From owner-freebsd-net@FreeBSD.ORG Fri Jun 13 03:36:47 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 65B6C106566C; Fri, 13 Jun 2008 03:36:47 +0000 (UTC) (envelope-from oberman@es.net) Received: from postal1.es.net (postal4.es.net [IPv6:2001:400:6000:1::66]) by mx1.freebsd.org (Postfix) with ESMTP id C7BD08FC0C; Fri, 13 Jun 2008 03:36:46 +0000 (UTC) (envelope-from oberman@es.net) Received: from ptavv.es.net (ptavv.es.net [198.128.4.29]) by postal4.es.net (Postal Node 4) with ESMTP (SSL) id TJX09545; Thu, 12 Jun 2008 20:36:45 -0700 Received: from ptavv.es.net (ptavv.es.net [127.0.0.1]) by ptavv.es.net (Tachyon Server) with ESMTP id 9A5C345048; Thu, 12 Jun 2008 20:36:41 -0700 (PDT) To: Randy Bush In-Reply-To: Your message of "Fri, 13 Jun 2008 12:29:45 +0900." <4851E9A9.90809@psg.com> Mime-Version: 1.0 Content-Type: multipart/signed; boundary="==_Exmh_1213328201_9366P"; micalg=pgp-sha1; protocol="application/pgp-signature" Content-Transfer-Encoding: 7bit Date: Thu, 12 Jun 2008 20:36:41 -0700 From: "Kevin Oberman" Message-Id: <20080613033641.9A5C345048@ptavv.es.net> X-Sender-IP: 198.128.4.29 X-Sender-Domain: es.net X-Recipent: ; ; ; ; ; X-Sender: X-To_Name: Randy Bush X-To_Domain: psg.com X-To: Randy Bush X-To_Email: randy@psg.com X-To_Alias: randy Cc: freebsd-net@freebsd.org, Brooks Davis , Ian Smith , Peter Losher Subject: Re: ssh window X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Jun 2008 03:36:47 -0000 --==_Exmh_1213328201_9366P Content-Type: text/plain; charset=us-ascii Content-Disposition: inline > Date: Fri, 13 Jun 2008 12:29:45 +0900 > From: Randy Bush > Sender: owner-freebsd-net@freebsd.org > > Ian Smith wrote: > > On Thu, 12 Jun 2008, Brooks Davis wrote: > > > On Thu, Jun 12, 2008 at 06:30:05PM -0700, Peter Losher wrote: > > > > Randy Bush wrote: > > > >> this has been a cause of great pain for a loooong time. > > > >> > > > >> http://www.psc.edu/networking/projects/hpn-ssh/ > > > >> > > > >> as openssh seems not to be fixing it (and i do not consider a 2mb fixed > > > >> buffer to be fixed, especially not from a 100mb link here in tokyo and > > > >> servers in the states, europe, and africa), perhaps i could convince > > > >> freebsd net folk to do so? > > > > > > > > FYI - HPN is already a build option in the openssh-portable port. > > > > > > I do think we should strongly consider adding the rest of it to the base. > > > > Presumably with suitable caveats re NONE CYPHER, NoneEnabled=no default? > > for sure! Agreed. PSC had valid reasons to allow NONE. They just don't apply to most cases and are a a very bad idea for a default install. -- R. Kevin Oberman, Network Engineer Energy Sciences Network (ESnet) Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab) E-mail: oberman@es.net Phone: +1 510 486-8634 Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751 --==_Exmh_1213328201_9366P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) Comment: Exmh version 2.5 06/03/2002 iD8DBQFIUetJkn3rs5h7N1ERAgMGAJ9FvgFhCfR5GOFL1V7vbWr3uLXyagCgk/vl vBlWK//v2PGP0x737ZnHVx4= =W+6t -----END PGP SIGNATURE----- --==_Exmh_1213328201_9366P--