VanDyke Software, best known for its Secure Shell solutions, this week released the first public beta release of version 2.2 of VShell SSH2 server for Windows and Unix platforms
This is the first Unix version of the telnet server. It is compatible with Red Hat Linux and Sun Solaris 8.
VanDyke cites customer demand as the driving force behind the release, noting the requests it heard for a server that offers the same tight controls over privileges and permissions as VShell for Windows does. This interest convinced the vendor that the Unix market holds plenty of room for a new solution with the fine-tune control and support for enterprisewide authentication it believes VShell 2.2 offers.
The Unix version incudes many of the enhancements VanDyke has developed for its Windows server line, including precise and granular control over end-user privileges, automation tools to reduce administrator time spent on routine tasks, and industry-leading support for authentication methods favored by enterprise organizations. VShell 2.2 is the first Secure Shell server to offer built-in support for Kerberos (v5) authentication via GSSAPI. The methodology for this support was a joint effort between the Secure Shell and Kerberos IETF working groups.
To further emphasize its commitment to security, VanDyke submitted the pre-release beta version of the Unix server to @stake, a digital security consulting firm. @stake performed a vulnerability assessment through rigorous testing, allowing VanDyke to resolve a number of potential vulnerabilities prior to the public beta release.
And the security firm gave it two thumbs up. Tim Newsham of @stake, noted "the program was surprisingly robust and secure for an unreleased product. This appears to be the result of high coding standards and internal peer review."
Other key features in VShell for Unix 2.2 (beta 6) include:
- vsh, vcp and vkeygen command-line clients for shell, file transfer, and public-private key generation
- Server-side support for Public Key Assistant to allow users to upload public keys with the click of a button
- Kerberos v5 authentication via GSSAPI
- Public-key authentication, Kerberos v5 authentication via GSSAPI, encrypted password authentication, or a combination of the above
- Control over which network interface cards VShell listens to on multi-homed servers
In addition, VShell uses Access Control Lists (ACLs) to align network access, file transfer, and application tunneling privileges with a company's security policies.Version 2.2 of VShell for Linux is available for download here.