HP-UX 11i Version 2 May 2005 Release Notes
Security
HP-UX Secure Shell
Chapter 8
157
HP-UX Secure Shell
HP-UX Secure Shell A.03.91.009 is based on OpenSSH 3.9p1. The client/server
architecture supports the SSH-1 and SSH-2 protocols and provides secured remote login,
file transfer, and remote command execution. The product is available for HP-UX 11.0,
11i v1, and 11i v2.
Summary of Change
Following are the new features in HP-UX Secure Shell A.03.91.009:
• sshd re-exec for each new connection
• Permission and ownership checks for program configuration files
• sftp (1) interface improvements
•Extended chroot support
• Built to support optional language extensions
• Built with sftplogging patch
• New configuration directives in sshd_config (server):
—
AcceptEnv
—
MaxAuthTries
—
LogSftp
—
SftpLogFacility
—
SftpLogLevel
—
SftpPermitChmod
—
SftpPermitChown
—
SftpUmask
• New configuration directives in ssh_config (client):
—
ControlMaster
—
ControlPath
—
IdentitiesOnly
—
SendEnv
HP-UX Secure Shell A.03.91.009 also contains the following features, which were
introduced in HP-UX Secure Shell A.03.81.000:
• Use of untrusted cookies for X11-forwarding
• Support for sending Application Layer Keep-Alive messages to the server
•The /etc/moduli file updated
• Support for GSSAPI replaced with GSSAPI-With-MIC