[sslh] sslh v2.0 released
Yves Rutschle
yves at rutschle.net
Thu Aug 31 14:25:52 UTC 2023
Hello all,
sslh-v2.0.0 is now available from the usual sources:
https://www.rutschle.net/tech/sslh/download.html
and Github, of course.
Nothing but a bunch of small cosmetics changes from
v2.0-rc2, here's the ChangeLog for reminder:
New sslh-ev: this is functionaly equivalent to
sslh-select (mono-process, only forks for specified
protocols), but based on libev, which should make it
scalable to large numbers of connections.
New log system: instead of --verbose with arbitrary
levels, there are now several message classes. Each
message class can be set to go to stderr, syslog, or
both. Classes are documented in example.cfg.
UDP connections are now managed in a hash to avoid
linear searches. The downside is that the number of
UDP connections is a hard limit, configurable with
the 'udp_max_connections', which defaults to 1024.
Timeouts are managed with lists.
inetd merges stderr output to what is sent to the
client, which is a security issue as it might give
information to an attacker. When inetd is activated,
stderr is forcibly closed.
New protocol-level option `resolve_on_forward`,
requests that target names are resolved at each
connection instead of at startup. Useful for dynamic
DNS situations. (Paul Schroeder/milkpirate)
New probe for MSRDP (akappner).
Cheers!
Y.
More information about the sslh
mailing list