libssh 0.6.2 (Security release)

This is an important SECURITY and maintenance release in order to address CVE-2014-0017 – PRNG state reuse on forking servers. This bug happens when a SSH server forks on new connections. OpenSSL PRNG does not always detect the change of process (PID collision) and PRNG state may be shared between two successive children. However that bug is greatly mitigated by […]

libssh 0.6.1

We are happy to announce the first bugfix version of libssh 0.6. This version also provides some new functions and uses the openssh known_hosts heuristic to negotiate the cipher for key exchange. Thanks to all contributors! If you are new to libssh you should read our tutorial how to get started. Please join our mailing list or visit our irc […]

libssh 0.6.0

Ultimately the day has come that we can release libssh 0.6.0. This version has a lot of new features and we put a lot of effort into it to make it stable. The most important features are a callback based server API which is already in use by some projects. We added support for ECDSA and implemented key exchange! […]

libssh 0.6.0rc2 and GSSAPI

We would like to announce libssh 0.6.0rc2 with full GSSAPI support. Last week Simo Sorce and I planned a day to test libssh against FreeIPA and gssproxy. The gss-proxy protocol allows proxying of GSSAPI initiation and authentication to have isolation and privilege separation for user-mode applications. Well we worked 3 days on libssh and gss-proxy and fixed several bugs in […]