Portable OpenSSH
Go to file
Damien Miller 7e8e820153 - Merged OpenBSD CVS changes:
- [auth-rh-rsa.c auth-rsa.c authfd.c authfd.h hostfile.c mpaux.c]
     [mpaux.h ssh-add.c ssh-agent.c ssh.h ssh.c sshd.c]
     the keysize of rsa-parameter 'n' is passed implizit,
     a few more checks and warnings about 'pretended' keysizes.
   - [cipher.c cipher.h packet.c packet.h sshd.c]
     remove support for cipher RC4
   - [ssh.c]
     a note for legay systems about secuity issues with permanently_set_uid(),
     the private hostkey and ptrace()
   - [sshconnect.c]
     more detailed messages about adding and checking hostkeys
1999-11-16 13:37:16 +11:00
COPYING.Ylonen Updated COPYING file with usage of RC4 1999-10-30 09:46:20 +10:00
ChangeLog - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
ChangeLog.Ylonen Re-added old changelog 1999-10-28 14:19:25 +10:00
INSTALL Doc updates 1999-11-15 23:34:11 +11:00
Makefile.in - Merged OpenBSD CVS changes: 1999-11-15 14:25:30 +11:00
OVERVIEW Initial revision 1999-10-27 13:42:43 +10:00
README Doc updates 1999-11-15 23:34:11 +11:00
README.Ylonen Renamed README -> README.Ylonen 1999-10-30 11:30:35 +10:00
RFC.nroff Initial revision 1999-10-27 13:42:43 +10:00
TODO Added INSTALL documentation 1999-11-12 14:35:58 +11:00
UPGRADING Added upgrade instructions 1999-11-16 08:02:27 +11:00
acconfig.h - Fix some Linux libc5 problems reported by Miles Wilson <mw@mctitle.com> 1999-11-16 13:29:26 +11:00
auth-krb4.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
auth-passwd.c - Added shadow password patch from Thomas Neumann <tom@smart.ruhr.de> 1999-11-13 15:40:10 +11:00
auth-rh-rsa.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
auth-rhosts.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
auth-rsa.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
auth-skey.c Initial revision 1999-10-27 13:42:43 +10:00
authfd.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
authfd.h - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
authfile.c Remove redundant inclusion of config.h 1999-11-13 13:07:45 +11:00
bufaux.c - Merged OpenBSD CVS changes: 1999-11-13 13:22:46 +11:00
bufaux.h Initial revision 1999-10-27 13:42:43 +10:00
buffer.c Initial revision 1999-10-27 13:42:43 +10:00
buffer.h Initial revision 1999-10-27 13:42:43 +10:00
canohost.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
channels.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
channels.h Merged latest OpenBSD changes: 1999-10-30 11:39:56 +10:00
cipher.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
cipher.h - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
clientloop.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
compat.c Initial revision 1999-10-27 13:42:43 +10:00
compat.h Initial revision 1999-10-27 13:42:43 +10:00
compress.c Initial revision 1999-10-27 13:42:43 +10:00
compress.h Initial revision 1999-10-27 13:42:43 +10:00
configure.in - Fix some Linux libc5 problems reported by Miles Wilson <mw@mctitle.com> 1999-11-16 13:29:26 +11:00
crc32.c Initial revision 1999-10-27 13:42:43 +10:00
crc32.h Initial revision 1999-10-27 13:42:43 +10:00
deattack.c Merged OpenBSD CVS changes that go away 1999-11-08 16:15:55 +11:00
deattack.h Initial revision 1999-10-27 13:42:43 +10:00
getput.h Initial revision 1999-10-27 13:42:43 +10:00
gnome-ssh-askpass.c - Grab server in gnome-ssh-askpass (Debian bug #49872) 1999-11-12 12:09:36 +11:00
helper.c - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
helper.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
hostfile.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
includes.h - Fix some Linux libc5 problems reported by Miles Wilson <mw@mctitle.com> 1999-11-16 13:29:26 +11:00
log-client.c - Merged more OpenBSD CVS changes: 1999-11-11 17:57:39 +11:00
log-server.c - Merged more Solaris compability from Marc G. Fournier 1999-11-15 17:10:57 +11:00
log.c - Merged more OpenBSD CVS changes: 1999-11-11 17:57:39 +11:00
login.c - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
match.c Initial revision 1999-10-27 13:42:43 +10:00
mktemp.c - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
mktemp.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
mpaux.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
mpaux.h - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
nchan.c Initial revision 1999-10-27 13:42:43 +10:00
nchan.h Initial revision 1999-10-27 13:42:43 +10:00
nchan.ms Merged latest OpenBSD changes: 1999-10-30 11:39:56 +10:00
openssh.spec - Split subpackages further based on patch from jim knoble <jmknoble@pobox.com> 1999-11-15 17:19:24 +11:00
packet.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
packet.h - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
pty.c - Various small cleanups to bring diff (against OpenBSD) size down. 1999-11-15 15:40:55 +11:00
pty.h Initial revision 1999-10-27 13:42:43 +10:00
radix.c Initial revision 1999-10-27 13:42:43 +10:00
rc4.c Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
rc4.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
readconf.c - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
readconf.h - Merged more OpenBSD CVS changes: 1999-11-15 15:25:10 +11:00
readpass.c Initial revision 1999-10-27 13:42:43 +10:00
rsa.c - Merged OpenBSD CVS changes: 1999-11-09 10:35:52 +11:00
rsa.h - Added (untested) Entropy Gathering Daemon (EGD) support 1999-11-11 10:40:23 +11:00
scp.1 Re-imported OpenBSD manpages 1999-10-29 09:15:49 +10:00
scp.c - Merged OpenBSD CVS changes: 1999-11-13 13:22:46 +11:00
servconf.c - Merged yet more changes from OpenBSD CVS 1999-11-12 15:19:27 +11:00
servconf.h - Merged changes from OpenBSD CVS 1999-11-12 11:33:04 +11:00
serverloop.c Initial revision 1999-10-27 13:42:43 +10:00
ssh-add.1 Re-imported OpenBSD manpages 1999-10-29 09:15:49 +10:00
ssh-add.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
ssh-agent.1 Lots of changes: 1999-11-08 15:30:59 +11:00
ssh-agent.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
ssh-askpass Lots of changes: 1999-11-08 15:30:59 +11:00
ssh-keygen.1 OpenBSD CVS: fix .Xr 1999-11-15 23:33:56 +11:00
ssh-keygen.c - Merged more Solaris compability from Marc G. Fournier 1999-11-15 17:10:57 +11:00
ssh.1 - Merged more OpenBSD CVS changes: 1999-11-11 17:57:39 +11:00
ssh.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
ssh.h - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
ssh_config Initial revision 1999-10-27 13:42:43 +10:00
sshconnect.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
sshd.8 - Merged changes from OpenBSD CVS 1999-11-12 11:33:04 +11:00
sshd.c - Merged OpenBSD CVS changes: 1999-11-16 13:37:16 +11:00
sshd.init.redhat - Tidied default config file some more 1999-11-13 23:56:35 +11:00
sshd.pam Update to OpenBSD ssh-19991029 1999-10-29 09:47:09 +10:00
sshd_config - Tidied default config file some more 1999-11-13 23:56:35 +11:00
strlcpy.c Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
strlcpy.h Disabled code based on autoconf tests 1999-10-28 14:12:54 +10:00
tildexpand.c Initial revision 1999-10-27 13:42:43 +10:00
ttymodes.c Initial revision 1999-10-27 13:42:43 +10:00
ttymodes.h Initial revision 1999-10-27 13:42:43 +10:00
uidswap.c Initial revision 1999-10-27 13:42:43 +10:00
uidswap.h Initial revision 1999-10-27 13:42:43 +10:00
version.h Initial revision 1999-10-27 13:42:43 +10:00
xmalloc.c Initial revision 1999-10-27 13:42:43 +10:00
xmalloc.h Initial revision 1999-10-27 13:42:43 +10:00

README

This is the Unix port of OpenBSD's excellent OpenSSH.

OpenSSH is based on the last free version of Tatu Ylonen's SSH with
all patent-encumbered algorithms removed, all known security bugs
fixed, new features reintroduced and many other clean-ups. More
information about SSH itself can be found in the file README.Ylonen.

This port consists of the re-introduction of autoconf support, PAM
support (for Linux and Solaris), EGD[1] support, and replacements for
OpenBSD library functions that are (regrettably) absent from most
other unices. This patch has been best tested on Linux, though some 
Solaris support is beginning to filter in. This version actively
tracks changes in the OpenBSD CVS repository.

The PAM support is now more functional than the popular packages of
commercial ssh-1.2.x. It checks "account" and "session" modules for
all logins, not just when using password authentication.

All new code is released under a XFree style license, which is very
liberal. Please refer to the source files for details. The code in
strlcpy.c and mktemp.c is from the OpenBSD project and has its own
license (again, see source file for details).

OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4]. To build
the GNOME[5] pass-phrase requester (--with-gnome-askpass), you will
need the GNOME libraries installed. If you are building OpenSSH on a
Unix which lacks a kernel random number pool (/dev/random), you will
need to install EGD[1].

There is now a mailing list for this port of OpenSSH. To
subscribe, send a message consisting of the word 'SUBSCRIBE' to
openssh-unix-dev-request@mindrot.org. This mailing list is intended
for developers.

Please refer to the INSTALL document for information on how to install
OpenSSH on your system.

This patch is developed primarily on Linux, but I am including patches
which improve compatability with other unices. The beginnings of
Solaris support have already been included.

Damien Miller <djm@ibs.com.au>
Internet Business Solutions

Credits - 

The OpenBSD team
'jonchen' - the original author of PAM support of SSH
Dan Brosemer <odin@linuxfreak.com> - Autoconf and build fixes & Debian scripts
Nalin Dahyabhai <nalin.dahyabhai@pobox.com> - PAM environment patch
Phil Hands <phil@hands.com> - Debian scripts, assorted patches
Niels Kristian Bech Jensen <nkbj@image.dk> - Assorted patches
Marc G. Fournier <marc.fournier@acadiau.ca> - Solaris patches
Thomas Neumann <tom@smart.ruhr.de> - Shadow passwords
Jim Knoble <jmknoble@pobox.com> - RPM spec file fixes

Miscellania - 

This version of SSH is based upon code retrieved from the OpenBSD CVS
repository on 1999-11-09 which in turn was based on the last free 
version of SSH released by Tatu Ylonen.

Code in helper.[ch] and gnome-ssh-askpass.c is Copyright 1999 
Internet Business Solutions and is released under a X11-style 
license (see source files for details).

(A)RC4 code in rc4.[ch] is Copyright 1999 Damien Miller. It too is
under a X11-style license (see source file for details).

References -

[1] http://www.lothar.com/tech/crypto/
[2] http://www.cdrom.com/pub/infozip/zlib/
[3] http://www.openssl.org/
[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
[5] http://www.gnome.org/