From owner-freebsd-questions@FreeBSD.ORG Sun Jun 19 21:48:16 2005 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4CCA716A41C for ; Sun, 19 Jun 2005 21:48:16 +0000 (GMT) (envelope-from bkoenig@cs.tu-berlin.de) Received: from mail.efacilitas.de (efacilitas.de [213.133.110.227]) by mx1.FreeBSD.org (Postfix) with ESMTP id D4DD743D1D for ; Sun, 19 Jun 2005 21:48:15 +0000 (GMT) (envelope-from bkoenig@cs.tu-berlin.de) Received: from eurystheus.local (port-212-202-169-37.dynamic.qsc.de [212.202.169.37]) by mail.efacilitas.de (Postfix) with ESMTP id 8E948123A26; Sun, 19 Jun 2005 23:46:36 +0200 (CEST) Received: from localhost (eurystheus.local [192.168.1.67]) by eurystheus.local (Postfix) with ESMTP id 716FF12B09E; Sun, 19 Jun 2005 23:46:42 +0200 (CEST) Received: from eurystheus.local ([192.168.1.67]) by localhost (eurystheus.locaL [192.168.1.67]) (amavisd-new, port 10024) with ESMTP id 32439-04; Sun, 19 Jun 2005 23:46:34 +0200 (CEST) Received: from [192.168.1.67] (eurystheus.local [192.168.1.67]) by eurystheus.local (Postfix) with ESMTP id 52AE412B085; Sun, 19 Jun 2005 23:46:34 +0200 (CEST) Message-ID: <42B5E7B9.70309@cs.tu-berlin.de> Date: Sun, 19 Jun 2005 23:46:33 +0200 From: =?ISO-8859-1?Q?Bj=F6rn_K=F6nig?= User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.8) Gecko/20050517 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "Dan Mahoney, System Admin" References: <20050619123123.B59187@prime.gushi.org> In-Reply-To: <20050619123123.B59187@prime.gushi.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Virus-Scanned: amavisd-new at example.com Cc: questions@freebsd.org Subject: Re: bundled openssh version X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 19 Jun 2005 21:48:16 -0000 Dan Mahoney, System Admin wrote: > Is freeBSD ever going to update the "contributed" version of openssh to > something more recent? Yes. Currently OpenSSH 4.1p1 is part of 6-CURRENT developent branch. An update in 5-STABLE may happen, but not regulary and not definitely. I strongly believe that 3.5p1 of 4-STABLE will remain forever. > I'm particularly interested in the DNS SSHFP support, It should work with OpenSSH of the base system as far as I know. > and I'm unsure of the differences between the "base" version, > the one in ports, and the "portable" version in ports, as far as what > functionality I would gain/lose. The OpenBSD team develops OpenSSH for their operating system. Since this piece of software won't run on other systems without huge patches they offer a portable version of OpenSSH. I don't know the differences in detail, because I neither use OpenSSH in that excessive manner nor OpenBSD. A slightly changed portable OpenSSH 3.8.1p1 comes along with the FreeBSD base system. The "p" indicates that this is the portable version. You'll find a list of these small changes in /usr/src/crypto/openssh/FREEBSD-upgrade[1]. The port security/openssh-portable is the most recent OpenSSH 4.1p1. If you want to know the FreeBSD-specific changes then the patches in /usr/ports/security/openssh-portable/files/ might be helpful. security/openssh is a patched OpenSSH 3.6.1 of the non-portable version; I think this port falled asleep. The Changelog[2] gives hints about the functionality that you will gain with a newer version. I'm not sure, but I guess you lose almost nothing if you choose the latest. [1] http://www.freebsd.org/cgi/cvsweb.cgi/src/crypto/openssh/ [2] ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/ChangeLog Regards Björn