VShell(R) Server 3.5 (Beta 1) -- July 10, 2008 Copyright (C) 1995-2008 VanDyke Software, Inc. All rights reserved. This file contains a VShell product history. It includes lists of new features, changes, and bug fixes sorted by release. For a product description, installation notes, registration, and contact information, please refer to readme.txt (downloaded with this package). Changes in VShell 3.5 (Beta 1) -- July 10, 2008 ----------------------------------------------- Three New Editions of VShell with FTP over SSL (FTPS) Support: - VShell with FTPS is now available in Administrator, Workgroup, and Enterprise Editions. - Secure file transfer using the FTP protocol in which all data sent or received is protected by SSL/TLS based encryption. - The FTPS module honors existing VShell settings for Virtual Roots, Access Control Lists, Connection Filters, Triggers, Deny Host, Logging, and User Database. New features: - Windows: New W3C Extended Log File format. For new installs, this option is on by default. This optional log format can be configured on the VShell Control Panel Logging page. - Windows: Logging to the Windows Event Log can now be configured through the VShell Control Panel. - Windows: The Virtual Roots interface has been updated to provide a larger viewable area and to allow the listed roots to be sorted by the Virtual Root name or the Alias name. - Windows: Added the ability to create VShell specific user accounts, which are separate from Windows system accounts. Users can be created from the User Database page in the VShell Control Panel. - Windows: VShell "who" command-line utility will now allow administrators to disconnect active sessions. - Windows: New VShell Control Panel RunAs Commands page allows configuration of commands that can be remotely executed as a different user than the currently authenticated user. - Windows: New SFTP extension gives the user the ability to "su" to another user during the connection. The client used must support the sftp-su@vandyke.com SFTP protocol extension. - Windows: VShellConfig command-line utility can add, edit, or delete users from the VShell internal user database. - Windows: Persistent network drive mappings are now available when logged into VShell. - Windows: VShell services can be started and stopped from the VShell Control Panel. - VShell can now log to both syslog and syslog-ng servers. - New trigger parameter that allows the passing of the current date to a trigger script. - Concurrent connection limits can now be specified on a per- location, per-group, and per-user basis through the use of subconfigurations. - Support for SFTP version 6. - New log events for SFTP chmod, chgrp and chown commands. - UNIX: Option to control what permission checking vshelld does on a user's publickey folder during authentication. - UNIX: Support for Redhat Enterprise Linux 5.0. - UNIX: Support for Mac OS X on x86 architecture. - UNIX: Support for FreeBSD 7.0. - UNIX: Support for the posix-rename@openssh.com SFTP protocol extension. - UNIX: Added support for Pluggable Authentication Modules (PAM) to the AIX 5.2 and AIX 5.3 VShell versions (all other VShell for UNIX versions already included PAM support). - Added --log option to the command-line clients, which enables them to log all output to a file. - vsftp: Added a "view" command which downloads the specified file and opens it in the default editor or appropriate application. - vsftp: Added a batch option (-b) to read in a list of commands from a file. - vsftp: Added the commands "exit", "continue", and "exit-all" which provide control over how errors are handled in batched commands. - vsftp: Added a "detail" command which displays the system information for the specified file. Changes: - Windows: Reorganized VShell Control Panel pages based on SSH2, FTPS, and common functionality. - Windows: The option to automatically delete VShell log files older than the specified number of days is now on by default with a value of 30 days. - Windows: Increased the size of the VShell Control Panel. - Windows: Renamed the VShell Control Panel SFTP page to Virtual Roots. - Windows: Command-line utility help now included with the VShell Help file. - UNIX: Message logged when a vshelld trigger child process fails. Bug fixes: - Windows: Public-key authentication could have failed if Kerberos Protocol Transition was enabled and the User Principal Name (UPN) was not in a user@domain.name format. - Windows: When using public-key authentication, the user's group membership may not have been determined correctly. - Windows: When port forwarding SFTP traffic through VShell, transfer speeds were very slow. - Windows: VShell would leak memory if a client attempted to authenticate using the GSSAPI (with mic) authentication method. - Windows: VShell Control Panel would crash on startup if the access control list was empty. - Windows: The VShell Control Panel Cipher page would show that all ciphers were enabled even if they had previously been deselected. - Windows: Public-key authentication would fail if the user did not have "Log on locally" rights. - VShell would not accept connections from SFTP clients that sent a SFTP version packet with a value of zero. - VShell would report a 0 concurrent connection limit if the license used contained a "Maintenance Expiration" feature. - The %C trigger variable could have had a value of "0", indicating success, when the file transfer operation was interrupted by a disconnect. - An extra space was sent with the identification string when the RevealVersionInfo option was set to false. - UNIX: Users that were allowed unrestricted file system access and also matched a virtual directory defined in vshelld_config could only access the virtual directory. - UNIX: File transfer operations could fail with very large files on some AIX systems. - vcp: Under certain circumstances, vcp immediately disconnected after connecting to an SSH Communications server.