Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 25 Mar 1999 01:01:26 -0800 (PST)
From:      Matthew Dillon <dillon@apollo.backplane.com>
To:        Mike Thompson <miket@dnai.com>
Cc:        Gary Gaskell <gaskell@isrc.qut.edu.au>, freebsd-security@FreeBSD.ORG
Subject:   Re: Kerberos vs SSH
Message-ID:  <199903250901.BAA95914@apollo.backplane.com>
References:  <Pine.GSO.4.10.9903251409300.17330-100000@primrose.isrc.qut.edu.au> <4.1.19990324233231.00a02e40@mail.dnai.com>
index | next in thread | previous in thread | raw e-mail 


:Matthew,
:
:Thanks for the detailed response.  It sounds like BEST has a
:configuration that is close to what I would like to achieve. 
:A few quick questions if you don't mind:
:
:Are you refering to SSH v1 or SSH v2, or do both compile 
:with Kerberos in the manner you describe?
:
:I am currently looking into what the licensing costs would be 
:for us to license SSH v2 for our servers.  Does BEST.COM pay
:to license SSH v1 or SSH v2 for internal use?
:
:I set up a Kerberos IV server and it is very unfriendly, but
:possible.  I'll investigate Kerberos V in the ports.  By using 
:Kerberos I assume it gives you the advantage of configuring
:all ssh authentication and passwords on the Kerberos server?
:
:Thanks again,
:
:Mike Thompson

    BEST currently uses SSH v1 under the ISP terms in the COPYING notice.

    We've looked into using SSH v2 a number of times but two factors have 
    kept us from being able to switch:  (1) the fact that the author made
    SSH v2 incompatible with SSH v1, and (2) because, when we checked, the 
    licensing terms were too overpriced ( but that was a year ago and I don't
    remember what the price was ).  So we aren't using v2.

    The whole thing has really miffed me, actually.  I like to support
    free software, especially free software of the quality level and 
    usefullness of ssh, but the authors have made it rather difficult to do.

    I haven't checked the status of SSH v2 recently, so it is possible that
    commercial licensing is more doable now.

					-Matt
					Matthew Dillon 
					<dillon@backplane.com>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
help

Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199903250901.BAA95914>