|
|
| |
New in VShell 3.5
|
WIN |
UNIX |
 |
| Three New Editions
of VShell with FTP over SSL (FTPS) Support |
|
|
| |
VShell with FTPS is now available in Administrator, Workgroup, and Enterprise Editions.
|
|
|
| |
Secure file transfer using the FTP protocol in which all data sent or received is protected by SSL/TLS based encryption. |
|
|
| |
The FTPS module honors existing VShell settings for Virtual Roots, Access Control Lists, Connection Filters, Triggers, Deny Host, Logging, and User Database. |
|
|
| Logging |
|
|
|
| |
New W3C extended log file format allows the use of third party log tools to analyze VShell activity.
|
|
|
| |
All log messages can now be sent to a remote syslog or syslog-ng server. |
|
|
| |
All log messages can now (optionally) be sent to the Windows Event Log. |
|
|
| VShell Control
Panel Makeover |
|
|
| |
Increased size of the VShell Control Panel.
|
|
|
| |
Changed layout of Virtual Roots page to allow easier configuration. |
|
|
| |
Support for sortable columns on Virtual Roots, User Database, and RunAs Commands pages. |
|
|
| Internal User Database |
Configure VShell specific users through the new VShell
Control Panel User Database page. The VShell defined users are separate
from Windows System accounts. |
|
|
| Disconnect Active Sessions |
Administrators can now use the "who" command-line
utility to disconnect active sessions. |
|
|
| RunAs Commands |
Users connecting to VShell can now remotely execute
commands as a different user. The VShell administrator has control
over who can remotely execute a command as a different user, which
commands they can execute, and who the commands are executed as. |
|
|
| VShell Service Control |
Start and stop the VShell SSH2 and
VShell FTPS services from the VShell Control Panel Common page. |
|
|
| |
VShell editions
match your needs and budget
|
WIN |
UNIX |
|
VShell is available
in four editions designed to meet the needs of every size network
and organization. All VShell editions offer the same features but
allow you to control costs by deciding how many concurrent connections
you need.
|
| VShell Administrator
Server |
Allows two concurrent client
connections, and is designed primarily for remote system administration
use.
|
|
|
| VShell
Workgroup Server |
Allows ten concurrent
connections, and is intended to serve the needs of a substantial
group of users.
|
|
|
| VShell Enterprise Server |
Supports an unrestricted number
of concurrent connections for a large user community.
|
|
|
| VShell Administrator
Server with FTPS |
Allows two concurrent client
connections, and is designed primarily for remote system administration
use.
|
|
|
| VShell
Workgroup Server With FTPS |
Allows ten concurrent
connections, and is intended to serve the needs of a substantial
group of users.
|
|
|
| VShell Enterprise Server
with FTPS |
Supports an unrestricted number
of concurrent connections for a large user community.
|
|
|
| VShell Custom Server |
VShell Custom Server allows
large customers to deploy VShell with custom configuration of certain
options. For more information on the VShell Custom server please
contact VanDyke
Software Sales
|
|
|
| |
VShell Secure Shell
Server Key Features
|
WIN |
UNIX |
|
| Multiple virtual
root directories |
Allows you to provide
discretionary file system access to users and groups beyond their
home directories.
|
|
|
| Access control |
Grant discretionary access
to services by authorized users or groups. On an individual or
group basis, allow or deny access to VShell features such as shell,
SFTP, and port forwarding.
|
|
|
| VShell triggers |
Triggers allow automated actions saving time and resources following login, logout, uploads, downloads, and file/folder create, delete, and rename events.
|
|
|
| Trusted authentication
methods |
Choose from a number of trusted
authentication mechanisms including public key, Kerberos, and X.509
digital certificates to create a much more secure two-factor authentication
strategy to control access to your network. (X.509 support is not
available for Mac OSX and FreeBSD.)
|
|
|
| SCP (RCP over SSH2) file
transfers |
SCP file transfers using clients
operating as a secure RCP replacement that forwards a remote execution
request to SCP over SSH2 (not SFTP). Honors settings for logging,
ACLs, and SFTP roots. |
|
|
| VShellConfig export and import |
Import and export configuration using
VShellConfig to save time when backing up or moving VShell. Make
backups of existing configurations and move configurations between
machines. |
|
|
| Multiple host keys |
VShell server can support one host
key per algorithm type. |
|
|
| RADIUS server
support for SecurID authentication |
VShell for Windows allows authentication through
RADIUS servers using SecurID or other methods. RADIUS support is
implemented through keyboard-interactive authentication.
|
|
|
| Jail shell |
Two configuration options,
ChrootUsers and ChrootGroups, combine to restrict users and members
of groups to their home directory with any shell, SFTP, or subsystem
operation.
|
|
|
| Command-line utilities |
Reduce human error and automate
routine tasks using command-line utilities: vsftp, interactive
SFTP command-line utility providing quick, easy, and secure file
transfer operations; vsh, command-line shell utility; vcp, command-line
file transfer utility; and vkeygen, public/private key generator
utility.
|
|
|
Back
to Top
| |
Secure Electronic
Data Exchange with Secure File Transfer
|
WIN |
UNIX |
|
| Multiple virtual
root directories |
Allows you to provide
discretionary file system access to users and groups beyond their
home directories.
|
|
|
| Automated secure file
transfers |
Use vcp, vsftp, vsh, or any
SFTP or SCP2 clients to automate and schedule unattended file transfers.
|
|
|
| DMZ access |
Secure access to files where
both those within the company and those outside the company can
upload and download files.
|
|
|
| Business-to-business solutions |
Create a secure cross-platform
file sharing infrastructure for exchanging work products with customers
and partners.
|
|
|
Back
to Top
| |
Fine-Tuned Configuration
|
WIN |
UNIX |
|
| Multiple virtual
root directories |
Allows you to provide
discretionary file system access to users and groups beyond their
home directories.
|
|
|
| Allowed/required list
for authentication methods |
VShell can now specify which
authentication methods are allowed or required when users connect
to your server.
|
|
|
| Access control |
Grant discretionary access
to services by authorized users or groups. On an individual or
group basis, allow or deny access to VShell features such as shell,
SFTP, and port forwarding.
|
|
|
| Authentication banner
support |
Display legal text when clients
connect.
|
|
|
| Filters |
Configure which hosts can connect
by IP address, hostname, or netmask; configure which port-forwarding
requests are allowed.
|
|
|
| Log file |
Select message events that
will be logged in the VShell log file (Errors, Warnings, Informational,
Connection, Authentication, Forwarding, SFTP, and Debug).
|
|
|
| Windows Control Panel |
Configure VShell for maximum
security and still have convenient remote access.
|
|
|
| General server configuration |
Configure general server options
like listening port, keepalives, idle timeout period, and command
shell. |
|
|
| Host key management |
Display the server's host key
in a fingerprint format for easier verification.
|
|
|
| Ciphers, MACs, and compression |
Encrypt the data using the
selected cipher algorithms, ensure data integrity with the selected
MACs, and improve transfer speed over slower network links using
compression.
|
|
|
| Authentication setting |
Configure authentication options
by limiting the number of failed attempts, setting a timeout period
for completed authentications, and setting the required authentication
methods.
|
|
|
| VShellConfig |
A Windows command-line utility that allows editing of virtual roots, access control lists (ACLs), and the VShell user database.
|
|
|
Back
to Top
| |
Secure Remote Administration
with Secure Command Shell
|
WIN |
UNIX |
|
| Accomplish common administrative
tasks |
With existing secure shell
utilities, add new users to the network, check print queues, and
control services.
|
|
|
| Edit files remotely |
Use text oriented editors (e.g.,
EDIT and vi) to edit files on the remote system.
|
|
|
| Start unattended batch
jobs |
VShell's support for remote
command execution allows unattended jobs to be started with any
Secure Shell (SSH2) client.
|
|
|
| Remotely and securely
administer servers |
Securely access and administer
web, mail, database, and application servers.
|
|
|
| Option to
specify alternative command shells |
Use cmd.exe or
other popular shells available like Bash, Korn and C Shell.
|
|
|
| VT220 emulation |
Superior screen rendering and
keyboard control of command shells and other applications.
|
|
|
| Enforce end-user scrollback
mode |
Force "TTY mode" from
the server so clients automatically get scrollback.
|
|
|
Back
to Top
| |
Strong Security
with Secure Shell (SSH2)
|
WIN |
UNIX |
|
| SSH2 support |
Provide secure
cross-platform flexibility when connecting from a number of remote
clients for shell, port forwarding, or secure file transfer.
|
|
|
| User authentication |
Control access to servers and
networks using existing usernames and passwords combined with a
choice of other enterprise-wide authentication methods.
|
|
|
| Data encryption |
Choose from a wide selection
of ciphers including 3DES, Twofish, Blowfish, AES-128, AES-192,
and AES-256 to ensure strong data encryption. RSA and DSA public-key
authentications are also supported.
|
|
|
| Data integrity |
Guarantee the integrity of
each message sent over the network (preventing replay
or insertion attacks).
|
|
|
| Host identity verification |
Unique server host key proves
its identity to a client as a "known" host (preventing
a man-in-the-middle
attack).
|
|
|
| Secure Shell client compatibility |
Connect with a wide variety
of Secure Shell clients including: SecureCRT,
OpenSSH, WRQ, SSH Communications, and other standard SSH2 clients.
|
|
|
| Port forwarding |
Forward TCP/IP ports to securely
access standard data traffic like POP3 and SMTP over the internet
and intranets through a single, secure, multiplexed channel.
|
|
|
| Public key-only authentication |
Automate unattended file transfers
and batch jobs. Can also streamline logon process for users.
|
|
|
| Public Key Assistant support |
Make it possible for users
to upload their own public keys with a click of a button.
|
|
|
| Agent |
Agent forwarding support allows
transparent authentication to multiple linked servers after the
first Secure Shell server has authenticated the user.
|
|
|
| OpenSSH public-key format
support |
Eliminates the requirement
that users with OpenSSH clients convert keys and maintain two formats.
|
|
|
| Kerberos v5 authentication
via GSSAPI |
As an emerging standard, this
adds to your foundation for interoperability while enhancing the
security of enterprise-wide network authentication.
|
|
|
| X.509 certificate authentication
method |
Comply with organization-wide
PKI policies designed to protect critical information and overcome
identity theft and electronic fraud.
|
|
|
| X.509 certificate mapping |
Certificate mapping associates
users with digital certificates without requiring the certificates
to be stored locally.
|
|
|
| X.509 certificate checking |
Certificate checking allows
revocation checking at various levels of the chain of certification
authorities.
|
|
|
| Unattended first-time
host key generation |
Option to generate first-time
host keys automatically following installation, simplifying enterprise
deployments.
|
|
|
| Additional key exchange
method |
Diffie-Hellman Group Exchange
(GEX) allows the server to send the client variable data with which
to perform Diffie-Hellman key exchange.
|
|
|
| Keyboard interactive |
Keyboard-interactive authentication
allows you to customize authentication using PAM plugins. PAM plugins
can, for example, enable password expiration enforcement policies
or the use of SecurID cards.
|
|
|
| FIPS 140-2
support for Windows |
VShell for Windows uses a FIPS
140-2 validated cryptographic library. VShell can be installed
in "FIPS Mode", which will use the validated cryptographic
library and only allow FIPS-approved algorithms. If you need
a FIPS 140-2 compliant solution for UNIX please
let us know.
|
|
|
| Deny Host
file |
This feature
has been added to reduce the impact of a dictionary attack. VShell
for Windows now tracks failed authentications by IP address and
can add these addresses to the Deny Host file after the specified
threshold has been reached. Once an IP address has been added to
the Deny Hosts file, VShell will not allow future connections from
that address. |
|
|
Back
to Top
| |
Server Application
|
WIN |
UNIX |
|
| IPv6 technologies |
For strategic organizations moving beyond
outdated networks incapable of handling sophisticated network traffic.
WIN & UNIX. (If you need IPv6 support for AIX 4.3 or HP-UX
11 - let
us know).
|
|
|
| Message of the day |
Message of the day allows communication
of important new information at logon.
|
|
|
| Remote-command execution |
Kick off unattended batch files
or scripts using remote command execution.
|
|
|
| Idle timeout option |
Allows timing out sessions
after a configurable idle time.
|
|
|
| Pass-through printing
support |
Pass-through printing allows
a remote host program to print on the printer attached to your
local terminal (or PC running terminal emulation).
|
|
|
| Windows command-line
utilities |
In order to check
who is logged onto VShell, the command-line utility Who.exe is
included with VShell. The command-line utility Whoami.exe is also
included.
|
|
|
| Mouse support |
VShell provides mouse support
for character-based applications running in a command window.
|
|
|
| Local or domain user logon |
Logon to a local NT machine
or the network domain.
|
|
|
Back
to Top
| |
Evaluation, Updates,
Support
|
WIN |
UNIX |
|
| Try before
you buy free evaluation copy |
Official software
releases can be downloaded and evaluated for 30 days without charge.
|
|
|
| Open beta software releases |
Beta software releases can
be downloaded and evaluated for 30 days without charge.
|
|
|
| One-year software updates |
All registered users receive
a year of software updates.
|
|
|
| One-year technical support |
All registered users receive
a year of technical support by e-mail from VanDyke Support.
|
|
|
| Software maintenance available |
Software updates and support
are available after the first year.
|
|
|
Back
to Top
| |
Section 508 Compliance
|
WIN |
UNIX |
|
| Rehabilitation
Act Section 508 compliance |
In 1998, Congress
amended the Rehabilitation Act to require Federal agencies to make
their electronic and information technology accessible to people
with disabilities. Inaccessible technology interferes with an individual's
ability to obtain and use information quickly and easily. Section
508 was enacted to eliminate barriers in information technology,
to make available new opportunities for people with disabilities,
and to encourage development of technologies that will help achieve
these goals. VShell Server has been registered as a compliant product
at the Section 508
database. Voluntary Product Accessibility Template (VPAT) documents
detailing this compliance are available online in Microsoft Word
format.
VShell Server
VPAT
|
|
|
Back
to Top
| |
|
VShell, SecureCRT, and SecureFX
are registered trademarks of VanDyke Software, Inc. in the United
States and/or other countries. All other trademarks or registered
trademarks are the property of their respective owners.
|
|
