similar to: openSSH/openSSL question.

Damien Miller <djm at mindrot.org> wrote: On 29 Dec 2000, sunil vallamkonda wrote: > Hello, > > Looking at: > http://www.openssh.com/features.html > > Under 'Free Licensing' section: > > "any licensed or patented components are chosen from > external libraries (e.g. OpenSSL)" > > Can someone please enlighten me which > components

Looking at openSSH INSTALL: To generate a host key, run "make host-key". Alternately you can do so manually using the following commands: ssh-keygen -b 1024 -f /etc/ssh/ssh_host_key -N "" ssh-keygen -d -f /etc/ssh/ssh_host_dsa_key -N "" But when I try latter, I get: (gdb) n 1 0x35a6 in save_private_key_ssh2 ( filename=0xb2d2c

I see that: SSH uses the following ciphers for encryption: Cipher SSH1 SSH2 DES yes no 3DES yes yes IDEA yes no Blowfish yes yes Twofish no yes Arcfour no yes Cast128-cbc no yes Two ques re: sshd: 1) Using openssh, how do I configure which

Has anyone had any experience with any of the BSafe toolkits that are available and contain support for the RSA public key algorithms? I would like to use one of RSA's toolkits in a port of a Windows OpenSSH client that I am working on, in order to avoid any licensing issues from RSA. Can anyone recommend a good toolkit? I understand that there a number of them, such as BSafe SSL-C, SLPlus,

I have just checked in a change which makes PAM support optional and disabled by default. Previously PAM support was detected and enabled automatically if found. The change was made because there is no workable way to make PAM work 'out of the box'. Each vendor implements PAM a little differently and there appears to be no standard on the naming of modules or the augments they take. To

hi, i am told that ssh-keygen gets bus errors on solaris 2.6? has anyone heard about this before? thanks -markus

--- auth1.c.orig Sat Feb 3 18:17:53 2001 Bringa AIX modes in line with latest changes to auth1.c +++ auth1.c Sat Feb 3 18:19:15 2001 @@ -347,7 +347,7 @@ if (authctxt->failures++ > AUTH_FAIL_MAX) { #ifdef WITH_AIXAUTHENTICATE - loginfailed(user,get_canonical_hostname(),"ssh"); +

I don't already figure out what is the real impact of this but I think there is a typo in function sigchld_handler() in serverloop.c (l 75). It is written if (WIFEXITED(child_wait_status) || WIFSIGNALED(child_wait_status)) child_terminated = 1; child_has_selected = 0; But I think one actually means: if (WIFEXITED(child_wait_status) || WIFSIGNALED(child_wait_status)) {

Hi! I had some fight with ssh-add this morning that I have now tracked down to a change recently made. I run "ssh-add < /dev/null" to launch (x11-)ssh-askpass from the CDE startup. Unfortunately, no keys are added to ssh-agent! Reason: Between 2.2.0p1 (ssh-add.c 1.20) and now (ssh-add 1.22) the input reading from ssh-askpass was changed from read() to atomicio(). 91c120 <

The manual page for ssh-keygen hides option "-d" almost: It's not listed in the usual way: The options are as follows: -b bits Specifies the number of bits in the key to create. Minimum is 512 bits. Generally 1024 bits is considered sufficient, and key sizes above that no longer improve security but make things slow-

I'd like to report a problem I found with the OpenSSH client talking to the SSH 2.3.0 server. client: i686-pc-linux (Debian 2.2, kernel 2.2.18pre19, glibc-2.1.3), SSH-2.0-OpenSSH_2.3.0p1 (built by me from source, but the same problem occurs with ssh_2.2.0p1-1.1 as shipped with Debian 2.2). server: sparc-sun-solaris2.7, SSH-2.0-2.3.0 SSH Secure Shell (non-commercial) Problem: some time

where is --with-default-path= documented? in the INSTALL? in the FAQ? it should be probably a FAQ. perhaps configure should print a warning/notice if scp is installed in a non-standard path? -m -------------- next part -------------- An embedded message was scrubbed... From: "Horng-Twu Lihn" <htlihn at telcordia.com> Subject: Re: need help on scp Date: Mon, 11 Dec 2000 09:52:26

COPYING.Ylonen contains: [ GMP is now external. No more GNU licence. ] I don't see how GMP is linked in at all. rms asked me to look into this, because this might constitute a license conflict. Thanks for your help! -- No matter how big the bell, if you only tap it, it can give out only a faint sound. We must understand thoroughly that the weakness of the blow, not a fault of the bell

Could someone add this autogen.sh script to the toplevel of openssh_cvs? Many projects include an autogen.sh script so that folks need not remember what auto commands need to get run and in what order. % cat autogen.sh #!/bin/sh # Run this program (./autogen.sh) after changing any of # the files that are used to automatically generate # other files. #aclocal autoheader autoconf #automake

Dear all, is it possible to specify the default paths in the appropriate configuration of the Daemon ? If not, wouldn't it make sense to include that feature as the configuration files get parsed anyway ? What do you mean ? Kind regards, Lukas -- Lukas Ruf Swiss Federal Institute of Technology Office: ETZ-G61.2 Computer Engineering

It would be very useful if openssh could have the same sort of hostinstall target that traditional ssh does. The ssh programs only have to be installed once, for central distribution via nfs or rdist or whatever, but every host needs its key ... Thanks for a great program. karl at gnu.org

Hi, I just ltraced ssh to see why it prints the lastlog twice instead of one time. I think the bug seems to be in the parsing of the lastlog-entry and I especially think that the function lastlog_populate_entry is the buggy one, but I'm not sure, as I'm not very familar with the code. So if someone of you, would please trace this bug down and fix it, I would really appreciate that.

Hi, I try to get OpenSSH working on Compaq's Tru64 Unix (alias Digital Unix) Version 5.1. It compiles smootly with OpenSSL-0.9.6, but I observer some odd things. (A) AS SERVER The authenification via .ssh/known_host doesn't work. I have the same sshd_config as on FreeBSD (OpenSSH 2.2.0), where it works. sshd -d -d: ----------- debug1: sshd version OpenSSH_2.3.0p1 ... RSA key generation

Dear all, trying to install OpenSSH 2.3.0p1 on SunOS 5.7 Generic_106541-12 sun4u sparc SUNW,Ultra-30 always leads to the result ./configure [...] checking for deflate in -lz... no configure: error: *** zlib missing - please install first *** I installed zlib-1.1.3 with its default directories and I also installed openSSL without problems. Strange to me that on Linux 2.2.18 I

there is now a draft: http://www.ietf.org/internet-drafts/draft-ietf-secsh-filexfer-00.txt if someone could please check whether sftp-server.c comlies :)