NHAS Reverse Ssh Versions Save

Small bug fix

Bug Fix:

• If the server argument external_address lacks a port, bash/sh template generated via creating a link may result in a blank url path

This release adds a number of fun new features. Most importantly:

• Support the HTTP polling transport, so instead of creating one long term stream the client can now send HTTP requests for sending/receiving data.
• Privilege levels and 'ownership' over clients, where clients can be associated with specific users as to not share them with all users on the server

Features:

• HTTP polling transport via the uri scheme https:// and http://, more details on 146
• Custom SNI, it is now possible to define a baked in SNI that the RSSH client will use to connect to a server using TLS. This can be specified in link with --sni.
• Server now provides bash auto-completions that can easily integrate with existing solutions with the autocomplete command, tracked by issue 156
• authorized_controllee_keys file now supports RSSH custom tag owners to define who controls said client
• link command now has optional owners flag to define which user/s should be shown the client in their list
• New access server console command can share/hide clients
• The RSSH server will now look in the data-directory/keys/$USERNAME for user keys (instead of administrative keys)

Security Fixes:

• Bump modules resolving terrapin vulnerablities

Public key for this release:

ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIkk/jazhGONHIRcJ/WXX+lDcWZYDOs6wLNNArqgrulY

Fixed regression in remote forwarding.

Bug Fix:

• The RSSH client will now correctly send remote forward requests to the ssh client when requested

The public key is the same as the last release

This minor release fixes a regression in the url parsing introduced in 2.4.0

This also resolves the security vulnerabilities discovered in the SSH library

Bug Fix:

• When no url scheme is passed the rssh client will no longer fail to select ssh as the default scheme (thanks #153)

Public Key for this release:

ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKyg/5L/9I9AtPz7zyl3r0YnjD4nClDx3EYhBLHSiqGx

A tiny one line change that removes testing conditions for winpty.

2.4.0 will always use winpty rather than conpty, this release has the same public key as the previous release.

This release closes off a few small bugs, and adds some qol improvements. Most notably rssh now supports connecting via stdio (stdin, stdout).

Features:

• The RSSH client will now add a default port to the connection string if none is defined, i.e if the connection string is tls://your.server.address, it will now add :443 (https://github.com/NHAS/reverse_ssh/issues/148)
• The RSSH client now has a new connection type stdio, which attaches the network io to stdin and stdout respectively (thanks to https://github.com/NHAS/reverse_ssh/issues/149, has a great description about how you'd use this)
• Add arm64 winpty support, if conpty is not available

Bug Fixes:

• When the rssh client tries to use a CONNECT proxy it will no longer look for specific wording and just accept 200 as it can proxy
• Fix winpty binaries being written to non-existent folder in certain situations

Public key for this release:

ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHmuYTF9dbre8hkIxvFt4eRLwmz/u8fjJc/IVUzNd+zg

Tiny release that fixes a bug in the new watch command log functionality.

Bug Fix:

• As per #145, observer registration would happen multiple times (once for each ssh exec or server terminal connection). As such log lines would be duplicated. This has now been moved to only happen once.

A release to close off some open issues and add some new features.

Features:

• Re-add dynamic reverse forwarding from any ssh client. Allowing you to do ssh -R portnumber reverse.ssh.server from any SSH compliant server in order to live off the land
• The RSSH client will now try to automatically use the http_proxy and https_proxy environment variables if they are present
• The watch command now will store history of all connection events (clients connecting and disconnecting) in a file watch.logthe command also now supports-aand-l` to show "all" or a "limited" number of lines from that file

Bug Fixes:

• #122 In long running rssh servers the link command would occasionally fail with a bizarre caching issue, now the cache is cleared if the server encounters this

Public key for this release:

ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFhX5pKRRvClFVn8IZeWUXvBqnIruMaoh7LI6bkPOb9s 

A small release with a bunch of little bug fixes (and one new feature)

Bug Fixes:

• Remote Forwarding now works properly (thanks to #137 pointing out that it was broken), this happened due to ChannelOpenDirectMsg being set in the wrong order, leading to the ssh client rejecting incoming remote connections
• Auto generated python shell script (adding .py to the end of link generated links) now works properly on non-memfd platforms like windows and openbsd (thanks #134)

Features:

• link webserver is now styled to look like an nginx 404 page

Public key for this release:

ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAII9EULf3COVE2o3vcDmynDFBXGXZ0EyEx/d/bTTTMrou 

Small bug fix that (hopefully) stops the RSSH server multiplexer from occasionally getting a nil connection and panicking.

Bug Fix:

• determineProcotol now follows golang standard and returns err rather than just connection to make it easier to handle errors