[mosh-users] mosh 1.2.3 released

Keith Winstein keithw at MIT.EDU
Fri Oct 19 16:27:34 EDT 2012

Hello Mosh users and developers,

mosh 1.2.3 has been released.

The source code is at:

SHA-1: 3bbcc560a5968806681465d83758d5c3abee9607
SHA-256: 93f09fda77e57f05485a61f3ac679bf9f3f359a9b0b93c216ddd53cd124a768f

This maintenance release makes a number of improvements to mosh 1.2.2
to improve speed, robustness, and security. It includes new
implementations of AES and OCB that are more resilient to possible
timing leakage and adds support for Solaris, licensing compatibility
with Apple's iOS, and power-saving improvements to benefit the Android
client. The changelog is:

* Security improvements:
  - Use OpenSSL AES implementation
  - Update AES-OCB implementation (Keegan McAllister)
  - Don't let bad server dictate IP (Felix Groebert)

* New features:
  - Client hops ports to survive challenging client-side firewall
  - Server stops sending to save client power (Daniel Drown)
  - Set DiffServ code point and ECN-capable (Dave Täht)
  - Slow down if explicit congestion notification received
  - Warn about unattached Mosh sessions on login
  - Compatible with KDE konsole (uses BEL to terminate OSC)
  - Improved heuristic about color of predicted characters

* Bug fixes:
  - Improved performance on systems with expensive time
  - No longer choke on "ffff::" address for hosts with IPv6
  - More conservative MTU and datagram sizing

* Platform support:
  - Build on Solaris and IllumOS (Timo Sirainen, Ira Cooper)
  - Build on ARM with gcc 4.7 (Alexander Chernyakhovsky)

* Licensing changes:
  - Allow distribution on Apple App Stores
  - Allow linking with OpenSSL


mosh 1.2.3 is backwards-compatible with mosh clients back to 0.96 and
mosh servers back to 1.0.9. Please let us know of any problems

Best regards from the Mosh team,

More information about the mosh-users mailing list