]>
Commit | Line | Data |
---|---|---|
1 | [ A Japanese translation of this document is available at | |
2 | [ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html | |
3 | [ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp> | |
4 | ||
5 | ******* IMPORTANT | |
6 | * On systmes which lack a /dev/random driver, version of this port | |
7 | * prior to 1.2.2 were not correctly seeding OpenSSL's random number | |
8 | * pool. This resulted in lower quality RSA keys being generated. If | |
9 | * you generated host or user keys with v1.2.2 or previous versions, | |
10 | * please generate new ones using a more recent version. | |
11 | ||
12 | This is the port of OpenBSD's excellent OpenSSH to Linux and other | |
13 | Unices. | |
14 | ||
15 | OpenSSH is based on the last free version of Tatu Ylonen's SSH with | |
16 | all patent-encumbered algorithms removed (to external libraries), all | |
17 | known security bugs fixed, new features reintroduced and many other | |
18 | clean-ups. More information about SSH itself can be found in the file | |
19 | README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck, | |
20 | Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a | |
21 | homepage at http://www.openssh.com/ | |
22 | ||
23 | This port consists of the re-introduction of autoconf support, PAM | |
24 | support (for Linux and Solaris), EGD[1] support and replacements for | |
25 | OpenBSD library functions that are (regrettably) absent from other | |
26 | unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD | |
27 | and Irix. Support for AIX, SCO, NeXT and other Unices is underway. | |
28 | This version actively tracks changes in the OpenBSD CVS repository. | |
29 | ||
30 | The PAM support is now more functional than the popular packages of | |
31 | commercial ssh-1.2.x. It checks "account" and "session" modules for | |
32 | all logins, not just when using password authentication. | |
33 | ||
34 | OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4]. | |
35 | ||
36 | There is now several mailing lists for this port of OpenSSH. Please | |
37 | refer to http://www.openssh.com/list.html for details on how to join. | |
38 | ||
39 | Please send bug reports and patches to the mailing list | |
40 | openssh-unix-dev@mindrot.org. The list is open to posting by | |
41 | unsubscribed users. | |
42 | ||
43 | If you are a citizen of the USA or another country which restricts | |
44 | export of cryptographic products, then please refrain from sending | |
45 | crypto-related code or patches to the list. We cannot accept them. | |
46 | Other code contribution are accepted, but please follow the OpenBSD | |
47 | style guidelines[5]. | |
48 | ||
49 | Please refer to the INSTALL document for information on how to install | |
50 | OpenSSH on your system. The UPGRADING document details differences | |
51 | between this port of OpenSSH and F-Secure SSH 1.x. | |
52 | ||
53 | Damien Miller <djm@ibs.com.au> | |
54 | Internet Business Solutions | |
55 | ||
56 | Miscellania - | |
57 | ||
58 | This version of SSH is based upon code retrieved from the OpenBSD CVS | |
59 | repository which in turn was based on the last free | |
60 | version of SSH released by Tatu Ylonen. | |
61 | ||
62 | References - | |
63 | ||
64 | [1] http://www.lothar.com/tech/crypto/ | |
65 | [2] ftp://ftp.freesoftware.com/pub/infozip/zlib/ | |
66 | [3] http://www.openssl.org/ | |
67 | [4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris) | |
68 | [5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current | |
69 |