From owner-freebsd-stable@FreeBSD.ORG Thu Nov 30 15:34:00 2006 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id B9B6B16A4C8 for ; Thu, 30 Nov 2006 15:34:00 +0000 (UTC) (envelope-from zanchey@ucc.gu.uwa.edu.au) Received: from asclepius2.uwa.edu.au (asclepius2.uwa.edu.au [130.95.128.59]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3ADE543D73 for ; Thu, 30 Nov 2006 15:33:38 +0000 (GMT) (envelope-from zanchey@ucc.gu.uwa.edu.au) Received: from panacea.kas (localhost.localdomain [127.0.0.1]) by panacea.uwa.edu.au (Postfix) with SMTP id 697CF4CD61 for ; Thu, 30 Nov 2006 23:33:42 +0800 (WST) Received: from panacea (localhost.localdomain [127.0.0.1]) by panacea.prekas (Postfix) with ESMTP id 155A54CCEA for ; Thu, 30 Nov 2006 23:33:42 +0800 (WST) X-UWA-Client-IP: 130.95.13.9 (UWA) Received: from mooneye.ucc.gu.uwa.edu.au (mooneye.ucc.gu.uwa.edu.au [130.95.13.9]) by panacea.extinput (Postfix) with ESMTP id C2AD74CDBC for ; Thu, 30 Nov 2006 23:33:41 +0800 (WST) Received: by mooneye.ucc.gu.uwa.edu.au (Postfix, from userid 801) id E6BE93685D; Thu, 30 Nov 2006 23:33:40 +0800 (WST) Received: from mussel.ucc.gu.uwa.edu.au (mussel.ucc.gu.uwa.edu.au [130.95.13.18]) by mooneye.ucc.gu.uwa.edu.au (Postfix) with ESMTP id 590D23685D; Thu, 30 Nov 2006 23:33:40 +0800 (WST) Received: from zanchey (helo=localhost) by mussel.ucc.gu.uwa.edu.au with local-esmtp (Exim 3.36 #1 (Debian)) id 1Gpnuu-0005gC-00; Thu, 30 Nov 2006 23:33:40 +0800 Date: Thu, 30 Nov 2006 23:33:39 +0800 (WST) From: David Adam To: Dmitry Pryanishnikov In-Reply-To: <20061129143330.T82233@atlantis.atlantis.dp.ua> Message-ID: References: <4563126E.2060904@math.missouri.edu> <20061129143330.T82233@atlantis.atlantis.dp.ua> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Anti-Virus: Kaspersky Anti-Virus for MailServers 5.5.10/RELEASE, bases: 30112006 #232987, status: clean X-SpamTest-Info: Profile: Formal (785/061130) X-SpamTest-Info: Profile: Detect Hard [UCS 2006-10-25] X-SpamTest-Info: Profile: SysLog X-SpamTest-Info: Profile: Marking Spam - Subject (UCS) [2006-10-25] X-SpamTest-Status: Not detected X-SpamTest-Version: SMTP-Filter Version 2.0.0 [0125], KAS/Release Cc: FreeBSD Stable Mailing List Subject: Re: sshd. "UseDNS no" ignored? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: zanchey@ucc.gu.uwa.edu.au List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 30 Nov 2006 15:34:01 -0000 On Wed, 29 Nov 2006, Dmitry Pryanishnikov wrote: > I'm still wondering why OpenSSH is _so_ inferior to SSH.COM's ssh2 > (which is also open-source)? Is it really open-source? I couldn't find any reference to source downloads or licensing terms on http://www.ssh.com/. It mentions OpenSSH as an open-source alternative. > In the later product the following line in > /usr/local/etc/ssh2/sshd2_config: > > ResolveClientHostName no > > _actually_ prevents DNS reverse lookups by the sshd2 (just checked it, > my test machine has ssh2-nox11-3.2.9.1_5 installed from ports). It's not > the only option which present in ssh2 while absent in OpenSSH, second > very useful one is: > > AuthInteractiveFailureTimeout 10 > > which make SSH-password-guessing robots to give up after the first attempt ;) You might like to suggest these features to the OpenSSH developers! http://www.openssh.com/report.html Of course, when space is at a premium, Dropbear is the answer to your SSH questions. David Adam zanchey@ucc.gu.uwa.edu.au