search for: packet_set_maxsize

...eam compress_init_send_called = 1; debug("Enabling compression at level %d.", level); if (level < 1 || level > 9) fatal("Bad compression level %d.", level); deflateInit(&outgoing_stream, level); } -- 'called' is never set, file packet.c, line 1325: int packet_set_maxsize(int s) { static int called = 0; if (called) { log("packet_set_maxsize: called twice: old %d new %d", max_packet_size, s); return -1; } if (s < 4 * 1024 || s > 1024 * 1024) { log("packet_set_maxsize: bad size %d", s); return -1; } ****** missing: called...

...ession key; encryption turned on. debug1: Installing crc compensation attack detector. debug1: Attempting authentication for someuser. Accepted rsa for someuser from 10.141.33.180 port 1522 debug1: Trying to reverse map address 10.141.33.180. debug1: session_new: init debug1: session_new: session 0 packet_set_maxsize: setting to 4096 debug1: Allocating pty. debug1: Ignoring unsupported tty mode opcode 13 (0xd) debug1: Received request for X11 forwarding with auth spoofing. Packet integrity error (46 != 42) at session.c:358 Disconnecting: Packet integrity error. (34) debug1: Calling cleanup 0x2000175c(0x2000aee0...

...s, but I notice I'm not the only one: http://www.monkey.org/openbsd/archive/misc/0106/msg00918.html Fwiw here are the syslog entries from when that user logged in: Aug 28 12:20:53 vader sshd[14806]: Accepted password for (user) from 171.78.112.20 port 1064 Aug 28 12:20:53 vader sshd[14806]: packet_set_maxsize: setting to 4096 Here is the accounting dump from the same time frame, dunno if it helps: procmail - (user) __ 0.08 secs Tue Aug 28 20:35 (0:00:00.50) bash -S (user) ttyp1 0.25 secs Tue Aug 28 12:20 (8:14:44.00)...

...,11 @@ ssh_exchange_identification(void) chop(client_version_string); chop(server_version_string); debug("Local version string %.100s", client_version_string); + + if (datafellows & SSH_BUG_BIGV1PACKET) { + debug("Found big SSHv1 packet bug, limiting packet size"); + packet_set_maxsize(4 * 1024); + } } /* defaults to 'no' */ -- Darren Tucker (dtucker at zip.com.au) GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69 Good judgement comes with experience. Unfortunately, the experience usually comes from bad judgement.

Heya, I'm trying to convince my company to use OpenSSH instead of the commercial SSH version. I need a little help: 1. What features does OpenSSH offer over commercial SSH (besides being free and open source of course)? 2. Our lawyers want details on the licensing / patents stuff. I have the high level details from the OpenSSH page. I need the nitty gritty like RSA patent# and