зеркало из https://github.com/Azure/sonic-openssh.git
70 строки
3.0 KiB
Plaintext
70 строки
3.0 KiB
Plaintext
[ A Japanese translation of this document is available at
|
|
[ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html
|
|
[ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp>
|
|
|
|
******* IMPORTANT
|
|
* On systmes which lack a /dev/random driver, version of this port
|
|
* prior to 1.2.2 were not correctly seeding OpenSSL's random number
|
|
* pool. This resulted in lower quality RSA keys being generated. If
|
|
* you generated host or user keys with v1.2.2 or previous versions,
|
|
* please generate new ones using a more recent version.
|
|
|
|
This is the port of OpenBSD's excellent OpenSSH to Linux and other
|
|
Unices.
|
|
|
|
OpenSSH is based on the last free version of Tatu Ylonen's SSH with
|
|
all patent-encumbered algorithms removed (to external libraries), all
|
|
known security bugs fixed, new features reintroduced and many other
|
|
clean-ups. More information about SSH itself can be found in the file
|
|
README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck,
|
|
Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a
|
|
homepage at http://www.openssh.com/
|
|
|
|
This port consists of the re-introduction of autoconf support, PAM
|
|
support (for Linux and Solaris), EGD[1] support and replacements for
|
|
OpenBSD library functions that are (regrettably) absent from other
|
|
unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD
|
|
and Irix. Support for AIX, SCO, NeXT and other Unices is underway.
|
|
This version actively tracks changes in the OpenBSD CVS repository.
|
|
|
|
The PAM support is now more functional than the popular packages of
|
|
commercial ssh-1.2.x. It checks "account" and "session" modules for
|
|
all logins, not just when using password authentication.
|
|
|
|
OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4].
|
|
|
|
There is now several mailing lists for this port of OpenSSH. Please
|
|
refer to http://www.openssh.com/list.html for details on how to join.
|
|
|
|
Please send bug reports and patches to the mailing list
|
|
openssh-unix-dev@mindrot.org. The list is open to posting by
|
|
unsubscribed users.
|
|
|
|
If you are a citizen of the USA or another country which restricts
|
|
export of cryptographic products, then please refrain from sending
|
|
crypto-related code or patches to the list. We cannot accept them.
|
|
Other code contribution are accepted, but please follow the OpenBSD
|
|
style guidelines[5].
|
|
|
|
Please refer to the INSTALL document for information on how to install
|
|
OpenSSH on your system. The UPGRADING document details differences
|
|
between this port of OpenSSH and F-Secure SSH 1.x.
|
|
|
|
Damien Miller <djm@ibs.com.au>
|
|
Internet Business Solutions
|
|
|
|
Miscellania -
|
|
|
|
This version of SSH is based upon code retrieved from the OpenBSD CVS
|
|
repository which in turn was based on the last free
|
|
version of SSH released by Tatu Ylonen.
|
|
|
|
References -
|
|
|
|
[1] http://www.lothar.com/tech/crypto/
|
|
[2] ftp://ftp.freesoftware.com/pub/infozip/zlib/
|
|
[3] http://www.openssl.org/
|
|
[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
|
|
[5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current
|
|
|