2013.56 changelog

CHANGES

+2013.56
+
 - Allow specifying cipher (-c) and MAC (-m) lists for dbclient
-- Allow using 'none' cipher or MAC
+- Allow using 'none' cipher or MAC (off by default, use options.h). Encryption
+  is used during authentication then disabled, similar to OpenSSH HPN mode
 - Allow a user in immediately if the account has a blank password and blank
   passwords are enabled
 - Include a few extra sources of entropy from /proc on Linux, hash private keys
-  as well
-- Added sha2-256 and sha2-512 hashes
-- Don't sent "localhost" for -R forward connections, reported by Denis Bider
+  as well. Dropbear will also write gathered entropy back into /dev/urandom
+- Added hmac-sha2-256 and hmac-sha2-512 support (off by default, use options.h)
+- Don't sent bad address "localhost" for -R forward connections, 
+  reported by Denis Bider
 - Add "-B" runtime option to allow blank passwords
@@ -21,6 +25,10 @@
 - Fix memory leak for TCP forwarded connections to hosts that timed out,
   reported by Norbert Benczúr. Appears to be a very long-standing bug.
+- Fix "make clean" for out of tree builds
+
+- Fix compilation when ENABLE_{SVR,CLI}_AGENTFWD are unset
+
 2012.55 - Wednesday 22 February 2012
 - Security: Fix use-after-free bug that could be triggered if command="..."

debian/changelog

+dropbear (2013.56-0.1) unstable; urgency=low
+
+  * New upstream release.
+
+ -- Matt Johnston <matt@ucc.asn.au>  Thu, 21 Mar 2013 22:54:00 +0800
+
 dropbear (2012.55-0.1) unstable; urgency=low
   * New upstream release.

sysoptions.h

@@ -4,7 +4,7 @@
  *******************************************************************/
 #ifndef DROPBEAR_VERSION
-#define DROPBEAR_VERSION "2012.55"
+#define DROPBEAR_VERSION "2013.56"
 #endif
 #define LOCAL_IDENT "SSH-2.0-dropbear_" DROPBEAR_VERSION