OpenSSH Version 8.0 Released |
Written by Nikos Vaggalis |
Tuesday, 07 May 2019 |
The OpenSSH suite, a complete SSH protocol 2.0 implementation which includes a sftp client and server, reaches version 8.0.
The release mainly fixes a vulnerability (CVE-2019-6111) in the scp protocol that: when copying files from a remote system This release adds client-side checking that the filenames sent from the server match the command-line request It had been advised before not to use the scp protocol since it is old and buggy and instead use sftp.Nevertheless this release provides a fix for those hardcore scp users, who for instance have complained that using scp in scripts is much easier than using sftp. Amongst the enhancements, the most important are the support for ECDSA keys in PKCS#11 tokens and that the RSA keys' generated size now defaults to 3072 bits. Of course, there are also several bug fixes such as:
The new release also fixes a number of memory leaks. More Information[openssh-unix-announce] Announce: OpenSSH 8.0 released Related ArticlesEU Bug Bounty - Software Security as a Civil Right
To be informed about new articles on I Programmer, sign up for our weekly newsletter, subscribe to the RSS feed and follow us on Twitter, Facebook or Linkedin.
Comments
or email your comment to: comments@i-programmer.info |
Last Updated ( Tuesday, 07 May 2019 ) |