openssh 4.6p1
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 53
Portable OpenSSH 4.6p1
OpenSSH is a FREE version of the SSH protocol suite. more>>
Portable OpenSSH is a Unix/Linux port of OpenBSDs excellent OpenSSH, a full implementation of the SSH1 and SSH2 protocols. Portable OpenSSH includes sftp client and server support.
OpenSSH is a FREE version of the SSH protocol suite of network connectivity tools that increasing numbers of people on the Internet are coming to rely on. Many users of telnet, rlogin, ftp, and other such programs might not realize that their password is transmitted across the Internet unencrypted, but it is.
OpenSSH encrypts all traffic (including passwords) to effectively eliminate eavesdropping, connection hijacking, and other network-level attacks. Additionally, OpenSSH provides a myriad of secure tunneling capabilities, as well as a variety of authentication methods.
The OpenSSH suite includes the ssh program which replaces rlogin and telnet, scp which replaces rcp, and sftp which replaces ftp. Also included is sshd which is the server side of the package, and the other basic utilities like ssh-add, ssh-agent, ssh-keysign, ssh-keyscan, ssh-keygen and sftp-server. OpenSSH supports SSH protocol versions 1.3, 1.5, and 2.0.
Main features:
- Open Source Project
- Free Licensing
- Strong Encryption (3DES, Blowfish, AES, Arcfour)
- X11 Forwarding (encrypt X Window System traffic)
- Port Forwarding (encrypted channels for legacy protocols)
- Strong Authentication (Public Key, One-Time Password and Kerberos Authentication)
- Agent Forwarding (Single-Sign-On)
- Interoperability (Compliance with SSH 1.3, 1.5, and 2.0 protocol Standards)
- SFTP client and server support in both SSH1 and SSH2 protocols.
- Kerberos and AFS Ticket Passing
- Data Compression
<<lessOpenSSH is a FREE version of the SSH protocol suite of network connectivity tools that increasing numbers of people on the Internet are coming to rely on. Many users of telnet, rlogin, ftp, and other such programs might not realize that their password is transmitted across the Internet unencrypted, but it is.
OpenSSH encrypts all traffic (including passwords) to effectively eliminate eavesdropping, connection hijacking, and other network-level attacks. Additionally, OpenSSH provides a myriad of secure tunneling capabilities, as well as a variety of authentication methods.
The OpenSSH suite includes the ssh program which replaces rlogin and telnet, scp which replaces rcp, and sftp which replaces ftp. Also included is sshd which is the server side of the package, and the other basic utilities like ssh-add, ssh-agent, ssh-keysign, ssh-keyscan, ssh-keygen and sftp-server. OpenSSH supports SSH protocol versions 1.3, 1.5, and 2.0.
Main features:
- Open Source Project
- Free Licensing
- Strong Encryption (3DES, Blowfish, AES, Arcfour)
- X11 Forwarding (encrypt X Window System traffic)
- Port Forwarding (encrypted channels for legacy protocols)
- Strong Authentication (Public Key, One-Time Password and Kerberos Authentication)
- Agent Forwarding (Single-Sign-On)
- Interoperability (Compliance with SSH 1.3, 1.5, and 2.0 protocol Standards)
- SFTP client and server support in both SSH1 and SSH2 protocols.
- Kerberos and AFS Ticket Passing
- Data Compression
Download (0.89MB)
Added: 2007-03-10 License: GPL (GNU General Public License) Price:
611 downloads
Quest OpenSSH 4.6p1_q1
Quest OpenSSH provides password-less, secure, encrypted remote login and file transfer services for VAS. more>>
Quest OpenSSH provides password-less, secure, encrypted remote login and file transfer services for Vintela Authentication Services (VAS). It is a derivative of OpenSSH, an open-source implementation of the SSH protocol.
Quest OpenSSH provides:
- default single sign on for Quest customers using VAS or VMX. Users are automatically and securely authenticated against Microsoft Active Directory using GSSAPI.
- compatibility with other SSH tools, including Quest PuTTY.
- integrated enhancements including high performance network support and TCPwrap access controls.
The software packages include both the client, ssh, and the server, sshd. Packages are subject to open source licence conditions.
Enhancements:
- This releases new features are the Match directive and inclusion of the HPN patches (High Performance Networking).
- Minor bugs fixed include NIS+ compatibility and improved service script reliability.
<<lessQuest OpenSSH provides:
- default single sign on for Quest customers using VAS or VMX. Users are automatically and securely authenticated against Microsoft Active Directory using GSSAPI.
- compatibility with other SSH tools, including Quest PuTTY.
- integrated enhancements including high performance network support and TCPwrap access controls.
The software packages include both the client, ssh, and the server, sshd. Packages are subject to open source licence conditions.
Enhancements:
- This releases new features are the Match directive and inclusion of the HPN patches (High Performance Networking).
- Minor bugs fixed include NIS+ compatibility and improved service script reliability.
Download (3.0MB)
Added: 2007-08-07 License: BSD License Price:
497 downloads
OpenSSH 5.1
OpenSSH is a FREE version of the SSH connectivity tools more>> OpenSSH is a FREE version of the SSH connectivity tools that technical users of the Internet rely on. Users of telnet, rlogin, and ftp may not realize that their password is transmitted across the Internet unencrypted, but it is. OpenSSH encrypts all traffic (including passwords) to effectively eliminate eavesdropping, connection hijacking, and other attacks. Additionally, OpenSSH provides secure tunneling capabilities and several authentication methods, and supports all SSH protocol versions.
The OpenSSH suite replaces rlogin and telnet with the ssh program, rcp with scp, and ftp with sftp. Also included is sshd (the server side of the package), and the other utilities like ssh-add, ssh-agent, ssh-keysign, ssh-keyscan, ssh-keygen and sftp-server.
features:
Open Source Project
Free Licensing
Strong Encryption (3DES, Blowfish, AES, Arcfour)
X11 Forwarding (encrypt X Window System traffic)
Port Forwarding (encrypted channels for legacy protocols)
Strong Authentication (Public Key, One-Time Password and Kerberos Authentication)
Agent Forwarding (Single-Sign-On)
Interoperability (Compliance with SSH 1.3, 1.5, and 2.0 protocol Standards)
SFTP client and server support in both SSH1 and SSH2 protocols.
Kerberos and AFS Ticket Passing
Data Compression
OpenSSH is developed by the OpenBSD Project. The software is developed in countries that permit cryptography export and is freely useable and re-useable by everyone under a BSD license. However, development has costs, so if you find OpenSSH useful (particularly if you use it in a commercial system that is distributed) please consider donating to help fund the project.
OpenSSH is developed by two teams. One team does strictly OpenBSD-based development, aiming to produce code that is as clean, simple, and secure as possible. We believe that simplicity without the portability "goop" allows for better code quality control and easier review. The other team then takes the clean version and mak<<less
Download (428KB)
Added: 2009-04-29 License: Freeware Price: Free
279 downloads
Other version of OpenSSH
OpenSSH is a FREE version of the SSH protocol suite of network connectivity tools. OpenSSH encrypts all traffic (including passwords) to effectively eliminate eavesdroppingLicense:BSD License
Vintela OpenSSH 4.3p2q1
Vintela OpenSSH is a version of OpenSSH modified and packaged to provide default single sign-on capability for Vintela customers more>>
Vintela OpenSSH project is a version of OpenSSH modified and packaged to provide default single sign-on capability for Vintela customers using the Vintela Authentication Service (VAS) and/ or Vintela Management eXtensions (VMX) products.
Vintelas version of OpenSSH defaults to authenticating users via the GSSAPI-with-MIC mechanism, and authenticating hosts with GSS-KEX. It works in conjunction with VAS, to allow secure shell single sign-on to Unix hosts that have been joined to Active Directory domains.
Enhancements:
- This release is primarily a bugfix release and brings the source in line with the upstream OpenSSH 4.3p2.
- It fixed problems with the user credential cache being lost when pam_vas, keyboard-interactive, and privsep were used, and public key authentication failures on Solaris.
- Improvements include faster login on systems with many VAS-enabled groups and GSSAPI auth being tried before public-key.
<<lessVintelas version of OpenSSH defaults to authenticating users via the GSSAPI-with-MIC mechanism, and authenticating hosts with GSS-KEX. It works in conjunction with VAS, to allow secure shell single sign-on to Unix hosts that have been joined to Active Directory domains.
Enhancements:
- This release is primarily a bugfix release and brings the source in line with the upstream OpenSSH 4.3p2.
- It fixed problems with the user credential cache being lost when pam_vas, keyboard-interactive, and privsep were used, and public key authentication failures on Solaris.
- Improvements include faster login on systems with many VAS-enabled groups and GSSAPI auth being tried before public-key.
Download (2.6MB)
Added: 2006-04-20 License: GPL (GNU General Public License) Price:
1282 downloads
Dropbear SSH 0.50
Dropbear is a relatively small SSH 2 server and client. more>>
Dropbear is a relatively small SSH 2 server and client. Dropbear SSH runs on a variety of POSIX-based platforms.
Dropbear is open source software, distributed under a MIT-style license. Dropbear is particularly useful for "embedded"-type Linux (or other Unix) systems, such as wireless routers.
Main features:
- A small memory footprint suitable for memory-constrained environments - Dropbear can compile to a 110kB statically linked binary with uClibc on x86 (only minimal options selected)
- Dropbear server implements X11 forwarding, and authentication-agent forwarding for OpenSSH clients
- Can run from inetd or standalone
- Compatible with OpenSSH ~/.ssh/authorized_keys public key authentication
- The daemon, keygen, key converter, and client can be compiled into a single binary (ala busybox)
- Features can easily be disabled when compiling to save space
- TCP forwarding support
<<lessDropbear is open source software, distributed under a MIT-style license. Dropbear is particularly useful for "embedded"-type Linux (or other Unix) systems, such as wireless routers.
Main features:
- A small memory footprint suitable for memory-constrained environments - Dropbear can compile to a 110kB statically linked binary with uClibc on x86 (only minimal options selected)
- Dropbear server implements X11 forwarding, and authentication-agent forwarding for OpenSSH clients
- Can run from inetd or standalone
- Compatible with OpenSSH ~/.ssh/authorized_keys public key authentication
- The daemon, keygen, key converter, and client can be compiled into a single binary (ala busybox)
- Features can easily be disabled when compiling to save space
- TCP forwarding support
Download (0.20MB)
Added: 2007-08-09 License: MIT/X Consortium License Price:
812 downloads
OpenSSH SecurID patch 1.3.2
OpenSSH SecurID is a patch that integrates SecurID authentication services directly into the OpenSSH daemon. more>>
OpenSSH SecurID is a patch that integrates SecurID authentication services directly into the OpenSSH daemon. It allows users to use SecurID tokens directly as their passwords instead of relying on the clunky sdshell.
This is how it works:
0) apply patch ;-) You must use GNU patch (get it from ftp.gnu.org, it free.)
1) copy ACE headers (in SecurID inc directory) into either a standard include place (like /usr/local/include) or into the openssh source tree or add the --with-cflags=-I/path/to/ace/inc (where the include files are located)
2) copy the libaceclnt.a (for ACE 5.X) or sdiclient.a (for ACE<<less
This is how it works:
0) apply patch ;-) You must use GNU patch (get it from ftp.gnu.org, it free.)
1) copy ACE headers (in SecurID inc directory) into either a standard include place (like /usr/local/include) or into the openssh source tree or add the --with-cflags=-I/path/to/ace/inc (where the include files are located)
2) copy the libaceclnt.a (for ACE 5.X) or sdiclient.a (for ACE<<less
Download (0.047MB)
Added: 2006-07-13 License: BSD License Price:
702 downloads
OpenSSH Heartbeat/Watchdog Patch 4.4p1
OpenSSH Heartbeat/Watchdog Patch adds a heartbeat (keepalive) function to ssh(1). more>>
OpenSSH Heartbeat/Watchdog Patch adds a heartbeat (keepalive) function to ssh(1). If the output channel has been silent for more than a specified time, a null message (SSH_MSG_IGNORE) is sent to the server as a heartbeat.
The heartbeat is useful for keeping connections over IP masquerade/NAT boxes, firewalls, etc. This patch also adds a watchdog timeout function to sshd(8). The combination of the heartbeat and the watchdog timeout is very useful for detecting a link which is down over unreliable connections such as a wireless network.
Enhancements:
- This version was adapted to OpenSSH 4.4p1.
- The documentation patch has been incorporated.
<<lessThe heartbeat is useful for keeping connections over IP masquerade/NAT boxes, firewalls, etc. This patch also adds a watchdog timeout function to sshd(8). The combination of the heartbeat and the watchdog timeout is very useful for detecting a link which is down over unreliable connections such as a wireless network.
Enhancements:
- This version was adapted to OpenSSH 4.4p1.
- The documentation patch has been incorporated.
Download (0.008MB)
Added: 2006-10-04 License: BSD License Price:
1117 downloads
libssh2 0.16
libssh2 is a library implementing the SSH2 protocol. more>>
libssh2 library implements the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS, SECSH-USERAUTH, SECSH-CONNECTION, SECSH-ARCH, SECSH-FILEXFER, SECSH-DHGEX, SECSH-NUMBERS, and SECSH-PUBLICKEY.
Main features:
- Key Exchange Methods: diffie-hellman-group1-sha1, diffie-hellman-group14-sha1, diffie-hellman-group-exchange-sha1**
- Hostkey Types: ssh-rsa, ssh-dss
- Ciphers: aes256-cbc (rijndael-cbc@lysator.liu.se), aes192-cbc, aes128-cbc, 3des-cbc, blowfish-cbc, cast128-cbc, arcfour, none**
- Compression Schemes: zlib, none
- MAC hashes: hmac-sha1, hmac-sha1-96, hmac-md5, hmac-md5-96, hmac-ripemd160 (hmac-ripemd160@openssh.com), none**
- ** - Affected by build time ./configure options. See INSTALL file for more information.
- Authentication: none, password, public-key, hostbased, keyboard-interactive
- Channels: shell, exec (incl. SCP wrapper), direct-tcpip, subsystem
- Global Requests: tcpip-forward
- Channel Requests: x11, pty
- Subsystems: sftp(version 3), publickey(version 2)
Enhancements:
- A bunch of bugs were fixed, new public defines for version/major/minor/patch numbers were introduced, and the old APINO define was removed.
<<lessMain features:
- Key Exchange Methods: diffie-hellman-group1-sha1, diffie-hellman-group14-sha1, diffie-hellman-group-exchange-sha1**
- Hostkey Types: ssh-rsa, ssh-dss
- Ciphers: aes256-cbc (rijndael-cbc@lysator.liu.se), aes192-cbc, aes128-cbc, 3des-cbc, blowfish-cbc, cast128-cbc, arcfour, none**
- Compression Schemes: zlib, none
- MAC hashes: hmac-sha1, hmac-sha1-96, hmac-md5, hmac-md5-96, hmac-ripemd160 (hmac-ripemd160@openssh.com), none**
- ** - Affected by build time ./configure options. See INSTALL file for more information.
- Authentication: none, password, public-key, hostbased, keyboard-interactive
- Channels: shell, exec (incl. SCP wrapper), direct-tcpip, subsystem
- Global Requests: tcpip-forward
- Channel Requests: x11, pty
- Subsystems: sftp(version 3), publickey(version 2)
Enhancements:
- A bunch of bugs were fixed, new public defines for version/major/minor/patch numbers were introduced, and the old APINO define was removed.
Download (0.32MB)
Added: 2007-08-07 License: LGPL (GNU Lesser General Public License) Price:
881 downloads
KSSH 0.7
KSSH is a ssh/openssh frontend for KDE. more>>
KSSH is a KDE front-end to ssh.
It can work as a standard KDE application that launches ssh connections in a terminal or as a konsole session.
This means that you can press in any konsole "New Session" and then select "Secure Shell".
<<lessIt can work as a standard KDE application that launches ssh connections in a terminal or as a konsole session.
This means that you can press in any konsole "New Session" and then select "Secure Shell".
Download (0.063MB)
Added: 2005-06-02 License: GPL (GNU General Public License) Price:
1607 downloads
pam_usb 0.4.1
pam_usb is a PAM module that enables either two-factor or password-less authentication using an USB storage device. more>>
pam_usb is a PAM modules that enables either two-factor or password-less authentication using an USB storage device (such as an USB Flash Memory Token).
It can work with any PAM enabled program, such as login, su, gdm/kdm/xdm, xlock...
This is done with a pair of DSA keys, the private one is stored on the device and the public one on the computer.
Whenever a user tries to authenticate, pam_usb will try to find the usb device and will load the private key.
Then it will compute a private/public key signing challenge using the public key contained in the users home directory.
Then, if configured in two-factor mode (additional mode, in the documentation), a password is asked to the user in order to finish the authentication. Otherwise, if configured in password-less mode (alternative / unique in the documentation) it will log in the user without asking any password.
It can also work using any kind of mountable devices such as floppy disks or cd-roms. To improve security, it supports private key encryption and serial number access list.
Sorry for the poor informations provided here but the website is being redesigned.
Enhancements:
- A security issue related to OpenSSH authentication has been fixed.
- The quiet option has been fixed (now it is really quiet).
- Support has been added for devices without vendor/model information.
<<lessIt can work with any PAM enabled program, such as login, su, gdm/kdm/xdm, xlock...
This is done with a pair of DSA keys, the private one is stored on the device and the public one on the computer.
Whenever a user tries to authenticate, pam_usb will try to find the usb device and will load the private key.
Then it will compute a private/public key signing challenge using the public key contained in the users home directory.
Then, if configured in two-factor mode (additional mode, in the documentation), a password is asked to the user in order to finish the authentication. Otherwise, if configured in password-less mode (alternative / unique in the documentation) it will log in the user without asking any password.
It can also work using any kind of mountable devices such as floppy disks or cd-roms. To improve security, it supports private key encryption and serial number access list.
Sorry for the poor informations provided here but the website is being redesigned.
Enhancements:
- A security issue related to OpenSSH authentication has been fixed.
- The quiet option has been fixed (now it is really quiet).
- Support has been added for devices without vendor/model information.
Download (0.027MB)
Added: 2007-05-30 License: GPL (GNU General Public License) Price:
879 downloads
rssh 2.3.0
rssh is a small shell that provides the ability for system administrators to give specific users access to a given system. more>>
rssh is a restricted shell for use with OpenSSH, allowing only scp and/or sftp. rssh project now also includes support for rdist, rsync, and cvs.
For example, if you have a server which you only want to allow users to copy files off of via scp, without providing shell access, you can use rssh to do that.
hough rssh is written to work with OpenSSH, it will probably work with other implementations of SSH. Also, rssh is written and tested on Linux systems, but should compile cleanly and work on any POSIX.2-compliant system. It is verified to work on the following platforms:
A wide variety of Linux distributions, on IA32 and IA64 hardware
Compaq Tru64 Unix
Solaris 2.x - 8 (under certain conditions -- see the security link)
AIX 5.1
HP/UX 11.00 (PA-RISC)
HP/UX 11.22 (IA64)
Irix 6.5
Currently, it does not work on (at least most of) the *BSDs, nor on OS X. They lack the wordexp() function, which rssh uses for command line argument expansion. Until they have such a function (which is defined by POSIX.2), or until I get bored enough to write a replacement, rssh will not work with the BSDs out of the box.
Update, 7 Jun 2003: Jacques A. Vidrine reports that FreeBSD 5.0 now has the wordexp() function, and rssh compiles cleanly on it, though he has not tested it. I still do not have any confirmation that it will work on FreeBSD 5, but it seems like a safe bet. I have received reports that other operating environments are also adding support for wordexp(), and rssh should work on all of those platforms, too.
If youre on a BSD system without the wordexp() function, you could work around this by obtaining a copy of the wordexp() functions code from, say, glibc2, and creating your own wordexp.h header. Compile wordexp.c manually, and link it against the other .o files. I have no intention of doing any work to facilitate that, though, so youre on your own.
If you have success using rssh with some other implementation of SSH, or using it on other platforms, feel free to send e-mail to the rssh mailing list to let me know. If you have problems compiling or installing rssh on your favorite platform, please send me the complete configure output, and any compilation errors generated.
Enhancements:
- This release fixes a design flaw in rssh_chroot_helper that allowed local users with full shell access to gain root privileges.
<<lessFor example, if you have a server which you only want to allow users to copy files off of via scp, without providing shell access, you can use rssh to do that.
hough rssh is written to work with OpenSSH, it will probably work with other implementations of SSH. Also, rssh is written and tested on Linux systems, but should compile cleanly and work on any POSIX.2-compliant system. It is verified to work on the following platforms:
A wide variety of Linux distributions, on IA32 and IA64 hardware
Compaq Tru64 Unix
Solaris 2.x - 8 (under certain conditions -- see the security link)
AIX 5.1
HP/UX 11.00 (PA-RISC)
HP/UX 11.22 (IA64)
Irix 6.5
Currently, it does not work on (at least most of) the *BSDs, nor on OS X. They lack the wordexp() function, which rssh uses for command line argument expansion. Until they have such a function (which is defined by POSIX.2), or until I get bored enough to write a replacement, rssh will not work with the BSDs out of the box.
Update, 7 Jun 2003: Jacques A. Vidrine reports that FreeBSD 5.0 now has the wordexp() function, and rssh compiles cleanly on it, though he has not tested it. I still do not have any confirmation that it will work on FreeBSD 5, but it seems like a safe bet. I have received reports that other operating environments are also adding support for wordexp(), and rssh should work on all of those platforms, too.
If youre on a BSD system without the wordexp() function, you could work around this by obtaining a copy of the wordexp() functions code from, say, glibc2, and creating your own wordexp.h header. Compile wordexp.c manually, and link it against the other .o files. I have no intention of doing any work to facilitate that, though, so youre on your own.
If you have success using rssh with some other implementation of SSH, or using it on other platforms, feel free to send e-mail to the rssh mailing list to let me know. If you have problems compiling or installing rssh on your favorite platform, please send me the complete configure output, and any compilation errors generated.
Enhancements:
- This release fixes a design flaw in rssh_chroot_helper that allowed local users with full shell access to gain root privileges.
Download (0.052MB)
Added: 2005-12-20 License: BSD License Price:
1403 downloads
JSch 0.1.33
JSch is a pure Java implementation of SSH2. more>>
JSch is a pure Java implementation of SSH2.
JSch project allows the user to connect to an sshd server and use port forwarding, X11 forwarding, file transfer, etc., and you can integrate its functionality into your own Java programs. JSch is licensed under BSD style license.
Our intension in developing this stuff is to enable users of our pure java X servers, WiredX and WeirdX, to enjoy secure X sessions. Our efforts have mostly targeted the SSH2 protocol in relation to X window system and X11 forwarding. Of course, we are also interested in adding other functionality - port forward, file transfer, terminal emulation, etc.
Needless to say, SSH provides support for secure remote login, secure file transfer, and secure TCP/IP and X11 forwarding. It can automatically encrypt, authenticate, and compress transmitted data.
The SSH protocol is available in two incompatible varieties: SSH1 and SSH2. SSH2 was invented to avoid the patent issues regarding RSA (RSA patent has expired), and to fix some data integrity problem that SSH1 has, and for a number of other technical reasons.
SSH2 protocol has been standardized on IETF Secure Shell working group and drafts related to SSH2 protocol are available on the web. In developing JSch, we are now referring to following documents:
SSH Protocol Architecture
SSH Transport Layer Protocol
Diffie-Hellman Group Exchange for the SSH Transport Layer Protocol
SSH Connection Protocol
SSH Authentication Protocol
Main features:
- JSch is in pure Java, but it depends on JavaTM Cryptography Extension (JCE). JSch is know to work with:
- J2SE 1.4.0 or later (no additional libraries required).
- J2SE 1.3 and Suns JCE reference implementation that can be obtained at http://java.sun.com/products/jce/.
- J2SE 1.2.2 and later and Bouncycastles JCE implementation that can be obtained at http://www.bouncycastle.org/.
- SSH2 protocol support.
- Key exchange: diffie-hellman-group-exchange-sha1, diffie-hellman-group1-sha1
- Cipher: blowfish-cbc, 3des-cbc, aes128-cbc,aes192-cbc,aes256-cbcnew!
- MAC: hmac-md5, hmac-sha1, hmac-md5-96, hmac-sha1-96
- Host key type: ssh-dss,ssh-rsa
- Userauth: password
- Userauth: publickey(DSA,RSA)
- Userauth: keyboard-interactive
- X11 forwarding
- xauth spoofing
- connection through HTTP proxy.
- connection through SOCKS5 proxy.
- port forwarding.
- stream forwarding.
- signal sending. The unofficial patch for sshd of openssh will be found in this thread.
- remote exec.
- generating DSA and RSA key pairs.
- changing the passphrase for a private key.
- partial authentication
- SSH File Transfer Protocol(version 0, 1, 2, 3)
- packet compression. JZlib has been used.
- JSch is licensed under BSD style license.
Enhancements:
- bugfix: freeze in diffie-hellman-group-exchange-sha1. FIXED. By the default, diffie-hellman-group1-sha1 will be used and if you have not chosen diffie-hellman-group-exchange-sha1 explicitly, you dont have to worry about it.
- bugfix: there should be timeout mechanism in opening a socket for remote port forwarding. FIXED. At the failure or timeout, SSH_MSG_CHANNEL_OPEN_FAILURE will be sent to sshd.
- bugfix: there should be timeout mechanism in opening a socket for X11 forwarding. FIXED. At the failure or timeout, SSH_MSG_CHANNEL_OPEN_FAILURE will be sent to sshd.
<<lessJSch project allows the user to connect to an sshd server and use port forwarding, X11 forwarding, file transfer, etc., and you can integrate its functionality into your own Java programs. JSch is licensed under BSD style license.
Our intension in developing this stuff is to enable users of our pure java X servers, WiredX and WeirdX, to enjoy secure X sessions. Our efforts have mostly targeted the SSH2 protocol in relation to X window system and X11 forwarding. Of course, we are also interested in adding other functionality - port forward, file transfer, terminal emulation, etc.
Needless to say, SSH provides support for secure remote login, secure file transfer, and secure TCP/IP and X11 forwarding. It can automatically encrypt, authenticate, and compress transmitted data.
The SSH protocol is available in two incompatible varieties: SSH1 and SSH2. SSH2 was invented to avoid the patent issues regarding RSA (RSA patent has expired), and to fix some data integrity problem that SSH1 has, and for a number of other technical reasons.
SSH2 protocol has been standardized on IETF Secure Shell working group and drafts related to SSH2 protocol are available on the web. In developing JSch, we are now referring to following documents:
SSH Protocol Architecture
SSH Transport Layer Protocol
Diffie-Hellman Group Exchange for the SSH Transport Layer Protocol
SSH Connection Protocol
SSH Authentication Protocol
Main features:
- JSch is in pure Java, but it depends on JavaTM Cryptography Extension (JCE). JSch is know to work with:
- J2SE 1.4.0 or later (no additional libraries required).
- J2SE 1.3 and Suns JCE reference implementation that can be obtained at http://java.sun.com/products/jce/.
- J2SE 1.2.2 and later and Bouncycastles JCE implementation that can be obtained at http://www.bouncycastle.org/.
- SSH2 protocol support.
- Key exchange: diffie-hellman-group-exchange-sha1, diffie-hellman-group1-sha1
- Cipher: blowfish-cbc, 3des-cbc, aes128-cbc,aes192-cbc,aes256-cbcnew!
- MAC: hmac-md5, hmac-sha1, hmac-md5-96, hmac-sha1-96
- Host key type: ssh-dss,ssh-rsa
- Userauth: password
- Userauth: publickey(DSA,RSA)
- Userauth: keyboard-interactive
- X11 forwarding
- xauth spoofing
- connection through HTTP proxy.
- connection through SOCKS5 proxy.
- port forwarding.
- stream forwarding.
- signal sending. The unofficial patch for sshd of openssh will be found in this thread.
- remote exec.
- generating DSA and RSA key pairs.
- changing the passphrase for a private key.
- partial authentication
- SSH File Transfer Protocol(version 0, 1, 2, 3)
- packet compression. JZlib has been used.
- JSch is licensed under BSD style license.
Enhancements:
- bugfix: freeze in diffie-hellman-group-exchange-sha1. FIXED. By the default, diffie-hellman-group1-sha1 will be used and if you have not chosen diffie-hellman-group-exchange-sha1 explicitly, you dont have to worry about it.
- bugfix: there should be timeout mechanism in opening a socket for remote port forwarding. FIXED. At the failure or timeout, SSH_MSG_CHANNEL_OPEN_FAILURE will be sent to sshd.
- bugfix: there should be timeout mechanism in opening a socket for X11 forwarding. FIXED. At the failure or timeout, SSH_MSG_CHANNEL_OPEN_FAILURE will be sent to sshd.
Download (0.20MB)
Added: 2007-05-11 License: BSD License Price:
899 downloads
Keychain 2.5.4.1
The keychain script makes handling RSA and DSA keys both convenient and secure. more>>
The keychain script makes handling RSA and DSA keys both convenient and secure.
Many of us use the excellent OpenSSH as a secure, encrypted replacement for the venerable telnet and rsh commands. One of OpenSSHs (and the commercial SSH2s) intriguing features is its ability to authenticate users using the RSA and DSA authentication protocols, which are based upon a pair of complementary numerical "keys". And one of the main appeals of RSA and DSA authentication is the promise of being able to establish connections to remote systems without supplying a password.
The keychain script makes handling RSA and DSA keys both convenient and secure. It acts as a front-end to ssh-agent, allowing you to easily have one long-running ssh-agent process per system, rather than per login session. This dramatically reduces the number of times you need to enter your passphrase from once per new login session to once every time your local machine is rebooted.
Keychain was first introduced in a series of IBM developerWorks articles. The first article introduces the concepts behind RSA/DSA key authentication and shows you how to set up primitive (with passphrase) RSA/DSA authentication. The second article shows you how to use keychain to set up secure, passwordless ssh access in an extremely convenient way. keychain also provides a clean, secure way for cron jobs to take advantage of RSA/DSA keys without having to use insecure unencrypted private keys. The third article shows you how to use ssh-agent for authentication forwarding mechanism.
Current versions of keychain are known to run on Linux, BSD, Cygwin, Tru64 UNIX, HP-UX, Mac OS X, and Solaris using whatever variant of Bourne shell you have available.
Enhancements:
- Keychain 2.5.4.1 fixes a minor bug introduced in 2.5.4 that resulted in always
- exiting with non-zero status.
<<lessMany of us use the excellent OpenSSH as a secure, encrypted replacement for the venerable telnet and rsh commands. One of OpenSSHs (and the commercial SSH2s) intriguing features is its ability to authenticate users using the RSA and DSA authentication protocols, which are based upon a pair of complementary numerical "keys". And one of the main appeals of RSA and DSA authentication is the promise of being able to establish connections to remote systems without supplying a password.
The keychain script makes handling RSA and DSA keys both convenient and secure. It acts as a front-end to ssh-agent, allowing you to easily have one long-running ssh-agent process per system, rather than per login session. This dramatically reduces the number of times you need to enter your passphrase from once per new login session to once every time your local machine is rebooted.
Keychain was first introduced in a series of IBM developerWorks articles. The first article introduces the concepts behind RSA/DSA key authentication and shows you how to set up primitive (with passphrase) RSA/DSA authentication. The second article shows you how to use keychain to set up secure, passwordless ssh access in an extremely convenient way. keychain also provides a clean, secure way for cron jobs to take advantage of RSA/DSA keys without having to use insecure unencrypted private keys. The third article shows you how to use ssh-agent for authentication forwarding mechanism.
Current versions of keychain are known to run on Linux, BSD, Cygwin, Tru64 UNIX, HP-UX, Mac OS X, and Solaris using whatever variant of Bourne shell you have available.
Enhancements:
- Keychain 2.5.4.1 fixes a minor bug introduced in 2.5.4 that resulted in always
- exiting with non-zero status.
Download (0.033MB)
Added: 2006-07-14 License: GPL (GNU General Public License) Price:
1199 downloads
OpenSSH LDAP Public Key patch 0.3.9
The OpenSSH LDAP Public Key patch provides an easy way of centralizing strong user authentication. more>>
OpenSSH LDAP Public Key patch provides an easy way of centralizing strong user authentication by using an LDAP server for retrieving public keys instead of ~/.ssh/authorized_keys.
It uses the standard core.schema/nis.schema and strongAuthenticationUser object class, which can simplify login centralization but could introduce serious security flaws if the LDAP server is not correctly configured.
Enhancements:
- A memory leak has been fixed.
- A potential LDAP filter injection if a username has strange characters in it [()*] has been fixed.
<<lessIt uses the standard core.schema/nis.schema and strongAuthenticationUser object class, which can simplify login centralization but could introduce serious security flaws if the LDAP server is not correctly configured.
Enhancements:
- A memory leak has been fixed.
- A potential LDAP filter injection if a username has strange characters in it [()*] has been fixed.
Download (0.059MB)
Added: 2007-08-04 License: BSD License Price:
815 downloads
xen-tools 3.7
xen-tools is a collection of scripts which allow you to manipulate virtual images for the Xen virtualization software. more>>
xen-tools project is a collection of scripts which allow you to manipulate virtual images for the Xen virtualization software.
With the tools installed, you may create new instances of Debian, complete with networking, OpenSSH, and user accounts, with one simple command. Images may also be easily updated, listed, or deleted.
Main features:
- Create new Xen instances of Debian Sarge, in minutes. (xen-create-image)
- Duplicate an existing image, whilst updating the networking information. (xen-duplicate-image)
- List all existing images with their networking details (xen-list-images)
- Delete previously created instances. (xen-delete-image)
- Update the images youve created with apt-get, without booting them. (xen-update-image)
Creating A New Image:
The script will contains a full manual written using the perl documentation system, perldoc, which you can read by executing:
xen-create-image --manual
This manual describes the operation of the script, and the supported options. (Each of the available options may be setup in a configuration file for ease of use.)
As a very simple example the following command willcreate an image using DHCP to obtain its networking information. The primary disk will 2Gb with 128Mb memory and swap:
xen-create-image --hostname=vm01 --dir=/home/xen
--size=2Gb --swap=128Mb --memory=128Mb --dhcp
If you wish to give the instance a static IP address then provide the information with the following flags:
--ip
The IP address to give the instance.
--gateway
The IP address of the gateway machine.
--broadcast
The broadcast address to use.
--network
The network the image is upon.
--netmask
The netmask to use.
Enhancements:
- This release supports the installation of RPM-based distributions via the external rinse tool, which is more reliable than the rpmstrap utility.
- New guests will now have a random MAC address generated by default, to avoid issues with udev, and several other minor bugfixes were applied.
<<lessWith the tools installed, you may create new instances of Debian, complete with networking, OpenSSH, and user accounts, with one simple command. Images may also be easily updated, listed, or deleted.
Main features:
- Create new Xen instances of Debian Sarge, in minutes. (xen-create-image)
- Duplicate an existing image, whilst updating the networking information. (xen-duplicate-image)
- List all existing images with their networking details (xen-list-images)
- Delete previously created instances. (xen-delete-image)
- Update the images youve created with apt-get, without booting them. (xen-update-image)
Creating A New Image:
The script will contains a full manual written using the perl documentation system, perldoc, which you can read by executing:
xen-create-image --manual
This manual describes the operation of the script, and the supported options. (Each of the available options may be setup in a configuration file for ease of use.)
As a very simple example the following command willcreate an image using DHCP to obtain its networking information. The primary disk will 2Gb with 128Mb memory and swap:
xen-create-image --hostname=vm01 --dir=/home/xen
--size=2Gb --swap=128Mb --memory=128Mb --dhcp
If you wish to give the instance a static IP address then provide the information with the following flags:
--ip
The IP address to give the instance.
--gateway
The IP address of the gateway machine.
--broadcast
The broadcast address to use.
--network
The network the image is upon.
--netmask
The netmask to use.
Enhancements:
- This release supports the installation of RPM-based distributions via the external rinse tool, which is more reliable than the rpmstrap utility.
- New guests will now have a random MAC address generated by default, to avoid issues with udev, and several other minor bugfixes were applied.
Download (0.10MB)
Added: 2007-08-03 License: GPL (GNU General Public License) Price:
817 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above openssh 4.6p1 search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
