SecureCRT® 3.2.2 (Official) -- July 26, 2002 Copyright © 1995-2002 by VanDyke Software, Inc. All rights reserved. This file contains a SecureCRT product history. It includes lists of new features, changes, and bug fixes sorted by release. For a product description, installation notes, registration and contact information, please refer to Readme.txt (downloaded with this installation). Changes in SecureCRT 3.2.2 (Official) ------------------------------------- Bug fixes: - SSH1: Fixed a buffer overflow which could occur if a server-specific identifier string was more than the specified 40 bytes long. This could result in a malicious SSH1 server executing arbitrary code. Changes in SecureCRT 3.2.1 (Official) ------------------------------------- Bug fixes: - Corrected potential overflow in SSH1 CRC-32 compensation attack detector. - In SSH1, memory usage would grow each time a new port forwarding connection was established. This problem was most visible when port forwarding an e-mail checker that created a new connection every 60 seconds. - In SSH1 and SSH2, when doing X11 forwarding generate MIT-MAGIC-COOKIE-1 of the correct length (16 bytes, or 32 hexadecimal characters) instead of 8 bytes or 16 hexadecimal characters. - In SSH1 and SSH2, enable the X11 authentication checking. - When the remote SSH2 server was started from inetd, SecureCRT and vcp would fail to ignore the extra line of output prior to the ident string. Changes in SecureCRT 3.2 (Official) ----------------------------------- Changes: - Added VCP version and SSH2 core DLL version to the usage message displayed when a VCP command is issued without any arguments or when the arguments are incorrect. - Added a workaround for server bugs that include output generated by user logon scripts in the SFTP data stream. Bug fixes: - Excessive packet transmission during downloads could lead to poor performance in some cases. - Any file specification with wild cards erroneously required the -r option. - VCP could terminate prematurely during rare circumstances when less then four bytes were received in a transmission. - In rare cases, VCP could crash while closing the connection. Changes in SecureCRT 3.2 (Beta 2) --------------------------------- Changes: - In VCP, public-key authentication is now tried first. If public-key authentication fails, password authentication is used. - In VCP, if key exchange failed because the user specified a cipher or MAC that was not supported by the server, a useful error message is now displayed. - In VCP, connection to the destination host is deferred until VCP has successfully connected to the source host. Bug fixes: - In SecureCRT, when using SSH2, an incorrectly displayed error stated that a server version 2.0.12 or higher was required when connecting to F-SECURE 2.2.x servers. - VCP would not run under early versions of Windows 95 if shfolder.dll was not present. - In VCP, if forward slashes were used on the command line, VCP would fail. Changes in SecureCRT 3.2 (Beta 1) --------------------------------- Features: - Added command-line VCP utility (similar to SCP2) to perform secure file transfers over SSH2. Changes in SecureCRT 3.1.2 (Official) ------------------------------------- Bug fixes: - In SSH2, if the remote SSH2 server initiated a key re-exchange, SecureCRT would either be disconnected or GPF. Changes in SecureCRT 3.1.1 (Official) ------------------------------------- Changes: - Added a new SSH2 authentication. The "Both" authentication method requires public key followed by password. Bug fixes: - Telnet negotiation could loop repeatedly if the server sent a telnet command that had CRT had already received. - On very rare occasions, a GPF could occur during an in-place rename of a session or folder in the connection dialog. - On very rare occasions, a GPF could result when trying to open a COM port. Changes in SecureCRT 3.1 (Official) ----------------------------------- Changes: - Added support for SSH Communications 2.2 SSH2 server - Under Windows 2000, SecureCRT now defaults to the Application data directory for storing configuration files. - In SSH2, by default SecureCRT binds to localhost when doing remote forwarding. - In SSH1, SecureCRT now scans for the \r\n\r\n that follows the HTTP response headers after connecting via an HTTP SSL proxy, instead of the \r\n.*\r\n\r\n that was specific to the TIS firewall toolkit plug-gw gateway. - In Serial, changed the inter-character timeout from 10 to 4. The previous value did not perform well for interactive applications when a modem was not involved. - If a user pastes, it is now treated as if it was typed in. In particular, if "Scroll to bottom on keypress" is on, the behavior is identical whether it is an actual keypress or a paste. - In SSH2, by default, SecureCRT now binds to localhost and refuses non-localhost connections. Previously, an error was displayed when non-localhost connections were received. - The Find dialog now defaults to searching up. - Improved error message when winsock initialization fails. - Improved error message when rlogin fails to connect because the user's firewall has not bound the out going connection to a privileged port. - SSH1 and SSH2 now use BSAFE 4.3.1 cryptographic libraries. Cryptography with DES, DSA, and SHA-1 is NIST FIPS 140-1 compliant. - In SSH1, by default, SecureCRT now binds to localhost and refuses non-localhost connections. Previously, an error was displayed when non-localhost connections were received. - Added a check box in Global Options dialog to enable or disable the row/column indicator in the status bar. - The version, name, company, and serial number in the About dialog can now be selected and copied to the clipboard. - In Global Options, the label "Character paste delay" was changed to "Character send delay". What's New in SecureCRT 3.1 --------------------------- - Added Linux terminal and keyboard emulation. - Added support for the SSH Communications 2.1 server. What's New in SecureCRT 3.0 --------------------------- - SSH2 (in addition to SSH1) is now supported. - ActiveX scripting support allows use of multiple scripting languages include VBScript, JScript, and PerlScript. - SCOANSI terminal and keyboard emulation. - Session keyboard mapping now supports any key combination - not just function keys - without the need for an external keymap file. - Printing options can be set globally or by session. - The Connect dialog has been completely redone. It now supports folders. Operations in the Connect dialog are available from both the toolbar and the context menu. - Desktop shortcuts for sessions can be quickly created from the Connect dialog toolbar or context menu. - A new "Auto Session" option allows you to specify the session to use when SecureCRT starts up. - The session and global options have been reorganized for easier access. - All settings are stored in a common location. Previous to 3.0, global settings were stored in the registry and session settings were stored in SecureCRT.cfg. - Full screen mode is now supported. Use Alt+Enter to switch to and from full screen mode. - New global options include: Automatic reconnect Specify delay between characters on paste (or ASCII send) Specify delay between lines on paste (or ASCII send) The number of recent sessions in the File menu (up to 9) The maximum number of terminal columns (up to 512) Which web browser is used with "Open URL" Whether DDE is used to start the web browser - The scrollback buffer maximum has been increased from 9999 to 32000. In addition, the scrolling performance as new data is received has been significantly increased. SecureCRT Features ------------------ - Support for Blowfish, DES, 3DES and RC4 ciphers. - Support for RSA, TIS, and password authentication methods. - Support for port forwarding. - Support for X11 forwarding. - Support for compression. - Named session allows the user to have different preferences for different hosts. - Simple mechanism for automating logins. - An optional chat window provides an editable type-ahead buffer. - Support for rlogin and telnet protocols. Telnet supports Window Size Change (NAWS) Telnet supports Local Flow Control (LFLOW) - Quality VT100, VT102, VT220, Linux, SCOANSI and ANSI emulation, including: VT line drawing Support for bold, underline, and reverse attributes Double width and double height fonts 80/132 column switching VT100 and VT220 keyboard emulation Optional ANSI color Xterm extensions for mouse support and changing title bar - SOCKS firewall support (telnet only). - Generic telnet proxy firewall support. - Zmodem file transfer (upload and download). - Printing: auto print, selection, and screen. - User-configurable number of rows and columns. - User-defined foreground, background, and bold colors. - User-defined number of savelines (scroll back). - User-defined keymaps. - User-defined word delimiter characters for double click. - Emacs mode maps Alt+ to send Esc+. - Support for use from the command line or web browsers. - Copy and paste, including an "auto copy" option. - A session can be logged to a file. - Easy setup/install. All inquiries should be directed to: Van Dyke Technologies 4848 Tramway Ridge Dr. NE Suite 101 Albuquerque, NM 87111 USA E-mail: support@vandyke.com SecureCRT is a trademark of Van Dyke Technologies, Inc. VShell is a trademark of Van Dyke Technologies, Inc. SSH and Secure Shell are trademarks or registered trademarks of SSH Communications Security Ltd, http://www.ssh.fi .