1*7c478bd9Sstevel@tonic-gate[ A Japanese translation of this document is available at 2*7c478bd9Sstevel@tonic-gate[ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html 3*7c478bd9Sstevel@tonic-gate[ Thanks to HARUYAMA Seigo <haruyama@nt.phys.s.u-tokyo.ac.jp> 4*7c478bd9Sstevel@tonic-gate 5*7c478bd9Sstevel@tonic-gate******* IMPORTANT 6*7c478bd9Sstevel@tonic-gate* On systmes which lack a /dev/random driver, version of this port 7*7c478bd9Sstevel@tonic-gate* prior to 1.2.2 were not correctly seeding OpenSSL's random number 8*7c478bd9Sstevel@tonic-gate* pool. This resulted in lower quality RSA keys being generated. If 9*7c478bd9Sstevel@tonic-gate* you generated host or user keys with v1.2.2 or previous versions, 10*7c478bd9Sstevel@tonic-gate* please generate new ones using a more recent version. 11*7c478bd9Sstevel@tonic-gate 12*7c478bd9Sstevel@tonic-gateThis is the port of OpenBSD's excellent OpenSSH[0] to Linux and other 13*7c478bd9Sstevel@tonic-gateUnices. 14*7c478bd9Sstevel@tonic-gate 15*7c478bd9Sstevel@tonic-gateOpenSSH is based on the last free version of Tatu Ylonen's SSH with 16*7c478bd9Sstevel@tonic-gateall patent-encumbered algorithms removed (to external libraries), all 17*7c478bd9Sstevel@tonic-gateknown security bugs fixed, new features reintroduced and many other 18*7c478bd9Sstevel@tonic-gateclean-ups. More information about SSH itself can be found in the file 19*7c478bd9Sstevel@tonic-gateREADME.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck, 20*7c478bd9Sstevel@tonic-gateMarkus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a 21*7c478bd9Sstevel@tonic-gatehomepage at http://www.openssh.com/ 22*7c478bd9Sstevel@tonic-gate 23*7c478bd9Sstevel@tonic-gateThis port consists of the re-introduction of autoconf support, PAM 24*7c478bd9Sstevel@tonic-gatesupport (for Linux and Solaris), EGD[1] support and replacements for 25*7c478bd9Sstevel@tonic-gateOpenBSD library functions that are (regrettably) absent from other 26*7c478bd9Sstevel@tonic-gateunices. This port has been best tested on Linux, Solaris, HPUX, NetBSD 27*7c478bd9Sstevel@tonic-gateand Irix. Support for AIX, SCO, NeXT and other Unices is underway. 28*7c478bd9Sstevel@tonic-gateThis version actively tracks changes in the OpenBSD CVS repository. 29*7c478bd9Sstevel@tonic-gate 30*7c478bd9Sstevel@tonic-gateThe PAM support is now more functional than the popular packages of 31*7c478bd9Sstevel@tonic-gatecommercial ssh-1.2.x. It checks "account" and "session" modules for 32*7c478bd9Sstevel@tonic-gateall logins, not just when using password authentication. 33*7c478bd9Sstevel@tonic-gate 34*7c478bd9Sstevel@tonic-gateOpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4]. 35*7c478bd9Sstevel@tonic-gate 36*7c478bd9Sstevel@tonic-gateThere is now several mailing lists for this port of OpenSSH. Please 37*7c478bd9Sstevel@tonic-gaterefer to http://www.openssh.com/list.html for details on how to join. 38*7c478bd9Sstevel@tonic-gate 39*7c478bd9Sstevel@tonic-gatePlease send bug reports and patches to the mailing list 40*7c478bd9Sstevel@tonic-gateopenssh-unix-dev@mindrot.org. The list is open to posting by 41*7c478bd9Sstevel@tonic-gateunsubscribed users. 42*7c478bd9Sstevel@tonic-gate 43*7c478bd9Sstevel@tonic-gateIf you are a citizen of the USA or another country which restricts 44*7c478bd9Sstevel@tonic-gateexport of cryptographic products, then please refrain from sending 45*7c478bd9Sstevel@tonic-gatecrypto-related code or patches to the list. We cannot accept them. 46*7c478bd9Sstevel@tonic-gateOther code contribution are accepted, but please follow the OpenBSD 47*7c478bd9Sstevel@tonic-gatestyle guidelines[5]. 48*7c478bd9Sstevel@tonic-gate 49*7c478bd9Sstevel@tonic-gatePlease refer to the INSTALL document for information on how to install 50*7c478bd9Sstevel@tonic-gateOpenSSH on your system. There are a number of differences between this 51*7c478bd9Sstevel@tonic-gateport of OpenSSH and F-Secure SSH 1.x, please refer to the OpenSSH FAQ[6] 52*7c478bd9Sstevel@tonic-gatefor details and general tips. 53*7c478bd9Sstevel@tonic-gate 54*7c478bd9Sstevel@tonic-gateDamien Miller <djm@mindrot.org> 55*7c478bd9Sstevel@tonic-gate 56*7c478bd9Sstevel@tonic-gateMiscellania - 57*7c478bd9Sstevel@tonic-gate 58*7c478bd9Sstevel@tonic-gateThis version of SSH is based upon code retrieved from the OpenBSD CVS 59*7c478bd9Sstevel@tonic-gaterepository which in turn was based on the last free 60*7c478bd9Sstevel@tonic-gateversion of SSH released by Tatu Ylonen. 61*7c478bd9Sstevel@tonic-gate 62*7c478bd9Sstevel@tonic-gateReferences - 63*7c478bd9Sstevel@tonic-gate 64*7c478bd9Sstevel@tonic-gate[0] http://www.openssh.com/faq.html 65*7c478bd9Sstevel@tonic-gate[1] http://www.lothar.com/tech/crypto/ 66*7c478bd9Sstevel@tonic-gate[2] ftp://ftp.freesoftware.com/pub/infozip/zlib/ 67*7c478bd9Sstevel@tonic-gate[3] http://www.openssl.org/ 68*7c478bd9Sstevel@tonic-gate[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris) 69*7c478bd9Sstevel@tonic-gate[5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current 70*7c478bd9Sstevel@tonic-gate[6] http://www.openssh.com/faq.html 71