uscanner(4)
+ drivers have been removed.
@@ -160,6 +165,7 @@
aucat(1)
server was lowered to a single block, improving
usability of low-latency programs without stability compromise.
+
Many memory leaks have been fixed in various userland utilities.
...
@@ -179,12 +185,90 @@
OpenSSH 5.6:
- New features:
-
- - ...
+
+ - Added a ControlPersist option to
+ ssh_config(5).
+
- Hostbased authentication may now use certificate host keys.
+
- ssh-keygen(1)
+ now supports signing certificate using a CA key that has been stored
+ in a PKCS#11 token.
+
- ssh(1)
+ will now log the hostname and address that we connected to at
+ LogLevel=verbose after authentication is successful to mitigate
+ "phishing" attacks.
+
- Expand %h to the hostname in ssh_config Hostname options.
+
- Allow ssh-keygen(1)
+ to import and export of PEM and PKCS#8 keys.
+
- sshd(8)
+ will now queue debug messages for bad ownership or permissions on
+ the user's keyfiles encountered during authentication.
+
- ssh(1)
+ connection multiplexing now supports remote forwarding with
+ dynamic port allocation and can report the allocated port back to
+ the user.
+
- sshd(8)
+ now supports indirection in matching of principal names listed in
+ certificates.
+ sshd(8)
+ now has a new AuthorizedPrincipalsFile option.
+
- Additional sshd_config(5)
+ options are now valid inside Match blocks:
+
+ - AuthorizedKeysFile
+
- AuthorizedPrincipalsFile
+
- HostbasedUsesNameFromPacketOnly
+
- PermitTunnel
+
- The following significant bugs have been fixed in this release:
- - ...
+
- The PKCS#11 code now retries a lookup for a private key if there is
+ no matching key with CKA_SIGN attribute enabled (bz#1736).
+
- Unbreak strdelim() skipping past quoted strings.
+
- sftp(1):
+ fix swapped args in upload_dir_internal() (bz#1797).
+
- Fix a longstanding problem where if you suspend
+ scp(1)
+ at the password/passphrase prompt the terminal mode is not restored.
+
- Fix a PKCS#11 crash on some smartcards by validating the length
+ returned for C_GetAttributValue (bz#1773).
+
- sftp(1):
+ fix ls in working directories that contain globbing
+ characters in their pathnames (bz#1655).
+
- Print warning for missing home directory when
+ ChrootDirectory=none. (bz#1564).
+
- sftp(1):
+ fix a memory leak in do_realpath() error path (bz#1771).
+
- ssh-keygen(1):
+ Standardise error messages when attempting to open
+ private key files to include "progname: filename: error reason" (bz#1783).
+
- Replace verbose and overflow-prone Linebuf code with
+ read_keyfile_line() (bz#1565).
+
- Include the user name on "subsystem request for ..." log messages.
+
- ssh(1)
+ and
+ sshd(8):
+ remove hardcoded limit of 100 permitopen clauses and port forwards
+ per direction (bz#1327).
+
- sshd(8):
+ ignore stderr output from subsystems to avoid hangs if a subsystem
+ or shell initialisation writes to stderr (bz#1750).
+
- Skip the initial check for access with an empty password when
+ PermitEmptyPasswords=no (bz#1638).
+
- sshd(8):
+ fix logspam when key options (from="..." especially) deny
+ non-matching keys (bz#1765).
+
- ssh-keygen(1):
+ display a more helpful error message when $HOME is
+ inaccessible while trying to create .ssh directory (bz#1740).
+
- ssh(1):
+ fix hang when terminating a mux slave using ~ (bz#1758).
+
- ssh-keygen(1):
+ refuse to generate keys longer than
+ OPENSSL_[RD]SA_MAX_MODULUS_BITS (bz#1516).
+
- Suppress spurious tty warning when using -O and stdin is not a tty
+ (bz#1746).
+
- Kill channel when pty allocation requests fail (bz#1698).
@@ -649,7 +733,7 @@
alt="OpenBSD">
www@openbsd.org
-$OpenBSD: 48.html,v 1.13 2010/09/25 21:30:17 jasper Exp $
+$OpenBSD: 48.html,v 1.14 2010/09/26 09:13:47 jasper Exp $