===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/71.html,v
retrieving revision 1.50
retrieving revision 1.51
diff -u -r1.50 -r1.51
--- www/71.html 2022/04/15 05:31:17 1.50
+++ www/71.html 2022/04/15 05:40:51 1.51
@@ -1092,6 +1092,34 @@
In OpenSSH 8.9 the FIDO security key middleware interface
changed and increments SSH_SK_VERSION_MAJOR.
+
+ This release switches scp(1)
+ from using the legacy scp/rcp protocol
+ to using the SFTP protocol by default.
+ Legacy scp/rcp performs wildcard expansion of remote filenames (e.g.
+ "scp host:* .") through the remote shell. This has the side effect of
+ requiring double quoting of shell meta-characters in file names
+ included on scp(1)
+ command-lines, otherwise they could be interpreted
+ as shell commands on the remote side.
+ This creates one area of potential incompatibility:
+ scp(1) when using
+ the SFTP protocol no longer requires this finicky and brittle quoting,
+ and attempts to use it may cause transfers to fail. We consider the
+ removal of the need for double-quoting shell characters in file names
+ to be a benefit and do not intend to introduce bug-compatibility for
+ legacy scp/rcp in scp(1)
+ when using the SFTP protocol.
+ Another area of potential incompatibility relates to the use of remote
+ paths relative to other user's home directories, for example -
+ "scp host:~user/file /tmp". The SFTP protocol has no native way to
+ expand a ~user path. However,
+ sftp-server(8)
+ in OpenSSH 8.7 and later support a protocol extension
+ "expand-path@openssh.com" to support this.
+ In case of incompatibility, the
+ scp(1) client may be instructed to use
+ the legacy scp/rcp using the -O flag.
New features
@@ -1174,6 +1202,7 @@
add a "cp" command to allow the sftp client to perform
server-side file copies.
+
Bugfixes