Skip to content

v9.2.0.0p1-Beta
Compare
Choose a tag to compare
@tgauth tgauth released this 21 Feb 17:44
· 18 commits to L1-Prod since this release
v9.2.0.0p1-Beta
4f0c9a0
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This is a beta-release (non-production ready)

This release includes:

  • Upstream changes from OpenSSH 9.2, which fixes a number of security bugs.

  • Breaking changes - see upstream release notes for more information:

    • adds EnableEscapeCommandline to ssh_config, a new option, that controls whether the client-side ~C escape sequence that provides a command-line is available. EnableEscapeCommandline defaults to "no", which disables the ~C escape sequence that was previously enabled by default.

  • Security:

    • The sftp server will not attempt to add the Mark-of-the-Web (MOTW) for files uploaded from sftp clients, which reverts the behavior added in 9.1. This is on par with scp behavior for file uploads. File download behavior via scp and sftp remains the same as 9.1, with a best effort attempt to add the MOTW. This change was prompted by Community feedback, as discussed in #2029.

  • Fixes for #2018 and #2019.

Assets 13