Displaying 20 results from an estimated 2000 matches similar to: "issue with EGD in openssh"
2000 Jun 20
2
Critical EGD handling in 2.1.1p1
Hi,
when running OpenSSH with EGD as entropy source, the sshd server connects
to the EGD socket and leaves it open to re-seed on the fly.
Unfortunately the connection is not checked when re-seeding, so that
a failure or restart of EGD will lead to a "fatal()" abort of the sshd
server process.
Since a dying server process can not be accepted, I would recommend to
not have sshd call it
2001 Jan 18
1
Announcement: PRNGD 0.9.0 available
Hi!
I have just made the 0.9.0 release of PRNGD available.
PRNGD is the Pseudo Random Number Generator Daemon.
It has an EGD compatible interface and is designed to provide entropy
on systems not having /dev/*random devices.
Software supporting EGD style entropy requests are openssh, Apache/mod_ssl,
Postfix/TLS... Automatic querying of EGD sockets at fixed locations has
been introduced in the
2000 Jul 20
3
fatal: Not enough entropy in RNG
Hi,
I'm running openssh 2.1.1p4 on Solaris 7 (sparc). Occationally, when I
boot up the server, the startup script I wrote to start sshd fails to start
sshd with the following error:
fatal: Not enough entropy in RNG
What am I doing wrong??
Is there anything I can do to prevent this from happening?
Is just restarting sshd a valid thing to do??
Thanks for any thoughts,
David
2001 Jul 11
1
OpenSSL PRNG
Just for peace of mind, can someone who knows the openssh code better than
I do, confirm that openssh doesn't use (in any circumstances) the openssl
prng (since the code in versions prior to 0.9.6b is rather weak).
My understanding is that it doesn't (using either /dev/random, egd, prngd or
the builtin code), but I may have missed some other use of the openssl prng
elsewhere...
-- Jon
2002 Jul 24
3
OpenSSH 3.4p1 "PRNG is not seeded"
I upgraded from OpenSSH_3.0.2p1 to OpenSSH 3.4p1. Starting SSHD or
ssh-keygen I'm getting the "PRNG is not seeded".
I have verified that prngd is running and "egc.pl /var/spool/prngd/pool get"
runs just fine reporting 32800 bits of entropy.
My platform is Solaris 8 (sparc) and I downloaded binaries from
www.sunfreeware.com.
My guess is the build of OpenSSH 3.4.p1 is
2002 Jun 18
1
ssh-keygen hangs with empty prngd.conf - bug ?
Hi,
I use openssh-2.9p2 on an i386 LynxOS system.
Since LynxOS does not have support for /dev/[u]random, I installed openssh
with prngd support.
It so happened by accident on installation that prngd.conf got truncated to
zero size.
With prngd running as such, ssh-keygen just hangs.
I notice similar case with sshd, ssh, ... as all these depend on prngd for
random number.
SMMEstack# /usr/sbin/sshd
2001 Mar 25
2
Bug in bsd-waitpid.c and bsd-nextstep.c
Hi!
The handling of the "status" information in bsd-waitpid.c and bsd-nextstep.c
seems to be bit odd. Patch attached.
Best regards,
Lutz
--
Lutz Jaenicke Lutz.Jaenicke at aet.TU-Cottbus.DE
BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129
Universitaetsplatz
2003 Oct 21
2
HP-UX 10.20 assistance
To Whomever can assist,
I am looking for anyone who has gotten OpenSsh 3.7.1p2 to build under
HP-UX 10.20. I am working with the latest gcc (v. 3.3.1), gmake (v. 3.80),
and Openssl (0.9.7c) and I still can not get OpenSsh to build properly.
It errors out on the build process with a:
loginrec.c:1405: dereferencing pointer to incomplete type
cing pointer to incomplete type
loginrec.c:1514:
2002 Sep 12
4
HPUX 10.20 and OpenSSH 3.4.p1
Hello,
over the last few days I've been attempting to compile openssh-3.4p1 on a HP j5000 (hpux 10.20) but have run
into some problems.
I had found the paper from Kevin Steves and have been following his suggested steps. Perl, zlib, prngd,
tcp_wrappers and openssl all compiled more or less as he described. The configure script runs without protest
but make gets hung up in
2001 Jun 20
8
[Lutz.Jaenicke@aet.TU-Cottbus.DE: 2.9p1: HP-UX 10.20 utmp/wtmp handling broken?]
Hi!
I am resending the following message about problems with utmp handling.
* In the meantime I had some request in private mail from people asking
whether I have new information.
* The problem is still persistant in 2.9p2.
* My own new investigations show, that the problem only appears with
protocol 2, not with protocol 1, I therefore only started to note it
when protocol 2 became the
2001 May 25
4
Upgraded to 2.9p1 with no luck..
Howdy,
After upgrading to 2.9 (OpenSSH_2.9p1, SSH protocols 1.5/2.0, OpenSSL
0x0090600f)
I'm unable to ssh between two systems any more (the two that I've upgraded).
I've recompiled from the original source several times, each time with no
errors,
regenerated host keys, regenerated client keys (using rsa), etc., to no
avail.
Below are some relevant snippets of debugging output
2001 Feb 20
3
ssh-agent and id_dsa
Hi!
I am distributing 2.5.1p1 for production use on my system by now and prepare
switching to protocol 2 as default protocol.
I just noted, that ssh-agent can be used for protocol 1 and 2, but the
keys kept in ssh-agent are not compared against keys in .ssh.
Example: I have a DSA key in id_dsa which I load into ssh-agent on login.
When connecting to an account accepting the key everything is
2001 Jul 03
2
2.9p?: connection hangs with agent forwarding
Hi!
when using agent forwarding, the connection hangs on exit, if the agent has
been accessed.
Symptoms:
- On the client side, when the agent is accessed, the following output
is being logged:
debug1: channel 1: new [authentication agent connection]
debug1: confirm auth-agent at openssh.com
debug1: channel 1: rcvd eof
debug1: channel 1: output open -> drain
debug1: channel 1: obuf empty
2001 Oct 20
8
Recent openssl is required for OPENSSL_free [Re: Please test snapshots for 3.0 release] (fwd)
No response yet, so resending.
--
Pekka Savola "Tell me of difficulties surmounted,
Netcore Oy not those you stumble over and fall"
Systems. Networks. Security. -- Robert Jordan: A Crown of Swords
---------- Forwarded message ----------
Date: Fri, 12 Oct 2001 09:44:54 +0300 (EEST)
From: Pekka Savola <pekkas at netcore.fi>
To: Damien Miller
2000 Jul 18
5
scp not shutting down in 2.1.1p4
Hi!
as I just noted, after scp the connection does not shut down properly.
When I do a "scp file targethost:path", on targethost a "sshd" process is
left running. I do use
--with-default-path="/usr/local/openssh/bin:/usr/bin:/usr/local/bin"
to assure, that the corrensponding openssh-scp is used.
It also seems, that normal sessions are not always closed properly.
2000 May 10
3
Trying to build OpenSSH-2.1.0 on HP-UX 10.20
Hi,
I just tried building of OpenSSH-2.1.0 on HP-UX 10.20 and found the following
items:
- The configure command I used at the beginning:
CC=cc CFLAGS="-Ae +O2 +DAportable" CPPFLAGS="-I/usr/local/include -I/usr/local/s
sl/include -I/usr/include/X11R6" LDFLAGS="-L/usr/local/lib -L/usr/local/ssl/lib
-L/usr/lib/X11R6" ./configure --prefix=/usr/local/openssh
2001 Feb 12
1
OpenSSH (CVS) performance observations
Hi!
I have experimented a bit with the latest OpenSSH from the CVS archive.
I could realize some connections succesfully, but I experienced performance
problem during the connection phase.
It seems, that the client needs quite some computer time just after
debug: Got SSH2_MSG_KEX_DH_GEX_GROUP.
By inserting test-printouts, I verifyed that the dh_gen_key(dh); call
seems to take that long. On a HP
2001 Jan 09
3
OpenSSH on Reliant UNIX
Hello, it's me again !
I tried to compile / install OpenSSH on our Reliant UNIX
system, OS version 5.45 (and 5.44).
The following problems did appear:
1. OpenSSL-0.9.5a will not compile out of the box.
The problem on RU 5.45 is, that the compiler does
support "long long" but NOT "unsigned long long".
The latter just provokes the error message
"superfluous
2000 Nov 17
2
Why does ssh try to run df, netstat, arp ...?
Howdy,
I recently had a problem with one of our servers (crashed due to power
failure :-). While this shouldn't have been a problem for most
of the workstations and servers on the network I noticed that I
wasn't able to use ssh anymore. Ssh would simply hang during the connection.
rsh and telnet however were able to connect without problem so there
was no problem with the destination or
2000 Oct 02
1
Open connections when using agent-forwarding
Hi!
I have problems with connections being left open with both 2.2.0p1 and the
latest snapshot when using agent-forwarding. (I didn't use this with older
versions, so I don't know whether this problem is older.)
Scenario:
I have a secret key that I run with ssh-agent on host "host-A". I then connect
to "host-B" using 'slogin -A host-B'. When executing a