]>
Commit | Line | Data |
---|---|---|
6b1f3fdb | 1 | [ A Japanese translation of this document is available at |
2 | [ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html | |
3 | [ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp> | |
4 | ||
e21f1caa | 5 | ******* IMPORTANT |
6 | * On systmes which lack a /dev/random driver, this port of | |
7 | * OpenSSH-1.2.2 was not correctly seeding OpenSSL's random number | |
8 | * pool. This resulted in lower quality RSA keys being generated. If | |
9 | * you generated host or user keys with v1.2.2, please generate new | |
10 | * ones using a more recent version. | |
11 | ||
06479889 | 12 | This is the port of OpenBSD's excellent OpenSSH to Linux and other |
13 | Unices. | |
8efc0c15 | 14 | |
97784962 | 15 | OpenSSH is based on the last free version of Tatu Ylonen's SSH with |
1cbe6fb2 | 16 | all patent-encumbered algorithms removed (to external libraries), all |
17 | known security bugs fixed, new features reintroduced and many other | |
18 | clean-ups. More information about SSH itself can be found in the file | |
19 | README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck, | |
20 | Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a | |
21 | homepage at http://www.openssh.com/ | |
8efc0c15 | 22 | |
4f6716dc | 23 | This port consists of the re-introduction of autoconf support, PAM |
1cbe6fb2 | 24 | support (for Linux and Solaris), EGD[1] support, SOCKS support (using |
25 | the Dante [6] libraries and replacements for OpenBSD library functions | |
26 | that are (regrettably) absent from other unices. This port has been | |
27 | best tested on Linux, Solaris, HPUX, NetBSD and Irix. Support for AIX, | |
28 | SCO, NeXT and other Unices is underway. This version actively tracks | |
29 | changes in the OpenBSD CVS repository. | |
8efc0c15 | 30 | |
97784962 | 31 | The PAM support is now more functional than the popular packages of |
32 | commercial ssh-1.2.x. It checks "account" and "session" modules for | |
4ae1982f | 33 | all logins, not just when using password authentication. |
8efc0c15 | 34 | |
0bc5b6fb | 35 | OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4] and |
36 | Dante[6]. To build the GNOME[5] pass-phrase requester | |
37 | (--with-gnome-askpass), you will need the GNOME libraries installed. | |
aa51e7cc | 38 | |
1cbe6fb2 | 39 | There is now several mailing lists for this port of OpenSSH. Please |
40 | refer to http://violet.ibs.com.au/openssh/list.html for details on how | |
41 | to join. | |
c6ab4a33 | 42 | |
1cbe6fb2 | 43 | Please send bug reports and patches to the mailing list |
44 | openssh-unix-dev@mindrot.org. The list is currently open to posting by | |
45 | unsubscribed users. | |
7303768f | 46 | |
8bc7973f | 47 | Please refer to the INSTALL document for information on how to install |
1cbe6fb2 | 48 | OpenSSH on your system. The UPGRADING document details differences |
49 | between this port of OpenSSH and F-Secure SSH 1.x. | |
4ae1982f | 50 | |
97784962 | 51 | Damien Miller <djm@ibs.com.au> |
52 | Internet Business Solutions | |
8efc0c15 | 53 | |
97784962 | 54 | Miscellania - |
8efc0c15 | 55 | |
97784962 | 56 | This version of SSH is based upon code retrieved from the OpenBSD CVS |
1cbe6fb2 | 57 | repository which in turn was based on the last free |
4f080ebe | 58 | version of SSH released by Tatu Ylonen. |
8efc0c15 | 59 | |
e1a9c08d | 60 | References - |
61 | ||
4f6716dc | 62 | [1] http://www.lothar.com/tech/crypto/ |
63 | [2] http://www.cdrom.com/pub/infozip/zlib/ | |
64 | [3] http://www.openssl.org/ | |
65 | [4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris) | |
66 | [5] http://www.gnome.org/ | |
0bc5b6fb | 67 | [6] http://www.inet.no/dante |
4f080ebe | 68 |