Portable OpenSSH
Go to file
Damien Miller 3b512e18dc - Detect OpenSSL seperatly from RSA
- Better test for RSA (more compatible with RSAref). Based on work by
   Ed Eden <ede370@stl.rural.usda.gov>
2000-05-17 23:29:18 +10:00
contrib update specs 2000-05-09 15:04:39 +10:00
acconfig.h - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
aclocal.m4 - Configure caching and cleanup patch from Andre Lucas' 2000-05-08 20:49:37 +10:00
atomicio.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
auth1.c - Applied Tom Bertelson's <tbert@abac.com> AIX authentication fix 2000-05-17 22:00:02 +10:00
auth2.c - Applied Tom Bertelson's <tbert@abac.com> AIX authentication fix 2000-05-17 22:00:02 +10:00
auth-krb4.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
auth-pam.c - Merge HP-UX fixes and TCB support from Ged Lodder <lodder@yacc.com.au> 2000-04-30 00:47:29 +10:00
auth-pam.h Add const to suppress compiler warning 2000-01-27 10:55:38 +11:00
auth-passwd.c - Merge HP-UX fixes and TCB support from Ged Lodder <lodder@yacc.com.au> 2000-04-30 00:47:29 +10:00
auth-rh-rsa.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
auth-rhosts.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
auth-rsa.c - More OpenBSD updates: 2000-04-30 10:00:53 +10:00
auth-skey.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
auth.c - Applied Tom Bertelson's <tbert@abac.com> AIX authentication fix 2000-05-17 22:00:02 +10:00
auth.h - Merge big update to OpenSSH-2.0 from OpenBSD CVS 2000-04-29 23:57:08 +10:00
authfd.c - More OpenBSD updates: 2000-04-30 10:00:53 +10:00
authfd.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
authfile.c - Merge big update to OpenSSH-2.0 from OpenBSD CVS 2000-04-29 23:57:08 +10:00
authfile.h - Merge big update to OpenSSH-2.0 from OpenBSD CVS 2000-04-29 23:57:08 +10:00
aux.c - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
bsd-base64.c - Cleanup of bsd-base64 headers, bugfix definitions of __b64_*. Reported 2000-05-09 15:28:41 +10:00
bsd-base64.h - Cleanup of bsd-base64 headers, bugfix definitions of __b64_*. Reported 2000-05-09 15:28:41 +10:00
bsd-bindresvport.c - Missing htons() in bsd-bindresvport.c, fix from Holger Trapp 2000-01-22 18:17:42 +11:00
bsd-bindresvport.h - Merged OpenBSD IPv6 patch: 2000-01-14 15:45:46 +11:00
bsd-daemon.c - Merged more Solaris support from Marc G. Fournier 1999-11-20 12:18:40 +11:00
bsd-daemon.h - Renamed BSD helper function files to bsd-* 1999-11-19 15:32:34 +11:00
bsd-login.c - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
bsd-login.h - Prepare for 1.2.1pre20 1999-12-25 10:11:29 +11:00
bsd-misc.c - OpenBSD CVS updates 2000-04-19 16:26:12 +10:00
bsd-misc.h - Wrote entropy collection routines for systems that lack /dev/random 2000-04-03 14:50:43 +10:00
bsd-mktemp.c - Rename helper.[ch] to (more appropriate) bsd-misc.[ch] 1999-12-29 19:56:30 +11:00
bsd-mktemp.h - Renamed BSD helper function files to bsd-* 1999-11-19 15:32:34 +11:00
bsd-rresvport.c - SCO compile fixes from Gary E. Miller <gem@rellim.com> 2000-01-19 13:45:07 +11:00
bsd-rresvport.h - Merged OpenBSD IPv6 patch: 2000-01-14 15:45:46 +11:00
bsd-setenv.c - Better tests for OpenSSL w/ RSAref 2000-03-26 12:12:34 +10:00
bsd-setenv.h - Better tests for OpenSSL w/ RSAref 2000-03-26 12:12:34 +10:00
bsd-snprintf.c - DEC Unix compile fix from David Del Piero <David.DelPiero@qed.qld.gov.au> 2000-03-03 22:48:49 +11:00
bsd-snprintf.h - Fix DEC compile fix 2000-03-05 16:10:03 +11:00
bsd-strlcat.c - Added OpenBSD bsd-strlcat.c, created bsd-strlcat.h 1999-11-22 13:57:07 +11:00
bsd-strlcat.h - Added OpenBSD bsd-strlcat.c, created bsd-strlcat.h 1999-11-22 13:57:07 +11:00
bsd-strlcpy.c - Renamed BSD helper function files to bsd-* 1999-11-19 15:32:34 +11:00
bsd-strlcpy.h - Renamed BSD helper function files to bsd-* 1999-11-19 15:32:34 +11:00
bufaux.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
bufaux.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
buffer.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
buffer.h - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
canohost.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
ChangeLog - Detect OpenSSL seperatly from RSA 2000-05-17 23:29:18 +10:00
channels.c - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
channels.h - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
cipher.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
cipher.h - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
clientloop.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
compat.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
compat.h - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
compress.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
compress.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
config.guess - New config.sub and config.guess to fix problems on SCO. Supplied 2000-01-07 08:56:05 +11:00
config.sub - New config.sub and config.guess to fix problems on SCO. Supplied 2000-01-07 08:56:05 +11:00
configure.in - Detect OpenSSL seperatly from RSA 2000-05-17 23:29:18 +10:00
COPYING.Ylonen Updated COPYING file with usage of RC4 1999-10-30 09:46:20 +10:00
crc32.c - Merged very large OpenBSD source code reformat 1999-11-25 00:26:21 +11:00
crc32.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
CREDITS - Detect OpenSSL seperatly from RSA 2000-05-17 23:29:18 +10:00
deattack.c - Merged very large OpenBSD source code reformat 1999-11-25 00:26:21 +11:00
deattack.h - Merged very large OpenBSD source code reformat 1999-11-25 00:26:21 +11:00
defines.h - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
dispatch.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
dispatch.h - Big OpenBSD CVS update (mainly beginnings of SSH2 infrastructure) 2000-04-01 11:09:21 +10:00
dsa.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
dsa.h - Merge big update to OpenSSH-2.0 from OpenBSD CVS 2000-04-29 23:57:08 +10:00
entropy.c - Avoid WCOREDUMP complation errors for systems that lack it 2000-05-17 22:08:29 +10:00
entropy.h - Wrote entropy collection routines for systems that lack /dev/random 2000-04-03 14:50:43 +10:00
fake-gai-errnos.h - Merged OpenBSD IPv6 patch: 2000-01-14 15:45:46 +11:00
fake-getaddrinfo.c - Avoid some compiler warnings in fake-get*.c 2000-04-08 17:48:56 +10:00
fake-getaddrinfo.h - Compilation fix from Kiyokazu SUTO <suto@ks-and-ks.ne.jp> 2000-01-16 18:19:25 +11:00
fake-getnameinfo.c - Avoid some compiler warnings in fake-get*.c 2000-04-08 17:48:56 +10:00
fake-getnameinfo.h - Merged OpenBSD IPv6 patch: 2000-01-14 15:45:46 +11:00
fake-socket.h - Merged OpenBSD IPv6 patch: 2000-01-14 15:45:46 +11:00
fingerprint.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
fingerprint.h Third time lucky 1999-12-07 17:03:33 +11:00
fixpaths - Make fixpaths work with perl4, patch from Andre Lucas 2000-04-20 07:33:24 +10:00
getput.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
hmac.c forgot -kb, remove openssl/ssl conditional 2000-04-16 11:52:47 +10:00
hmac.h - OpenBSD CVS update: 2000-04-04 14:38:59 +10:00
hostfile.c - More OpenBSD updates: 2000-04-30 10:00:53 +10:00
hostfile.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
includes.h - Moved all the bsd-* and fake-* stuff into new libopenbsd-compat.a 2000-05-09 14:28:55 +10:00
INSTALL - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
install-sh - Added BSD compatible install program and autoconf test, thanks to 1999-11-25 12:31:26 +11:00
kex.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
kex.h - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
key.c - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
key.h - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
log-client.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
log-server.c - Add Andre Lucas' <andre.lucas@dial.pipex.com> patch to read entropy 2000-05-02 09:56:41 +10:00
log.c - Merged OpenBSD IPv6 patch: 2000-01-14 15:45:46 +11:00
login.c - Applied Tom Bertelson's <tbert@abac.com> AIX authentication fix 2000-05-17 22:00:02 +10:00
Makefile.in - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
match.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
match.h - OpenBSD CVS update 2000-03-26 13:04:51 +10:00
md5crypt.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
md5crypt.h - Portability fixes for Irix 5.3 (now compiles OK!) 1999-12-28 15:09:35 +11:00
mpaux.c - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
mpaux.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
myproposal.h - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
nchan2.ms - OpenBSD CVS update: 2000-04-04 14:38:59 +10:00
nchan.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
nchan.h - OpenBSD CVS update: 2000-04-04 14:38:59 +10:00
nchan.ms - Merged OpenBSD IPv6 patch: 2000-01-14 15:45:46 +11:00
openbsd-compat.h oops - missed this 2000-05-09 14:45:00 +10:00
OVERVIEW - [OVERVIEW README] typos; green@freebsd 1999-11-21 18:31:57 +11:00
packet.c - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
packet.h - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
pty.c - Merge fixes from Debian patch from Phil Hands <phil@hands.com> 2000-04-20 23:12:58 +10:00
pty.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
radix.c - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
readconf.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
readconf.h - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
README - Doc updates 2000-05-09 15:03:37 +10:00
README.openssh2 bad checkin mode 2000-05-09 15:05:45 +10:00
README.Ylonen - OpenBSD CVS update 2000-03-26 13:04:51 +10:00
readpass.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
RFC.nroff Initial revision 1999-10-27 13:42:43 +10:00
rsa.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
rsa.h - Reduce diff against OpenBSD source 2000-04-16 12:31:48 +10:00
scp.1 - Merged OpenBSD updates to include paths. 2000-04-13 12:26:34 +10:00
scp.c - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
servconf.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
servconf.h - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
serverloop.c - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
session.c - Avoid WCOREDUMP complation errors for systems that lack it 2000-05-17 22:08:29 +10:00
session.h - More large OpenBSD CVS updates: 2000-04-12 18:45:05 +10:00
ssh2.h - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
ssh_config - Debian bug #58031 - ssh_config lies about default cipher 2000-04-20 23:32:48 +10:00
ssh_prng_cmds.in - Add Andre Lucas' <andre.lucas@dial.pipex.com> patch to read entropy 2000-05-02 09:56:41 +10:00
ssh-add.1 - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
ssh-add.c - Fixed __progname symbol collisions reported by Andre Lucas 2000-05-01 20:59:50 +10:00
ssh-agent.1 - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
ssh-agent.c - Several patches from SAKAI Kiyotaka <ksakai@kso.netwk.ntt-at.co.jp> 2000-05-17 22:53:33 +10:00
ssh-keygen.1 - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
ssh-keygen.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
ssh.1 - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
ssh.c - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
ssh.h - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
sshconnect1.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
sshconnect2.c - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
sshconnect.c - OpenBSD CVS update: 2000-05-17 22:34:22 +10:00
sshconnect.h - Merge big update to OpenSSH-2.0 from OpenBSD CVS 2000-04-29 23:57:08 +10:00
sshd_config - OpenBSD CVS updates 2000-04-19 16:26:12 +10:00
sshd.8 - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
sshd.c - RSAless operation patch from kevin_oconnor@standardandpoors.com 2000-05-17 23:02:03 +10:00
tildexpand.c - Merged more OpenBSD changes: 1999-12-07 15:38:31 +11:00
TODO - Moved all the bsd-* and fake-* stuff into new libopenbsd-compat.a 2000-05-09 14:28:55 +10:00
ttymodes.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
ttymodes.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
uidswap.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
uidswap.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
UPGRADING - Clarified --with-default-path option. 2000-03-17 10:54:15 +11:00
uuencode.c - Cleanup of bsd-base64 headers, bugfix definitions of __b64_*. Reported 2000-05-09 15:28:41 +10:00
uuencode.h - Remove references to SSLeay. 2000-05-07 12:03:14 +10:00
version.h - OpenBSD CVS update 2000-05-09 11:02:59 +10:00
xmalloc.c - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00
xmalloc.h - OpenBSD CVS updates. 2000-04-16 11:18:38 +10:00

[ A Japanese translation of this document is available at
[ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html
[ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp>

******* IMPORTANT
* On systmes which lack a /dev/random driver, version of this port
* prior to 1.2.2 were not correctly seeding OpenSSL's random number
* pool. This resulted in lower quality RSA keys being generated. If
* you generated host or user keys with v1.2.2 or previous versions, 
* please generate new ones using a more recent version.

This is the port of OpenBSD's excellent OpenSSH to Linux and other
Unices.

OpenSSH is based on the last free version of Tatu Ylonen's SSH with
all patent-encumbered algorithms removed (to external libraries), all
known security bugs fixed, new features reintroduced and many other
clean-ups. More information about SSH itself can be found in the file
README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck,
Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a
homepage at http://www.openssh.com/

This port consists of the re-introduction of autoconf support, PAM
support (for Linux and Solaris), EGD[1] support and replacements for 
OpenBSD library functions that are (regrettably) absent from other 
unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD 
and Irix. Support for AIX, SCO, NeXT and other Unices is underway. 
This version actively tracks changes in the OpenBSD CVS repository.

The PAM support is now more functional than the popular packages of
commercial ssh-1.2.x. It checks "account" and "session" modules for
all logins, not just when using password authentication.

OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4].

There is now several mailing lists for this port of OpenSSH. Please
refer to http://violet.ibs.com.au/openssh/list.html for details on how
to join.

Please send bug reports and patches to the mailing list
openssh-unix-dev@mindrot.org. The list is currently open to posting by
unsubscribed users.

Please refer to the INSTALL document for information on how to install
OpenSSH on your system. The UPGRADING document details differences 
between this port of OpenSSH and F-Secure SSH 1.x.

Damien Miller <djm@ibs.com.au>
Internet Business Solutions

Miscellania - 

This version of SSH is based upon code retrieved from the OpenBSD CVS
repository which in turn was based on the last free 
version of SSH released by Tatu Ylonen.

References -

[1] http://www.lothar.com/tech/crypto/
[2] http://www.cdrom.com/pub/infozip/zlib/
[3] http://www.openssl.org/
[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)