xref: /titanic_41/usr/src/cmd/ssh/doc/README (revision 2449e17f82f6097fd2c665b64723e31ceecbeca6)
1[ A Japanese translation of this document is available at
2[ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html
3[ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp>
4
5******* IMPORTANT
6* On systmes which lack a /dev/random driver, version of this port
7* prior to 1.2.2 were not correctly seeding OpenSSL's random number
8* pool. This resulted in lower quality RSA keys being generated. If
9* you generated host or user keys with v1.2.2 or previous versions,
10* please generate new ones using a more recent version.
11
12This is the port of OpenBSD's excellent OpenSSH[0] to Linux and other
13Unices.
14
15OpenSSH is based on the last free version of Tatu Ylonen's SSH with
16all patent-encumbered algorithms removed (to external libraries), all
17known security bugs fixed, new features reintroduced and many other
18clean-ups. More information about SSH itself can be found in the file
19README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck,
20Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a
21homepage at http://www.openssh.com/
22
23This port consists of the re-introduction of autoconf support, PAM
24support (for Linux and Solaris), EGD[1] support and replacements for
25OpenBSD library functions that are (regrettably) absent from other
26unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD
27and Irix. Support for AIX, SCO, NeXT and other Unices is underway.
28This version actively tracks changes in the OpenBSD CVS repository.
29
30The PAM support is now more functional than the popular packages of
31commercial ssh-1.2.x. It checks "account" and "session" modules for
32all logins, not just when using password authentication.
33
34OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4].
35
36There is now several mailing lists for this port of OpenSSH. Please
37refer to http://www.openssh.com/list.html for details on how to join.
38
39Please send bug reports and patches to the mailing list
40openssh-unix-dev@mindrot.org. The list is open to posting by
41unsubscribed users.
42
43If you are a citizen of the USA or another country which restricts
44export of cryptographic products, then please refrain from sending
45crypto-related code or patches to the list. We cannot accept them.
46Other code contribution are accepted, but please follow the OpenBSD
47style guidelines[5].
48
49Please refer to the INSTALL document for information on how to install
50OpenSSH on your system. There are a number of differences between this
51port of OpenSSH and F-Secure SSH 1.x, please refer to the OpenSSH FAQ[6]
52for details and general tips.
53
54Damien Miller <djm@mindrot.org>
55
56Miscellania -
57
58This version of SSH is based upon code retrieved from the OpenBSD CVS
59repository which in turn was based on the last free
60version of SSH released by Tatu Ylonen.
61
62References -
63
64[0] http://www.openssh.com/faq.html
65[1] http://www.lothar.com/tech/crypto/
66[2] ftp://ftp.freesoftware.com/pub/infozip/zlib/
67[3] http://www.openssl.org/
68[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
69[5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current
70[6] http://www.openssh.com/faq.html
71