Displaying 20 results from an estimated 1000 matches similar to: "Resolver changes broke AIX & HPUX"
2003 Sep 08
1
please test (HEADER.ad)
Could someone with HEADER.ad in arpa/nameser.h please test the
attached patch (against current) to see it it's detected.
None of my platforms have the ad member.
config.h will end up with "#define HAVE_HEADER_AD".
--
Tim Rice Multitalents (707) 887-1469
tim at multitalents.net
-------------- next part --------------
--- openssh/configure.ac.old 2003-09-08 06:33:33.000000000
2007 Mar 12
1
Redefinition of _res in getrrsetbyname.c
I've been trying to figure out why I can't seem to use SSHFP
fingerprints delivered via DNSSEC, which led me to try to figure out why
OpenSSH won't use DNSSEC on my NetBSD-4-branch platform.
It turns out that around line 70 in openbsd-compat/getrrsetbyname.c, we
have the following:
/* to avoid conflicts where a platform already has _res */
#ifdef _res
# undef _res
2012 May 09
4
feature request: modify getrrsetbyname() to use libunbound
Dear OpenSSH Developers,
I'm a member of the Debian System Administration (DSA) team. [1] We
manage the Debian Projects computing infrastructure.
Recently, DSA had the opportunity to address a member's request that we
begin using certificates to authenticate Debian Project machines to ssh
clients. We provided a lengthy reply, the summary of which is "we
publish SSHFP records; use
2003 Nov 06
2
openssh-3.7.1p2 on HP-UX 10.20
Hello,
I have dowloaded all that is required to build a working OpenSSH on HP-UX
10.20 from the HP-UX Porting and Archibve centre (this seems to be the only
way to go for 10.20). Make/install of all prerequisites has scucceeded. Now
make of openssh-3.7.1p2 gives the following:
gcc -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I. -I.. -I. -I./..
-I/usr/local/openssl-0.9.7b/include
2006 Apr 21
3
OpenSSH DNS resolution failure on IRIX 5.3: request to fix
Dear developers,
as reported earlier, recent versions of OpenSSH (4.3p1, 4.3p2 as well
as the current CVS) on IRIX 5.3 exhibit a DNS resolution failure.
Even for perfectly valid hostnames they return "no address associated
with name".
After some digging through the code I found what is causing this
strange behaviour. Basically it was introduced with the following
change:
2005 Nov 04
1
[Bug 1111] memory leak in openbsd-compat/getrrsetbyname.c, function: getrrsetbyname
http://bugzilla.mindrot.org/show_bug.cgi?id=1111
Summary: memory leak in openbsd-compat/getrrsetbyname.c,
function: getrrsetbyname
Product: Portable OpenSSH
Version: 4.2p1
Platform: Other
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: ssh
AssignedTo:
2003 Aug 03
2
[PATCH] Fix minor breakage on Cygwin: auth-passwd.c and session.c
Hi All.
I tried building -current on Cygwin but got a couple of minor errors.
The first is in auth-passwd.c where it appears Ben got a bit
over-enthusiastic cleaning up :-). The patch restores the relevant
"#ifdef HAVE_CYGWIN" fragment.
The second is in the send-break code in session.c, which won't compile
because Cygwin apparently doesn't have TIOCSBRK and TIOCCBRK ioctls.
2007 Mar 16
2
[Bug 1299] Remove redefinition of _res in getrrsetbyname.c
http://bugzilla.mindrot.org/show_bug.cgi?id=1299
Summary: Remove redefinition of _res in getrrsetbyname.c
Product: Portable OpenSSH
Version: 4.5p1
Platform: All
OS/Version: NetBSD
Status: NEW
Keywords: patch
Severity: major
Priority: P2
Component: ssh
AssignedTo: bitbucket at mindrot.org
2007 May 21
1
[PATCH] Add support for ldns
Hi,
as discussed before, we're trying to make use of SSHFP records (RFC
4255) to publish host key fingerprints in the DNS.
However, some non-OpenBSD platforms don't support DNSSEC in the native
resolver (e.g. glibc), which renders the whole thing quite useless,
since openssh correctly requires the RRs to be signed and validated.
The following patch adds support for ldns, an external
2009 Jun 29
2
openbsd-compat/getrrsetbyname.c: answer buffer size too large for EDNS0 and glibc
Hello.
I have an issue with SSHFP lookups using "VerifyHostKeyDNS=yes" and
"options edns0" in /etc/resolv.conf (glib >= 2.6).
getrrsetbyname() calls res_query() with a maximum buffer size of 65536.
The glibc resolver truncates this value to 16 bits, reducing the query's
advertised buffer size to 0.
BIND appears to ignore it while Unbound returns a server failure.
2005 May 07
2
[Bug 1033] Fix compile-time warnings
http://bugzilla.mindrot.org/show_bug.cgi?id=1033
Summary: Fix compile-time warnings
Product: Portable OpenSSH
Version: -current
Platform: All
OS/Version: All
Status: NEW
Severity: trivial
Priority: P2
Component: Miscellaneous
AssignedTo: openssh-bugs at mindrot.org
ReportedBy: dtucker at
2003 Dec 30
8
[Bug 651] SCO 3.2v4.2 and OpenSSH 3.7.1p1 --> connection hangs and does not close (ssh2 only)
http://bugzilla.mindrot.org/show_bug.cgi?id=651
------- Additional Comments From vikashb at comparexafrica.co.za 2003-12-30 16:39 -------
tried openssh-SNAP-20031223
does not compile:
(cd openbsd-compat && make)
gcc -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I. -I.. -I. -I./..
-I/usr/local/ssl/include -Dftruncate=chsize -I/usr/local/include
-DHAVE_CONFIG_H -c
2012 Jun 26
2
[Bug 2022] New: ssh segfaults when using ldns, SSHFP, a DNSSEC-enabled resolver and a CNAME
https://bugzilla.mindrot.org/show_bug.cgi?id=2022
Bug #: 2022
Summary: ssh segfaults when using ldns, SSHFP, a DNSSEC-enabled
resolver and a CNAME
Classification: Unclassified
Product: Portable OpenSSH
Version: 6.0p1
Platform: All
OS/Version: All
Status: NEW
Severity: normal
2003 Sep 22
0
compile error on HPUX
Hi
I am trying to compile openssh-3.7.1p1 on HPUX version 11.00 and 11.22.
I ran the configure with "--with-dns" option ( I know it is still in
experimental stage ). The configure ran ok and in compile time I got the error:
gmake[1]: Entering directory `/net/ia64/lavasani/ssh/openssh-3.7.1p1/openssh-3.7.1p1/openbsd-compat'
gcc -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I.
2008 Apr 02
3
[Bug 1455] New: ssh client ignoring ad bit in dns response - OSX 10.5
https://bugzilla.mindrot.org/show_bug.cgi?id=1455
Summary: ssh client ignoring ad bit in dns response - OSX 10.5
Classification: Unclassified
Product: Portable OpenSSH
Version: 4.9p1
Platform: ix86
2001 Jul 09
1
[patch] SSH host keys in DNS
I've made some changes to the 2.9p2 release code to add support for
using DNSSEC lookups to check host keys. I've also made the changes to
the OPENBSD_2_9 tree. Both patches are available at
ftp://ftp.tislabs.com/pub/fmeshd/ as
openssh.[portable,openbsd].patch.20010709
I'm really looking for testers at this time. Right now the lookups are
done using a getrrsetbyname() function that is
2009 Sep 10
1
need -lresolv on MacOSX 10.6
Hi,
When building OpenSSH 5.2p1 on MacOSX 10.6.0, I get the following ld error
gcc -o ssh ssh.o readconf.o clientloop.o sshtty.o sshconnect.o
sshconnect1.o sshconnect2.o mux.o -L. -Lopenbsd-compat/
-fstack-protector-all -lssh -lopenbsd-compat -lcrypto -lz
Undefined symbols:
"_res_9_query", referenced from:
_getrrsetbyname in libopenbsd-compat.a(getrrsetbyname.o)
2004 Mar 23
2
A question on Compilation errors...
Hello
I am attempting to build on a LynxOS platform and am using a old
version of zlib and OpenSSL-0.9.6a. I get past the configure stage by
ignoring the zlib version check. However, at make stage I run into the
following undefineds. Any idea what may be causing this. I am using
version 3.8p1 of OpenSSH.
Thank you in advance for your response
Amba
(cd openbsd-compat && make)
2013 Jun 09
7
[Bug 2119] New: SSHFP with DNSSEC – no trust anchors given, validation always fails
https://bugzilla.mindrot.org/show_bug.cgi?id=2119
Bug ID: 2119
Summary: SSHFP with DNSSEC ? no trust anchors given, validation
always fails
Product: Portable OpenSSH
Version: 6.2p1
Hardware: Other
OS: Linux
Status: NEW
Severity: enhancement
Priority: P5
Component:
2006 Feb 06
1
Compile warning report of openssh 4.3p1 on Intel Macs
Hi.
I was compiling openssh 4.3p1 on Apple's iMac Core Duo computer and
came across following warnings.
configure: WARNING: net/if.h: present but cannot be compiled
configure: WARNING: net/if.h: check for missing prerequisite
headers?
configure: WARNING: net/if.h: see the Autoconf documentation
configure: WARNING: net/if.h: section "Present But Cannot Be
Compiled"