From owner-freebsd-questions@FreeBSD.ORG Fri Jul 1 22:23:08 2005 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A930916A41C for ; Fri, 1 Jul 2005 22:23:08 +0000 (GMT) (envelope-from danm@prime.gushi.org) Received: from prime.gushi.org (prime.gushi.org [65.125.228.130]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6BDF843D1D for ; Fri, 1 Jul 2005 22:23:08 +0000 (GMT) (envelope-from danm@prime.gushi.org) Received: from prime.gushi.org (danm@localhost.gushi.org [127.0.0.1]) by prime.gushi.org (8.13.4/8.13.4) with ESMTP id j61MQPuw000275 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 1 Jul 2005 18:26:25 -0400 (EDT) Received: (from danm@localhost) by prime.gushi.org (8.13.4/8.13.4/Submit) id j61MQNvX000271; Fri, 1 Jul 2005 18:26:23 -0400 (EDT) Date: Fri, 1 Jul 2005 18:26:23 -0400 (EDT) From: "Dan Mahoney, System Admin" To: =?ISO-8859-1?Q?Bj=F6rn_K=F6nig?= In-Reply-To: <42B5E7B9.70309@cs.tu-berlin.de> Message-ID: <20050701181643.X31749@prime.gushi.org> References: <20050619123123.B59187@prime.gushi.org> <42B5E7B9.70309@cs.tu-berlin.de> MIME-Version: 1.0 Content-Type: MULTIPART/MIXED; BOUNDARY="0-256387943-1120256783=:31749" Cc: questions@freebsd.org Subject: Re: bundled openssh version X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 01 Jul 2005 22:23:08 -0000 This message is in MIME format. The first part should be readable text, while the remaining parts are likely unreadable without MIME-aware tools. --0-256387943-1120256783=:31749 Content-Type: TEXT/PLAIN; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: QUOTED-PRINTABLE On Sun, 19 Jun 2005, [ISO-8859-1] Bj=F6rn K=F6nig wrote: > Dan Mahoney, System Admin wrote: > >> Is freeBSD ever going to update the "contributed" version of openssh to= =20 >> something more recent? > > Yes. Currently OpenSSH 4.1p1 is part of 6-CURRENT developent branch. An= =20 > update in 5-STABLE may happen, but not regulary and not definitely. I=20 > strongly believe that 3.5p1 of 4-STABLE will remain forever. > >> I'm particularly interested in the DNS SSHFP support, > > It should work with OpenSSH of the base system as far as I know. Nah, there's an option to ssh-keygen that spews out a properly formatted=20 SSHFP record that I was looking for. Based on what little info I have I=20 wasn't able to format one manually. There's very few examples out there. Additionally, I think the client implementation here requires some sort of= =20 DNSSEC (does ANYONE use this outside of banks and governments?). I think I'll try my luck with the security/openssh-portable. I am just a= =20 little afraid of there not being a way to "backstep". -Dan -- "She's NOT my girlfriend!" -Dan Mahoney, Quite a bit recently. --------Dan Mahoney-------- Techie, Sysadmin, WebGeek Gushi on efnet/undernet IRC ICQ: 13735144 AIM: LarpGM Site: http://www.gushi.org --------------------------- --0-256387943-1120256783=:31749--