From owner-freebsd-security Sat Sep 23 13:17:43 2000 Delivered-To: freebsd-security@freebsd.org Received: from jamus.xpert.com (jamus.xpert.com [199.203.132.17]) by hub.freebsd.org (Postfix) with ESMTP id 08CBB37B424; Sat, 23 Sep 2000 13:17:39 -0700 (PDT) Received: from roman (helo=localhost) by jamus.xpert.com with local-esmtp (Exim 3.12 #5) id 13cvjs-0003QV-00; Sat, 23 Sep 2000 22:17:36 +0200 Date: Sat, 23 Sep 2000 22:17:36 +0200 (IST) From: Roman Shterenzon To: "Brian F. Feldman" Cc: freebsd-security@FreeBSD.org Subject: Re: rsh/rlogin (was Re: sysinstall DOESN'T ASK, dangerous defaults!) In-Reply-To: <200009231613.e8NGDh560434@green.dyndns.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sat, 23 Sep 2000, Brian F. Feldman wrote: > > > Having said that and taking my security officer hat off and putting my > > manager hat on. Most organisations that use SSH are using it > > illegally. With recent licensing changes and the fact that OpenSSH > > doesn't install all that cleanly on non-BSD platforms, e.g. no > > /dev/random, compile errors, and my customers report that OpenSSH > > sometimes hangs on Solaris 2.6 systems (probably related to the entropy > > gathering daemon that substitutes /dev/random on non-BSD systems), the > > quick and dirty solutions are: > > Or possibly related to Solaris 2.6 being increasingly ancient and buggy... There's a port of Linux' /dev/random for Solaris I use myself on a 2.6 system. It works for me. I can send an url if anyone is interested. --Roman Shterenzon, UNIX System Administrator and Consultant [ Xpert UNIX Systems Ltd., Herzlia, Israel. Tel: +972-9-9522361 ] To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message