search for: openssh_fips

...fips_mode = 0; + break; +#endif case '1': options.protocol = SSH_PROTO_1; break; @@ -637,6 +662,36 @@ log_init(av[0], options.log_level, SYSLOG_FACILITY_USER, 1); seed_rng(); +#ifdef OPENSSL_FIPS +/* + Priority setting: + !command line + env OPENSSH_FIPS + !env OPENSSH_NO_FIPS + ssh_config options (default: false) +*/ + if (fips_mode) { /* !command line */ + if (getenv("OPENSSH_FIPS")) { /* env OPENSSH_FIPS */ + } + else if (getenv("OPENSSH_NO_FIPS")) { /* !env OPENSSH_NO_FIPS */ + fips_mode = 0; + } + else if (options....

...nssh/dev/42808?do=post_view_threaded#42808 . Although the patch is for openssh 4.7, I make some necessary minor changes fit for 5.0. 3) On HP-UX PA 11.23 box, compile openssh (using fipsld instead of cc), which links against FIPS object module and FIPS libcrypto.a generated from step 1. 4) Set OpenSSH_FIPS environment variable to "1", lauch sshd by "sshd -ddd" From the debug information, I can see sshd enters FIPS mode successfully 5) On the same machine, connect sshd by ssh ssh -c 3des-cbc localhost ssh -c aes128-cbc localhost ssh -c aes192-cbc localhost ssh -c ae...

https://bugzilla.mindrot.org/show_bug.cgi?id=1197 halsteaw at yahoo.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |halsteaw at yahoo.com --- Comment #1 from halsteaw at yahoo.com 2010-01-22 03:35:09 EST --- Patches were provided in the mailing list