VShell(R) 4.4 (Beta 2) -- May 15, 2018 Copyright (C) 1995-2018 VanDyke Software, Inc. All rights reserved. This file contains a VShell product history. It includes lists of new features, changes, and bug fixes sorted by release. For a product description, installation notes, registration, and contact information, please refer to readme.txt (downloaded with this package). Changes in VShell 4.4 (Beta 2) -- May 15, 2018 ---------------------------------------------- New features: - Windows: SFTP Virtual Roots allow you to automatically connect the VShell server to a second SFTP server for file transfer connections. Uploads, downloads, and other file operations are performed on the second SFTP server. - Windows: Redesigned the GUI for the Virtual Roots page of the VShell Control Panel to be easier to use. - Windows: Added the ability to allow HTTPS "anonymous access" to a particular virtual root. This allows specified IP addresses to download files from a particular directory on the VShell server without authentication. - Unix: The internal user database is now supported on Linux, Unix, and Mac OS. - Added support for the SHA2-512-EtM and SHA2-256-EtM MAC algorithms. Changes: - Windows: When VShell FIPS mode is enabled but the Microsoft SChannel FIPS setting is not enabled then VShell will refuse FTPS and HTTPS connections. - Windows: Updated VShell User Web Interface to comply with U.S. Access Board Section 508. - Windows: In the VShell User Web Interface, CTRL+A now selects all files. - Windows: In the VShell User Web Interface, the login page is now centered within the browser. - Windows: Service packs are now required for VShell compatibility on some older OS's. Specifically: Windows Vista SP2, Windows 7 SP1, Windows Server 2008 SP2, Windows Server 2008 R2 SP1, and Windows 8.1 (S14). - Windows: VShell User Web Interface could hang when attempting to delete a large number of files (over 150) at the same time. - Windows: Decreased the time it takes for the VShell User Web Interface to render a directory with a very large number of folders in it. - Windows: Added the ability to set the idle timeout in seconds using the registry. Previously the idle timeout could only be specified in minutes. - Unix: Added support for Ubuntu 17. - Improved debug logging (at debug level 3 or greater) associated with RADIUS authentication. - Optimized authentication of connections using virtual roots with ConnectAs users in order to reduce the authentication time needed when a large number of virtual roots are configured. Bug Fixes: - Windows: In the VShell User Web Interface, if a folder name included a space, clicking on the bread crumb link for the folder would produce an error message. - Windows: In the VShell User Web Interface, the "New Folder" button was only enabled when a folder in the list was selected. - Windows: In the HTTPS file browser, the delete key did not work. - Windows: On the VShell User Web Interface, the upload button was disabled unless a folder was selected. - Windows: After uploading a file to a Windows DFS share using HTTPS, subsequent attempts to rename or delete the file using HTTPS would fail with an "access denied" error. - Fixed an error in logging that could occur when a trigger was set up to execute an action that would fail. Specifically, the line indicating when the trigger was executed and the line indicating that the trigger timed out could both have the same timestamp. - vcp: Server-to-server file transfers did not work if a wildcard was specified in the source path. - vcp: Server-to-server transfers did not work if the destination path was a folder. Changes in VShell 4.4 (Beta 1) -- November 14, 2017 --------------------------------------------------- New features: - New support for queueing trigger actions so that only a specified number of threads (or processes) will run at any one time. This improves performance when the VShell host is resource constrained or clients perform actions that cause many triggers to fire simultaneously. - Added ability to allow or deny certain SFTP commands, including SETSTAT & FSETSTAT(icacls, chmod, chown, chgrp), RMDIR(rmdir), REMOVE(rm, del), RENAME(rename, mv), and LINK(ln, mklink). - Windows: Added support for the HTTP/1.1 protocol. Users can now connect to VShell using their web browser with HTTP or HTTPS to view folder contents, upload and download files. Additionally, HTTP/S file upload and download can be automated using command-line tools such as cURL. - Windows: Added ability to deny connections from IP addresses after a specified number of authentication failures in a specified amount of time. - Windows: Added ability to re-allow SFTP and FTPS connections from denied IP addresses after a specified amount of time. - Windows: VShell Monitor now displays the session ID for each active connection. Changes: - Windows: In the VShell control panel, the Subconfiguration category now appears under Common rather than SSH2. - Windows: The fields to impersonate a different user in the Virtual Root Path Dialog were moved to a separate pop-up dialog. - Windows: The Common/Logging page of the VShell control panel no longer shows the option to turn off W3C Logging. Existing configurations are not affected by this change. - Windows: VShell control panel now "remembers" any changes that are made to list column widths in the GUI. - Unix: Upgraded Crypto++ library to latest version 5.6.5 released on Oct 11, 2016. Host keys and public/private key pairs generated by VShell are now compliant with the Federal Information Processing Standard (FIPS) 186-4 Digital Signature Standard. Bug fixes: - In rare cases the VShell SSH2 service could crash if a client sent bad data during key exchange. - Windows: In the VShell control panel, under the Subconfiguration / Location category, using the "Move Down" button to reorder entries could cause the entries to be displayed incorrectly. - Windows: In some locations on the VShell control panel, the Apply button was not enabled when a checkbox was toggled. - Windows: In VShell FTPS, some mnemonics on the FTPS page of the VShell control panel did not work. - Unix: If the Access Control List specification in the vshelld_config file was incorrect, the resulting error message included some but not all of the valid access types.