| | 1 | [ A Japanese translation of this document is available at |
| | 2 | [ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html |
| | 3 | [ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp> |
| | 4 | |
| | 5 | ******* IMPORTANT |
| | 6 | * On systmes which lack a /dev/random driver, version of this port |
| | 7 | * prior to 1.2.2 were not correctly seeding OpenSSL's random number |
| | 8 | * pool. This resulted in lower quality RSA keys being generated. If |
| | 9 | * you generated host or user keys with v1.2.2 or previous versions, |
| | 10 | * please generate new ones using a more recent version. |
| | 11 | |
| | 12 | This is the port of OpenBSD's excellent OpenSSH to Linux and other |
| | 13 | Unices. |
| | 14 | |
| | 15 | OpenSSH is based on the last free version of Tatu Ylonen's SSH with |
| | 16 | all patent-encumbered algorithms removed (to external libraries), all |
| | 17 | known security bugs fixed, new features reintroduced and many other |
| | 18 | clean-ups. More information about SSH itself can be found in the file |
| | 19 | README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck, |
| | 20 | Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a |
| | 21 | homepage at http://www.openssh.com/ |
| | 22 | |
| | 23 | This port consists of the re-introduction of autoconf support, PAM |
| | 24 | support (for Linux and Solaris), EGD[1] support and replacements for |
| | 25 | OpenBSD library functions that are (regrettably) absent from other |
| | 26 | unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD |
| | 27 | and Irix. Support for AIX, SCO, NeXT and other Unices is underway. |
| | 28 | This version actively tracks changes in the OpenBSD CVS repository. |
| | 29 | |
| | 30 | The PAM support is now more functional than the popular packages of |
| | 31 | commercial ssh-1.2.x. It checks "account" and "session" modules for |
| | 32 | all logins, not just when using password authentication. |
| | 33 | |
| | 34 | OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4]. |
| | 35 | |
| | 36 | There is now several mailing lists for this port of OpenSSH. Please |
| | 37 | refer to http://www.openssh.com/list.html for details on how to join. |
| | 38 | |
| | 39 | Please send bug reports and patches to the mailing list |
| | 40 | openssh-unix-dev@mindrot.org. The list is open to posting by |
| | 41 | unsubscribed users. |
| | 42 | |
| | 43 | If you are a citizen of the USA or another country which restricts |
| | 44 | export of cryptographic products, then please refrain from sending |
| | 45 | crypto-related code or patches to the list. We cannot accept them. |
| | 46 | Other code contribution are accepted, but please follow the OpenBSD |
| | 47 | style guidelines[5]. |
| | 48 | |
| | 49 | Please refer to the INSTALL document for information on how to install |
| | 50 | OpenSSH on your system. The UPGRADING document details differences |
| | 51 | between this port of OpenSSH and F-Secure SSH 1.x. |
| | 52 | |
| | 53 | Damien Miller <djm@ibs.com.au> |
| | 54 | Internet Business Solutions |
| | 55 | |
| | 56 | Miscellania - |
| | 57 | |
| | 58 | This version of SSH is based upon code retrieved from the OpenBSD CVS |
| | 59 | repository which in turn was based on the last free |
| | 60 | version of SSH released by Tatu Ylonen. |
| | 61 | |
| | 62 | References - |
| | 63 | |
| | 64 | [1] http://www.lothar.com/tech/crypto/ |
| | 65 | [2] ftp://ftp.freesoftware.com/pub/infozip/zlib/ |
| | 66 | [3] http://www.openssl.org/ |
| | 67 | [4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris) |
| | 68 | [5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current |
| | 69 | |
andersk / openssh.git / blame_incremental