From owner-freebsd-security  Mon Nov  1 13:59:34 1999
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.issei.org (mx1.issei.org [210.254.221.66])
	by hub.freebsd.org (Postfix) with ESMTP
	id C4697152BF; Mon,  1 Nov 1999 13:59:24 -0800 (PST)
	(envelope-from issei@issei.org)
Received: from mx1.issei.org (root@mx1.issei.org [3ffe:505:a:1:2a0:c9ff:fec8:8338])
	by mx1.issei.org (8.9.3+3.2W/3.7W-v6) with ESMTP/IPv6 id GAA63524;
	Tue, 2 Nov 1999 06:59:55 +0900 (JST)
	(envelope-from issei@issei.org)
To: security@freebsd.org, ports@freebsd.org
Subject: Re: OpenSSH patches
In-Reply-To: <Pine.BSF.4.10.9911011124160.70672-100000@hub.freebsd.org>
References: <Pine.BSF.4.10.9911011124160.70672-100000@hub.freebsd.org>
X-Mailer: Mew version 1.94.1 on XEmacs 21.1 (Big Bend)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <19991102065758V.issei@issei.org>
Date: Tue, 02 Nov 1999 06:57:58 +0900
From: Issei Suzuki <issei@issei.org>
X-Dispatcher: imput version 990905(IM130)
Lines: 34
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In mail "OpenSSH patches"
Kris Kennaway <kris@hub.freebsd.org> wrote:

> As has been mentioned here recently, the OpenBSD guys have taken an old
> version of SSH, from before it caught a restrictive license, cleaned it up
> (replugged the security holes, etc), and released it as OpenSSH (actually I
> think it's due to be released "officially" with OpenBSD 2.6).

   Good news :)


> I also haven't tested whether this actually WORKS, because my machine isn't
> on the 'net right now. It builds fine, though - I'd be interested to hear
> from people about how it works (it's supposedly interoperable with the "true"
> SSH 1.x client/servers).

  It works fine on my FreeBSD 3.3-RELEASE box, though I have not
tested on other OS evniroment.

  Client           Server        Argorythm    Result
  -----------------------------------------------------
  OpenSSH 1.2      ssh 1.2.27    3DES         OK
  ssh 1.2.27       OpenSSH 1.2   3DES         OK
  OpenSSH 1.2      OpenSSH 1.2   3DES         OK

> If it wasn't for the US crypto restrictions we all know and love,
> I'd put the tarball up on my website.

  It does not seem that OpenSSH source code includes any kind of
crypto argorythm (they are included in OpenSSL library), but is it
still affected by US crypto restrictions?

-- 
Issei Suzuki


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message