Home | History | Annotate | Download | only in doc
      1 [ A Japanese translation of this document is available at
      2 [ http://www.unixuser.org/%7Eharuyama/security/openssh/index.html
      3 [ Thanks to HARUYAMA Seigo <haruyama (a] nt.phys.s.u-tokyo.ac.jp>
      4 
      5 ******* IMPORTANT
      6 * On systmes which lack a /dev/random driver, version of this port
      7 * prior to 1.2.2 were not correctly seeding OpenSSL's random number
      8 * pool. This resulted in lower quality RSA keys being generated. If
      9 * you generated host or user keys with v1.2.2 or previous versions, 
     10 * please generate new ones using a more recent version.
     11 
     12 This is the port of OpenBSD's excellent OpenSSH[0] to Linux and other
     13 Unices.
     14 
     15 OpenSSH is based on the last free version of Tatu Ylonen's SSH with
     16 all patent-encumbered algorithms removed (to external libraries), all
     17 known security bugs fixed, new features reintroduced and many other
     18 clean-ups. More information about SSH itself can be found in the file
     19 README.Ylonen. OpenSSH has been created by Aaron Campbell, Bob Beck,
     20 Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a
     21 homepage at http://www.openssh.com/
     22 
     23 This port consists of the re-introduction of autoconf support, PAM
     24 support (for Linux and Solaris), EGD[1] support and replacements for 
     25 OpenBSD library functions that are (regrettably) absent from other 
     26 unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD 
     27 and Irix. Support for AIX, SCO, NeXT and other Unices is underway. 
     28 This version actively tracks changes in the OpenBSD CVS repository.
     29 
     30 The PAM support is now more functional than the popular packages of
     31 commercial ssh-1.2.x. It checks "account" and "session" modules for
     32 all logins, not just when using password authentication.
     33 
     34 OpenSSH depends on Zlib[2], OpenSSL[3] and optionally PAM[4].
     35 
     36 There is now several mailing lists for this port of OpenSSH. Please
     37 refer to http://www.openssh.com/list.html for details on how to join.
     38 
     39 Please send bug reports and patches to the mailing list
     40 openssh-unix-dev (a] mindrot.org. The list is open to posting by
     41 unsubscribed users.
     42 
     43 If you are a citizen of the USA or another country which restricts 
     44 export of cryptographic products, then please refrain from sending 
     45 crypto-related code or patches to the list. We cannot accept them.
     46 Other code contribution are accepted, but please follow the OpenBSD
     47 style guidelines[5].
     48 
     49 Please refer to the INSTALL document for information on how to install
     50 OpenSSH on your system. There are a number of differences between this 
     51 port of OpenSSH and F-Secure SSH 1.x, please refer to the OpenSSH FAQ[6]
     52 for details and general tips.
     53 
     54 Damien Miller <djm (a] mindrot.org>
     55 
     56 Miscellania - 
     57 
     58 This version of SSH is based upon code retrieved from the OpenBSD CVS
     59 repository which in turn was based on the last free 
     60 version of SSH released by Tatu Ylonen.
     61 
     62 References -
     63 
     64 [0] http://www.openssh.com/faq.html
     65 [1] http://www.lothar.com/tech/crypto/
     66 [2] ftp://ftp.freesoftware.com/pub/infozip/zlib/
     67 [3] http://www.openssl.org/
     68 [4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
     69 [5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current
     70 [6] http://www.openssh.com/faq.html
     71