Just to bring everyone up to date, could we get a report on the status
of support for the 2.x protocol? The home page says "next major
release"
- is that 1.3 or 2.0? And is there any feel for when it'll be generally
available?
--
John Hardin
Internal Systems Administrator
Apropos Retail Management Systems, Inc.
<johnh at aproposretail.com>
On Mon, May 01, 2000 at 03:02:03PM -0700, John Hardin wrote:> Just to bring everyone up to date, could we get a report on the status > of support for the 2.x protocol?why do you want SSH2? % cat README.openssh2 $Id: README.openssh2,v 1.7 2000/04/28 08:10:20 markus Exp $ howto: 1) generate server key: $ ssh-keygen -d -f /etc/ssh_host_dsa_key -N '' 2) enable ssh2: server: add 'Protocol 2,1' to /etc/sshd_config client: ssh -o 'Protocol 2,1', or add to .ssh/config 3) DSA authentication similar to RSA (add keys to ~/.ssh/authorized_keys2) interop w/ ssh.com dsa-keys: ssh-keygen -f /key/from/ssh.com -X >> ~/.ssh/authorized_keys2 and vice versa ssh-keygen -f /privatekey/from/openssh -x > ~/.ssh2/mykey.pub echo Key mykey.pub >> ~/.ssh2/authorization works: secsh-transport: works w/o rekey proposal exchange, i.e. different enc/mac/comp per direction encryption: blowfish-cbc, 3des-cbc, arcfour, cast128-cbc mac: hmac-md5, hmac-sha1, (hmac-ripemd160) compression: zlib, none secsh-userauth: passwd and pubkey with DSA secsh-connection: pty+shell or command, flow control works (window adjust) tcp-forwarding: -L works, -R incomplete x11-fwd dss/dsa: host key database in ~/.ssh/known_hosts2 client interops w/ sshd2, lshd server interops w/ ssh2, lsh, ssh.com's Windows client, SecureCRT, F-Secure SSH Client 4.0 server supports multiple concurrent sessions (e.g. with SSH.com Windows client) todo: re-keying secsh-connection features: tcp-forwarding, agent-fwd auth other than passwd, and DSA-pubkey: keyboard-interactive, (PGP-pubkey?) config server-auth w/ old host-keys cleanup advanced key storage? keynote sftp -markus $Date: 2000/04/28 08:10:20 $> The home page says "next major release"next major release of OpenBSD, i.e. OpenBSD 2.7> - is that 1.3 or 2.0? And is there any feel for when it'll be generally > available?you can get OpenSSH w/ proto 1 and 2 support from the openbsd cvs right now. -markus
On Wed, 10 May 2000 01:35:28 +0200 (CEST), Magnus Holmberg <pucko at lysator.liu.se> wrote:> > Where can i find openssl-0.9.5a ? > > All I can find on rpmfind.net is openssl-0.9.5-1You will find RPMs for openssl 0.9.5a in the following locations: Austria: http://gd.tuwien.ac.at/utils/shells/openssh/files/support/ ftp://gd.tuwien.ac.at/utils/shells/openssh/files/support/ Australia: http://the.wiretapped.net/security/cryptography/ssh/OpenSSH/files/support/ ftp://the.wiretapped.net/security/cryptography/ssh/OpenSSH/files/support/ Canada: ftp://ftp.localhost.ca/pub/openssh/files/support/ Czech Republic: http://openssh.gin.cz/files/support/ Greece: ftp://ftp.duth.gr/pub/OpenSSH/files/support/ Germany: ftp://ftp.franken.de/pub/Linux/openssh/files/support/ ftp://ftp.gigabell.net/pub/openssh/files/support/ Holland: Hungary: ftp://ftp.tvnet.hu/pub/openssh/files/support/ http://ftp.tvnet.hu/pub/openssh/files/support/ Japan: http://www.unixuser.org/mirror/openssh/files/support/ Mexico: ftp://ftp.styx.net/mirrors/crypto/openssh/files/support/ Slovakia: ftp://rak.isternet.sk/pub/linux/openssh/files/support/ http://rak.isternet.sk/pub/linux/openssh/files/support/ Switzerland: ftp://sunsite.cnlab-switch.ch/mirror/OpenSSH/support/ http://sunsite.cnlab-switch.ch/www/mirror/OpenSSH/support/ UK: http://www.firedrake.org/openssh/files/support/ ftp://ftp.firedrake.org/openssh/files/support/ Taiwan: http://openssh.fhl.net/files/support/ ftp://ftp.fhl.net/pub/openssh/files/support/ Master site (please use a mirror): http://violet.ibs.com.au/openssh/files/support/ Note that the mirror in Belgium http://mirror.grmbl.com/openssh/files/support/ has NOT been updated to include them. -- Mark
re, On Tue, 9 May 2000, Mark D. Baushke wrote:> Note that the mirror in Belgium > http://mirror.grmbl.com/openssh/files/support/ > has NOT been updated to include them.Now it has :) There was something wrong with our cronjobs. Sorry for the inconvenience. /bye Bram at grmbl.com -- [finger bram at vulva.grmbl.com] [http www.grmbl.com/~bram ]