Portable OpenSSH
Go to file
Damien Miller 2ccf661cbe - Merged more OpenBSD CVS changes:
[auth-krb4.c]
          - disconnect if getpeername() fails
          - missing xfree(*client)
        [canohost.c]
          - disconnect if getpeername() fails
          - fix comment: we _do_ disconnect if ip-options are set
        [sshd.c]
          - disconnect if getpeername() fails
          - move checking of remote port to central place
        [auth-rhosts.c] move checking of remote port to central place
        [log-server.c] avoid extra fd per sshd, from millert@
        [readconf.c] print _all_ bad config-options in ssh(1), too
        [readconf.h] print _all_ bad config-options in ssh(1), too
        [ssh.c] print _all_ bad config-options in ssh(1), too
        [sshconnect.c] disconnect if getpeername() fails
 - OpenBSD's changes to sshd.c broke the PAM stuff, re-merged it.
1999-11-15 15:25:10 +11:00
COPYING.Ylonen Updated COPYING file with usage of RC4 1999-10-30 09:46:20 +10:00
ChangeLog - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
ChangeLog.Ylonen Re-added old changelog 1999-10-28 14:19:25 +10:00
INSTALL - Make ssh-askpass support optional through autoconf 1999-11-12 15:46:08 +11:00
Makefile.in - Merged OpenBSD CVS changes: 1999-11-15 14:25:30 +11:00
OVERVIEW Initial revision 1999-10-27 13:42:43 +10:00
README Thinko 1999-11-15 10:04:28 +11:00
README.Ylonen Renamed README -> README.Ylonen 1999-10-30 11:30:35 +10:00
RFC.nroff Initial revision 1999-10-27 13:42:43 +10:00
TODO Added INSTALL documentation 1999-11-12 14:35:58 +11:00
acconfig.h - Merged OpenBSD CVS changes: 1999-11-15 14:25:30 +11:00
auth-krb4.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
auth-passwd.c - Added shadow password patch from Thomas Neumann <tom@smart.ruhr.de> 1999-11-13 15:40:10 +11:00
auth-rh-rsa.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
auth-rhosts.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
auth-rsa.c Remove redundant inclusion of config.h 1999-11-13 10:51:58 +11:00
auth-skey.c Initial revision 1999-10-27 13:42:43 +10:00
authfd.c Remove redundant inclusion of config.h 1999-11-13 10:51:58 +11:00
authfd.h Initial revision 1999-10-27 13:42:43 +10:00
authfile.c Remove redundant inclusion of config.h 1999-11-13 13:07:45 +11:00
bufaux.c - Merged OpenBSD CVS changes: 1999-11-13 13:22:46 +11:00
bufaux.h Initial revision 1999-10-27 13:42:43 +10:00
buffer.c Initial revision 1999-10-27 13:42:43 +10:00
buffer.h Initial revision 1999-10-27 13:42:43 +10:00
canohost.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
channels.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
channels.h Merged latest OpenBSD changes: 1999-10-30 11:39:56 +10:00
cipher.c Remove redundant inclusion of config.h 1999-11-13 10:51:58 +11:00
cipher.h - Integrated patch from Dan Brosemer <odin@linuxfreak.com> 1999-10-28 13:25:17 +10:00
clientloop.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
compat.c Initial revision 1999-10-27 13:42:43 +10:00
compat.h Initial revision 1999-10-27 13:42:43 +10:00
compress.c Initial revision 1999-10-27 13:42:43 +10:00
compress.h Initial revision 1999-10-27 13:42:43 +10:00
configure.in Further cleanup of askpass autoconf support, enable GNOME askpass option 1999-11-15 14:36:53 +11:00
crc32.c Initial revision 1999-10-27 13:42:43 +10:00
crc32.h Initial revision 1999-10-27 13:42:43 +10:00
deattack.c Merged OpenBSD CVS changes that go away 1999-11-08 16:15:55 +11:00
deattack.h Initial revision 1999-10-27 13:42:43 +10:00
getput.h Initial revision 1999-10-27 13:42:43 +10:00
gnome-ssh-askpass.c - Grab server in gnome-ssh-askpass (Debian bug #49872) 1999-11-12 12:09:36 +11:00
helper.c - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
helper.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
hostfile.c Merged OpenBSD CVS changes that go away 1999-11-08 16:15:55 +11:00
includes.h - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
log-client.c - Merged more OpenBSD CVS changes: 1999-11-11 17:57:39 +11:00
log-server.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
log.c - Merged more OpenBSD CVS changes: 1999-11-11 17:57:39 +11:00
login.c - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
match.c Initial revision 1999-10-27 13:42:43 +10:00
mktemp.c - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
mktemp.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
mpaux.c Remove redundant inclusion of config.h 1999-11-13 10:51:58 +11:00
mpaux.h Initial revision 1999-10-27 13:42:43 +10:00
nchan.c Initial revision 1999-10-27 13:42:43 +10:00
nchan.h Initial revision 1999-10-27 13:42:43 +10:00
nchan.ms Merged latest OpenBSD changes: 1999-10-30 11:39:56 +10:00
openssh.spec Added obseletes lines to spec 1999-11-13 13:09:31 +11:00
packet.c Merged OpenBSD CVS changes that go away 1999-11-08 16:15:55 +11:00
packet.h - Integrated patch from Dan Brosemer <odin@linuxfreak.com> 1999-10-28 13:25:17 +10:00
pty.c Lots of changes: 1999-11-08 15:30:59 +11:00
pty.h Initial revision 1999-10-27 13:42:43 +10:00
radix.c Initial revision 1999-10-27 13:42:43 +10:00
rc4.c Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
rc4.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
readconf.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
readconf.h - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
readpass.c Initial revision 1999-10-27 13:42:43 +10:00
rsa.c - Merged OpenBSD CVS changes: 1999-11-09 10:35:52 +11:00
rsa.h - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
scp.1 Re-imported OpenBSD manpages 1999-10-29 09:15:49 +10:00
scp.c - Merged OpenBSD CVS changes: 1999-11-13 13:22:46 +11:00
servconf.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
servconf.h - Merged changes from OpenBSD CVS 1999-11-12 11:33:04 +11:00
serverloop.c Initial revision 1999-10-27 13:42:43 +10:00
ssh-add.1 Re-imported OpenBSD manpages 1999-10-29 09:15:49 +10:00
ssh-add.c - Merged OpenBSD CVS changes: 1999-11-15 14:25:30 +11:00
ssh-agent.1 Lots of changes: 1999-11-08 15:30:59 +11:00
ssh-agent.c - Merged several minor fixed: 1999-11-10 12:48:08 +11:00
ssh-askpass Lots of changes: 1999-11-08 15:30:59 +11:00
ssh-keygen.1 Re-imported OpenBSD manpages 1999-10-29 09:15:49 +10:00
ssh-keygen.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
ssh.1 - Merged more OpenBSD CVS changes: 1999-11-11 17:57:39 +11:00
ssh.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
ssh.h - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
ssh_config Initial revision 1999-10-27 13:42:43 +10:00
sshconnect.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
sshd.8 - Merged changes from OpenBSD CVS 1999-11-12 11:33:04 +11:00
sshd.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
sshd.init.redhat - Tidied default config file some more 1999-11-13 23:56:35 +11:00
sshd.pam Update to OpenBSD ssh-19991029 1999-10-29 09:47:09 +10:00
sshd_config - Tidied default config file some more 1999-11-13 23:56:35 +11:00
strlcpy.c Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
strlcpy.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
tildexpand.c Initial revision 1999-10-27 13:42:43 +10:00
ttymodes.c Initial revision 1999-10-27 13:42:43 +10:00
ttymodes.h Initial revision 1999-10-27 13:42:43 +10:00
uidswap.c Initial revision 1999-10-27 13:42:43 +10:00
uidswap.h Initial revision 1999-10-27 13:42:43 +10:00
version.h Initial revision 1999-10-27 13:42:43 +10:00
xmalloc.c Initial revision 1999-10-27 13:42:43 +10:00
xmalloc.h Initial revision 1999-10-27 13:42:43 +10:00

README

This is the Unix port of OpenBSD's excellent OpenSSH.

OpenSSH is based on the last free version of Tatu Ylonen's SSH with
all patent-encumbered algorithms removed, all known security bugs
fixed, new features reintroduced and many other clean-ups. More
information about SSH itself can be found in the file README.Ylonen.

This port consists of the re-introduction of autoconf support, PAM
support (for Linux and Solaris), EGD[1] support, and replacements for
OpenBSD library functions that are (regrettably) absent from most
other unices. This patch has been best tested on Linux, though some 
Solaris support is beginning to filter in. This version actively
tracks changes in the OpenBSD CVS repository.

The PAM support is now more functional than the popular packages of
commercial ssh-1.2.x. It checks "account" and "session" modules for
all logins, not just when using password authentication.

All new code is released under a XFree style license, which is very
liberal. Please refer to the source files for details. The code in
strlcpy.c and mktemp.c is from the OpenBSD project and has its own
license (again, see source file for details).

OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4]. To build
the GNOME[5] pass-phrase requester (--with-gnome-askpass), you will
need the GNOME libraries installed. If you are building OpenSSH on a
Unix which lacks a kernel random number pool (/dev/random), you will
need to install EGD[1].

There is now a mailing list for this port of OpenSSH. To
subscribe, send a message consisting of the word 'SUBSCRIBE' to
openssh-unix-dev-request@mindrot.org. This mailing list is intended
for developers.

Please refer to the INSTALL document for information on how to install
OpenSSH on your system.

This patch is developed primarily on Linux, but I am including patches
which improve compatability with other unices. The beginnings of
Solaris support have already been included.

Damien Miller <djm@ibs.com.au>
Internet Business Solutions

Credits - 

The OpenBSD team
'jonchen' - the original author of PAM support of SSH
Dan Brosemer <odin@linuxfreak.com> - Autoconf and build fixes & Debian scripts
Niels Kristian Bech Jensen <nkbj@image.dk> - Makefile patch
Nalin Dahyabhai <nalin.dahyabhai@pobox.com> - PAM environment patch
Phil Hands <phil@hands.com> - Debian scripts, assorted patches
Niels Kristian Bech Jensen <nkbj@image.dk> - Makefile patches
Marc G. Fournier <marc.fournier@acadiau.ca> - Solaris patches
Thomas Neumann <tom@smart.ruhr.de> - Shadow passwords

Miscellania - 

This version of SSH is based upon code retrieved from the OpenBSD CVS
repository on 1999-11-09 which in turn was based on the last free 
version of SSH released by Tatu Ylonen.

Code in helper.[ch] and gnome-ssh-askpass.c is Copyright 1999 
Internet Business Solutions and is released under a X11-style 
license (see source files for details).

(A)RC4 code in rc4.[ch] is Copyright 1999 Damien Miller. It too is
under a X11-style license (see source file for details).

References -

[1] http://www.lothar.com/tech/crypto/
[2] http://www.cdrom.com/pub/infozip/zlib/
[3] http://www.openssl.org/
[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
[5] http://www.gnome.org/