From owner-freebsd-stable@FreeBSD.ORG Sun Oct 8 14:54:51 2006 Return-Path: X-Original-To: freebsd-stable@FreeBSD.ORG Delivered-To: freebsd-stable@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AF8FE16A412 for ; Sun, 8 Oct 2006 14:54:51 +0000 (UTC) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (lurza.secnetix.de [83.120.8.8]) by mx1.FreeBSD.org (Postfix) with ESMTP id AFD3143D45 for ; Sun, 8 Oct 2006 14:54:50 +0000 (GMT) (envelope-from olli@lurza.secnetix.de) Received: from lurza.secnetix.de (dgnmrg@localhost [127.0.0.1]) by lurza.secnetix.de (8.13.4/8.13.4) with ESMTP id k98EsfMR063824; Sun, 8 Oct 2006 16:54:46 +0200 (CEST) (envelope-from oliver.fromme@secnetix.de) Received: (from olli@localhost) by lurza.secnetix.de (8.13.4/8.13.1/Submit) id k98Eseas063823; Sun, 8 Oct 2006 16:54:40 +0200 (CEST) (envelope-from olli) Date: Sun, 8 Oct 2006 16:54:40 +0200 (CEST) Message-Id: <200610081454.k98Eseas063823@lurza.secnetix.de> From: Oliver Fromme To: freebsd-stable@FreeBSD.ORG, freebsd@jdc.parodius.com In-Reply-To: <20061005160819.GA13417@icarus.home.lan> X-Newsgroups: list.freebsd-stable User-Agent: tin/1.8.0-20051224 ("Ronay") (UNIX) (FreeBSD/4.11-STABLE (i386)) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-2.1.2 (lurza.secnetix.de [127.0.0.1]); Sun, 08 Oct 2006 16:54:46 +0200 (CEST) Cc: Subject: scp -c none (was Re: NFS client slow on amd64 6.2-PRERELEASE #2) X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Oct 2006 14:54:51 -0000 Jeremy Chadwick wrote: > [...] > It's really too bad the OpenBSD guys refuse to > incorporate the HP (high-performance) patches into OpenSSH, and > being able to say "-c none" would *really* help when it comes to > benchmarking network I/O via scp Here's a patch for FreeBSD: http://www.secnetix.de/~olli/FreeBSD/openssh-cipher-none.patch Go to /usr/src/crypto/openssh, then apply the patch and rebuild libssh, ssh and sshd. Then you can use "-c none". I use "scp -c none" a lot within my internal network to transfer files between slow boxes. Encryption isn't really required there, but I can still use all of ssh'd features such as .ssh/authorized_keys, aliases via .ssh/config etc. I considered submitting the patch for official inclusion, but the OpenSSH people would reject it because they call it "insecure", and the FreeBSD people would reject it because they say the patch should be submitted to the OpenSSH people. *sigh* :-( Best regards Oliver -- Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd Any opinions expressed in this message may be personal to the author and may not necessarily reflect the opinions of secnetix in any way. "FreeBSD is Yoda, Linux is Luke Skywalker" -- Daniel C. Sobral