All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
1.0.0 - 2022-02-07
- added full support for trivial success authentication
- better documentation
- added typehints and typecheching
- added audit command, which tests publickey authentication with a specific private key
- separate arguments for remote host and remote port
- changed logoutput format
- port forwarding: set injectable server tunnel forwarder as default forwarder
- replaced wxpython ssh-askpass implementation with tkinter
- added workarround for publickey lookup with OpenSSH 8.8
- Gooey GUI
- removed SFTPHandle from SFTP replace_file plugin
- removed setup.cfg file
0.6.3 - 2021-11-04
- fixed hostname regex (error in regex)
0.6.2 - 2021-11-04
- fixed hostname regex (regex was to strict and not all hostnames were allowed)
0.6.1 - 2021-09-21
- missing environment variable in snap file
- fixed ssh-mitm-audit command
0.6.0 - 2021-09-13
- publickey authentication uses the same key as the destination server
- check if publickey authentication is possible
- updated vulnerability database
- added command to probe for known public keys
- save public keys to a file
- added simple gui
- added audit command
- added version check
- autodetect host key type
- terminal logging changed to rich
- added terminal logging to mirror shell
- use same session log directory for all plugins
- use same icon for appimage and snap
- renamed cli argument '--disable-pubkey-auth' to '--disable-publickey-auth'
- removed arguments to request and forward agent (added autodetect of forwarded agent)
- bumpversion config file
- hide strg+c when shutting down server
0.5.13 - 2021-07-16
- reorganized command line arguments - plugin args are now grouped
- fixed closing session when open channels exist
0.5.12 - 2021-07-13
- handle subsystem errors in sftp server
- ssh-mitm passes the return code of ssh commands to the client
- fixed error in sftp client, when ssh client does not exist
- pass env and window change requests to the server
- added asyncssh key negotiation vulnerability check
- added rubynetssh default key algorithms
0.5.11 - 2021-07-01
- fixed dropbear vulndb
0.5.10 - 2021-07-01
- missing python packages for snap and flatpak
0.5.9 - 2021-07-01
- print host key fingerprints on startup
- added client version check against known vulnerabilities
- added option to start ssh-mitm as module
0.5.8 - 2021-06-28
- use password cmd arg with all auth methods
- changed none auth to be rfc conform
- added keyboard-interactive authentication as alternative to password authentication
0.5.7 - 2021-06-10
- fixed "variable referenced before assignment" bug
- added '--version' cmd argument
- Changed remote software name to 'SSHMITM_VERSIONSTRING'
0.5.6 - 2021-06-09
- fixed transparent mode in AppImage
0.5.5 - 2021-05-31
- fixed error when parsing converted IPv4 to IPv6 converted addresses
0.5.4 - 2021-05-12
- added new plugin to debug ssh command traffic
- increase buffer length to avoid broken connections with git
- do not close session on eof
0.5.3 - 2021-05-12
- fixed ssh command
ssh -C <command>
- ssh command now compatible with git
0.5.2 - 2021-05-07
- added default algorithms for OpenSSH 8.5 and 8.6 (CVE-202014145)
0.5.1 - 2021-05-03
- sftp client is created only on sftp subsystem request
0.5.0 - 2021-03-26
- support remote port forwarding (ssh -R)
- support for proxyjump (ssh -W /-J) over the ssh-mitm server
- remote tunnel injection feature
- handling of local port forwarding (passes through the tcpip stream to the remote)
0.4.3 - 2021-03-09
- compatibility with dropbear ssh clients
0.4.2 - 2021-03-05
- implemented CVE-2020-14002 (Putty information leak)
- option to use ed25519 host keys
0.4.1 - 2021-03-02
- removed injectorshell because it will be integrated in ssh-mitm-plugins (maintained by @The5imon)
0.4.0 - 2021-02-12
- added port forwarding (only client to proxy at the moment)
- fixed pseudo terminal on exec command