OpenSSH 3.3 released

  Date: Fri, 21 Jun 2002 21:50:59 +0200 From: Markus Friedl  To: news@linuxsecurity.com Subject: OpenSSH 3.3 released  OpenSSH 3.3 has just been released. It will be available from the mirrors listed at http://www.openssh.com/ shortly.  OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0 implementation and includes sftp client and server support.  We would like to thank the OpenSSH community for their continued support and encouragement.   Changes since OpenSSH 3.2.3: ============================   Security Changes: =================  - improved support for privilege separation:  	privilege separation is now enabled by default    See UsePrivilegeSeparation in sshd_config(5)   and http://www.citi.umich.edu/u/provos/ssh/privsep.html for more   information. - ssh no longer needs to be installed setuid root for protocol   version 2 hostbased authentication, see ssh-keysign(8).   protocol version 1 rhosts-rsa authentication still requires privileges   and is not recommended.  Other Changes: ==============  - documentation for the client and server configuration options have   been moved to ssh_config(5) and sshd_config(5). - the server now supports the Compression option, see sshd_config(5). - the client options RhostsRSAAuthentication and RhostsAuthentication now   default to no, see ssh_config(5). - the client options FallBackToRsh and UseRsh are deprecated. - ssh-agent now supports locking and timeouts for keys, see ssh-add(1). - ssh-agent can now bind to unix-domain sockets given on the command line,   see ssh-agent(1). - fixes problems with valid RSA signatures from putty clients.  Reporting Bugs: ===============  - please read http://www.openssh.com/report.html and http://bugzilla.mindrot.org/  OpenSSH is brought to you by Markus Friedl, Niels Provos, Theo de Raadt, Kevin Steves, Damien Miller and Ben Lindstrom.