This is the mail archive of the cygwin@cygwin.com mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]

OpenSSH-3.0p1-1 and RSA Authentication (works!)



A few days ago, I exchanged a number of messages on the mailing list trying
to get ssh working using RSA Authentication.  I tried all the
suggestions, and nothing seemed to help, and I finally gave up.

Today, I upgraded to the latest cygwin 1.3.4 and openssh 3.0p1 and my 
RSA Authentication started working!    I'm not sure whether it was the 
Cygwin or the OpenSSH upgrade that fixed it (or both?) but if anyone else
is having trouble, it may be worth another look.

-- 
Peter Fales			  Lucent Technologies, Room 5B-408
N9IYJ            		  2000 N Naperville Rd PO Box 3033
internet: psfales@lucent.com	  Naperville, IL 60566-7033
			 	  work:	(630) 979-8031

On Thu, Nov 08, 2001 at 06:48:03AM -0500, Corinna Vinschen wrote:
> I've updated the version of OpenSSH in cygwin/latest to 3.0p1-1.
> 
> ===================================================================
> The official release note from the OpenSSH maintainers:
> 
> OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0
> implementation and includes sftp client and server support.
> 
> This release contains many portability bug-fixes (listed in the
> ChangeLog) as well as several new features (listed below).
> 
> We would like to thank the OpenSSH community for their continued
> support and encouragement.
> 
> Important Changes:
> ==================
> 
> 1) SSH protocol v2 is now the default protocol version
> 
>         use the 'Protocol' option from ssh(1) and sshd(8) if
>         you need to change this.
> 
> 2) The files
>         /etc/ssh_known_hosts2
>         ~/.ssh/known_hosts2
>         ~/.ssh/authorized_keys2
>    are now obsolete, you can use
>         /etc/ssh_known_hosts
>         ~/.ssh/known_hosts
>         ~/.ssh/authorized_keys
>    For backward compatibility ~/.ssh/authorized_keys2 will still used for
>    authentication and hostkeys are still read from the known_hosts2.
>    However, those deprecated files are considered 'readonly'.  Future
>    releases are likely not to read these files.
> 
> 3) The CheckMail option in sshd_config is deprecated, as sshd(8) no longer
>    checks for new mail.
> 
> 4) X11 cookies are now stored in $HOME.
> 
> New Features:
> =============
> 
> 1) Smartcard support in the ssh client and agent based on work by
>    University of Michigan CITI (http://www.citi.umich.edu/projects/smartcard/).
> 
> 2) support for Rekeying in protocol version 2
> 
> 3) improved Kerberos support in protocol v1 (KerbIV and KerbV)
> 
> 4) backward compatibility with older commercial SSH versions >= 2.0.10
> 
> 5) getopt(3) is now used by all programs
> 
> 6) dynamic forwarding (use ssh(1) as your socks server)
> 
> 7) ClearAllForwardings in ssh(1)
> 
> 8) ssh(1) now checks the hostkey for localhost (NoHostAuthenticationForLocalhost
> +yes/no).
> 
> 9) -F option in ssh(1)
> 
> 10) ssh(1) now has a '-b bindaddress' option
> 
> 11) scp(1) allows "scp /file localhost:/file"
> 
> 12) The AuthorizedKeysFile option allows specification of alternative
>     files that contain the public keys that can be used for user authentication
>     (e.g. /etc/ssh_keys/%u, see sshd(8))
> 
> 13) extended AllowUsers user@host syntax in sshd(8)
> 
> 14) improved challenge-response support (especially for systems supporting
> +BSD_AUTH)
> 
> 15) sshd(8) can specify time args as 1h, 2h30s etc.
> 
> 16) sshd(8) transmits the correct exit status for remote execution with protocol
> +version 2.
> 
> 17) ssh-keygen(1) can import private RSA/DSA keys generated with the commercial
> +version
> 
> 18) ssh-keyscan(1) supports protocol version 2
> 
> OpenSSH is brought to you by Markus Friedl, Niels Provos, Theo de Raadt,
> Kevin Steves, Damien Miller and Ben Lindstrom.
> 
> ===================================================================
> Notes for people building their own version of OpenSSH:
> 
> 1) When creating your own configure file, please note that OpenSSH
>    requires an autoconf version >= 2.50 now.
> 
> 2) When installing, you'll need the `uudecode' tool which is
>    part of the `sharutils' package.  That package is currently
>    not part of the Cygwin net distro but will be as soon as
>    the "next generation" setup tool has been released.
> 
>    For the interim I have uploaded sharutils-4.2.1 binary and source
>    tar.bz2 archives to ftp://ftp.franken.de/pub/win32/develop/gnuwin32/cygwin/porters/Vinschen_Corinna/1.3.3/
> ===================================================================
> 
> To update your installation, click on the "Install Cygwin now" link on
> the http://sources.redhat.com/cygwin web page.  This downloads setup.exe
> to your system.  The, run setup and answer all of the questions.
> 
> Note that we do not allow downloads from sources.redhat.com (aka
> cygwin.com) due to bandwidth limitations.  This means that you will need
> to find a mirror which has this update.
> 
> In the US, ftp://mirrors.rcn.net/mirrors/sources.redhat.com/cygwin/ is a
> reliable high bandwidth connection.
> 
> In Germany,
> ftp://ftp.uni-erlangen.de/pub/pc/gnuwin32/cygwin/mirrors/cygnus/ is
> usually pretty good.
> 
> In the UK,
> http://programming.ccp14.ac.uk/ftp-mirror/programming/cygwin/pub/cygwin/
> is usually up-to-date within 48 hours.
> 
> If one of the above doesn't have the latest version of this package then
> you can either wait for the site to be updated or find another mirror.
> 
> If you have questions or comments, please send them to the Cygwin
> mailing list at:  cygwin@sources.redhat.com .  I would appreciate
> if you would use this mailing list rather than emailing me directly.
> This includes ideas and comments about the setup utility or Cygwin
> in general.
> 
> If you want to make a point or ask a question the Cygwin mailing list is
> the appropriate place.
> 
>               *** CYGWIN-ANNOUNCE UNSUBSCRIBE INFO ***
> 
> If you want to unsubscribe to the cygwin-announce mailing list, look
> at the "List-Unsubscribe: " tag in the email header of this message.
> Send email to the address specified there.  It will be in the format:
> 
> cygwin-announce-unsubscribe-you=yourdomain.com@cygwin.com
> 
> -- 
> Corinna Vinschen                  Please, send mails regarding Cygwin to
> Cygwin Developer                                mailto:cygwin@cygwin.com
> Red Hat, Inc.
> 
> 
> --
> Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
> Bug reporting:         http://cygwin.com/bugs.html
> Documentation:         http://cygwin.com/docs.html
> FAQ:                   http://cygwin.com/faq/

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]