PuTTY Telnet/SSH-Client für Windows - neueste Version

DrSnuggles

Themenstarter
Bekanntes Mitglied
PuTTY ist der allseits beliebte open source Telnet/SSH-Client für Windows

changelog schrieb:
These features are new in beta 0.61 (released 2011-07-12):
Kerberos/GSSAPI authentication in SSH-2.
Local X11 authorisation support on Windows. (Unix already had it, of course.)
Support for non-fixed-width fonts on Windows.
GTK 2 support on Unix.
Specifying the logical host name independently of the physical network address to connect to.
Crypto and flow control optimisations.
Support for the zlib@openssh.com SSH-2 compression method.
Support for new Windows 7 UI features: Aero resizing and jump lists.
Support for OpenSSH AES-encrypted private key files in PuTTYgen.
Bug fix: handles OpenSSH private keys with primes in either order.
Bug fix: corruption of port forwarding is fixed (we think).
Bug fix: various crashes and hangs when exiting on failure,
Bug fix: hang in the serial back end on Windows.
Bug fix: Windows clipboard is now read asynchronously, in case of deadlock due to the clipboard owner being at the far end of the same PuTTY's network connection (either via X forwarding or via tunnelled rdesktop).
 

Rainer Zufall

Bekanntes Mitglied
AW: PuTTY

0.61 beta (released 2011-07-12)

Kerberos/GSSAPI authentication in SSH-2.
Local X11 authorisation support on Windows. (Unix already had it, of course.)
Support for non-fixed-width fonts on Windows.
GTK 2 support on Unix.
Specifying the logical host name independently of the physical network address to connect to.
Crypto and flow control optimisations.
Support for the zlib@openssh.com SSH-2 compression method.
Support for new Windows 7 UI features: Aero resizing and jump lists.
Support for OpenSSH AES-encrypted private key files in PuTTYgen.
Bug fix: handles OpenSSH private keys with primes in either order.
Bug fix: corruption of port forwarding is fixed (we think).
Bug fix: various crashes and hangs when exiting on failure,
Bug fix: hang in the serial back end on Windows.
Bug fix: Windows clipboard is now read asynchronously, in case of deadlock due to the clipboard owner being at the far end of the same PuTTY's network connection (either via X forwarding or via tunnelled rdesktop).

DL

KiTTY, ein Fork, den ich nutze.

Gruss
Rainer
 

SpRuZ

Beginner
New in beta 0.67 (released 2016-03-05):
  • Security fix: a buffer overrun in the old-style SCP protocol when receiving the header of each file downloaded from the server is fixed. See vuln-pscp-sink-sscanf.
  • Windows PuTTY now sets its process ACL more restrictively, in an attempt to defend against malicious other processes reading sensitive data out of its memory.
  • Assorted other robustness fixes for crashes and memory leaks.
  • We have started using Authenticode to sign our Windows executables and installer.
 

SpRuZ

Beginner
These features are new in 0.68 (released 2017-02-21):
  • Security fix: an integer overflow bug in the agent forwarding code. See vuln-agent-fwd-overflow.
  • Security fix: the Windows PuTTY binaries should no longer be vulnerable to hijacking by specially named DLLs in the same directory (on versions of Windows where they previously were). See vuln-indirect-dll-hijack.
  • Windows PuTTY no longer sets a restrictive process ACL by default, because this turned out to inconvenience too many legitimate applications such as NVDA and TortoiseGit. You can still manually request a restricted ACL using the command-line option -restrict-acl.
  • The Windows PuTTY tools now come in a 64-bit version.
  • The Windows PuTTY tools now have Windows's ASLR and DEP security features turned on.
  • Support for elliptic-curve cryptography (the NIST curves and 25519), for host keys, user authentication keys, and key exchange.
  • Support for importing and exporting OpenSSH's new private key format.
  • Host key preference policy change: PuTTY prefers host key formats for which it already knows the key.
  • Run-time option (from the system menu / Ctrl-right-click menu) to retrieve other host keys from the same server (which cross-certifies them using the session key established using an already-known key) and add them to the known host-keys database.
  • The Unix GUI PuTTY tools can now be built against GTK 3.
  • There is now a Unix version of Pageant.
 

SpRuZ

Beginner
2017-04-29 PuTTY 0.69 released, containing security and bug fixes
  • Security fix: the Windows PuTTY binaries should no longer be vulnerable to hijacking by specially named DLLs in the same directory, even the names we missed when we thought we'd fixed this in 0.68. See vuln-indirect-dll-hijack-2.
  • Windows PuTTY should work with MIT Kerberos again, after our DLL hijacking defences broke it.
  • Jump lists should now appear again on the PuTTY shortcut in the Windows Start Menu.
  • You can now explicitly configure SSH terminal mode settings not to be sent to the server, if your server objects to them.
 

SpRuZ

Beginner
These features are new in 0.70 (released 2017-07-08):
  • Security fix: the Windows PuTTY binaries should no longer be vulnerable to hijacking by specially named DLLs in the same directory, even a name we missed when we thought we'd fixed this in 0.69. See vuln-indirect-dll-hijack-3.
  • Windows PuTTY should be able to print again, after our DLL hijacking defences broke that functionality.
  • Windows PuTTY should be able to accept keyboard input outside the current code page, after our DLL hijacking defences broke that too.
 

Bestatter

Schwarzfahrer
These features are new in 0.71 (released 2019-03-16):
  • Security fixes found by an EU-funded bug bounty programme:
    • a remotely triggerable memory overwrite in RSA key exchange, which can occur before host key verification
    • potential recycling of random numbers used in cryptography
    • on Windows, hijacking by a malicious help file in the same directory as the executable
    • on Unix, remotely triggerable buffer overflow in any kind of server-to-client forwarding
    • multiple denial-of-service attacks that can be triggered by writing to the terminal
  • Other security enhancements: major rewrite of the crypto code to remove cache and timing side channels.
  • User interface changes to protect against fake authentication prompts from a malicious server.
  • We now provide pre-built binaries for Windows on Arm.
  • Hardware-accelerated versions of the most common cryptographic primitives: AES, SHA-256, SHA-1.
  • GTK PuTTY now supports non-X11 displays (e.g. Wayland) and high-DPI configurations.
  • Type-ahead now works as soon as a PuTTY window is opened: keystrokes typed before authentication has finished will be buffered instead of being dropped.
  • Support for GSSAPI key exchange: an alternative to the older GSSAPI authentication system which can keep your forwarded Kerberos credentials updated during a long session.
  • More choices of user interface for clipboard handling.
  • New terminal features: support the REP escape sequence (fixing an ncurses screen redraw failure), true colour, and SGR 2 dim text.
  • Pressing Ctrl+Shift+PgUp or Ctrl+Shift+PgDn now takes you straight to the top or bottom of the terminal scrollback.
 

Bestatter

Schwarzfahrer
These features are new in 0.76 (released 2021-07-17):
  • New option to abandon an SSH connection if the server allows you to authenticate in a trivial manner.
  • Bug fix: Windows PuTTY crashed when the 'Use system colours' option was used.
  • Bug fix: crash on Windows when using MIT Kerberos together with 'Restart Session'.
  • Bug fix: Windows PuTTY leaked named pipes after contacting Pageant.
  • Bug fix: Windows PuTTY didn't update the window while you held down the scrollbar arrow buttons long enough to 'key-repeat'.
  • Bug fix: user colour-palette reconfiguration via 'Change Settings' were delayed-action.
  • Bug fix: server colour-palette reconfigurations were sometimes lost.
  • Bug fix: a tight loop could occur on reading a truncated private key file.
  • Bug fix: the Windows Pageant GUI key list didn't display key lengths.
 

Bestatter

Schwarzfahrer
These features are new in 0.77 (released 2022-05-27):
Major improvements to network proxy support:
Support for interactively prompting the user if the proxy server requires authentication.
Built-in support for proxying via another SSH server, so that PuTTY will SSH to the proxy and then automatically forward a port through it to the destination host. (Similar to running plink -nc as a subprocess, but more convenient to set up, and allows you to answer interactive prompts presented by the proxy.)
Support for HTTP Digest authentication, when talking to HTTP proxies.
Introduced pterm.exe, a PuTTY-like wrapper program for Windows command prompts (or anything else running in a Windows console). Not yet included in the installer, but available as a .exe file from the Download page.
Updated Unicode and bidi support to Unicode 14.0.0.
New command-line option -pwfile, like -pw except that it reads the password from a file so that it doesn't show up on the command line.
Windows Pageant: option --openssh-config to allow easy interoperation with Windows's ssh.exe.
-pw (and -pwfile) now do not fall back to interactively prompting for a password if the provided password fails. (That was the original intention.)
New configuration options for keyboard handling:
Option to control handling of Shift + arrow keys
Extra mode in the function-keys option, for modern xterm (v216 and above).
Bug workaround flag to wait for the server's SSH greeting before sending our own, for servers (or proxies) that lose outgoing data before seeing any incoming data.
Crypto update: added side-channel resistance in probabilistic RSA key generation.
Crypto update: retired the use of short Diffie-Hellman exponents (just in case).
Bug fix: reconfiguring remote port forwardings more than once no longer crashes.
Bug fix: terminal output processing is now paused while handling a remote-controlled terminal resize, so that the subsequent screen redraw is interpreted relative to the new terminal size instead of the old.
Bug fix: Windows PuTTYgen's mouse-based entropy collection now handles high-frequency mice without getting confused.
Bug fix: Windows Pageant can now handle large numbers of concurrent connections without hanging or crashing.
Bug fix: if Windows Pageant is started multiple times simultaneously, the instances should reliably agree on one of them to be the persistent server.
Bug fix: remote-controlled changes of window title are now interpreted according to the configured character set.
Bug fix: remote-controlled changes of window title no longer get confused by UTF-8 characters whose encoding includes the byte 0x9C (which terminates the control sequence in non-UTF-8 contexts).
Bug fix: popping up the window context menu in the middle of a drag-select now no longer leaves the drag in a stuck state.
Bug fix: extensive use of true colour in the terminal no longer slows down window redraws unnecessarily.
Bug fix: when PSCP reports the server sending a disallowed compound pathname, it correctly reports the replacement name it's using for the downloaded file.
Bug fix: enabling X11 forwarding in psusan failed to fall back through possible port numbers for the forwarded X display.
For developers: migrated the build system to CMake, removing the old idiosyncratic mkfiles.pl and the autotools system.
 
Oben Unten