Test snapshot

Jan-Frode Myklebust janfrode at parallab.uib.no
Wed Aug 23 22:06:59 EST 2000


This is on IRIX, compiled with MIPSPro compilers.

setenv CC cc
./configure --prefix=/usr/openssh --with-ssl-dir=/usr/local/ssl
--with-rsh=/usr/bsd/rsh

OpenSSH configured has been configured with the following options.
                 User binaries: /usr/local/openssh-2.1.1p1-SNAP/bin
               System binaries: /usr/local/openssh-2.1.1p1-SNAP/sbin
           Configuration files: /usr/local/openssh-2.1.1p1-SNAP/etc
               Askpass program: /usr/local/openssh-2.1.1p1-SNAP/libexec/ssh/ssh-askpass
                  Manual pages: /usr/local/openssh-2.1.1p1-SNAP/man/X
                      PID file: /var/run
      Random number collection: Builtin (timeout 200)
                Manpage format: cat
                   PAM support: no
            KerberosIV support: no
                   AFS support: no
                 S/KEY support: no
          TCP Wrappers support: no
          MD5 password support: no
   IP address in $DISPLAY hack: no
      Use IPv4 by default hack: no
       Translate v4 in v6 hack: no

Compiler flags: -g -I/usr/local/include -I/usr/local/ssl//include
Linker flags:  -L/usr/local/ssl//lib -L/usr/local/ssl/
Libraries: -lz  -lcrypto 


It looks like the openssh-SNAP-20000823 is taking a lot more time
collecting entropy (or is it failing several times?) than the 
OpenSSH_2.1.1p4 version did. Here's an example (both are using the same 
etc/ssh_prng_cmds).

2.1.1p4% timex ssh dontask exit

real        4.49
user        0.37
sys         1.21

2.1.1p5% timex ssh dontask exit

real       24.89
user        3.10
sys        10.89


Here's full 'ssh -v' output from both versions:

2.1.1p4:

SSH Version OpenSSH_2.1.1, protocol versions 1.5/2.0.
Compiled with SSL (0x0090581f).
debug: Reading configuration data /Home/plab/janfrode/.ssh/config
debug: Applying options for dontask
debug: Applying options for *
debug: Reading configuration data /usr/openssh/etc/ssh_config
debug: Applying options for *
debug: Command 'netstat -an' timed out
debug: Seeded RNG with 29 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: ssh_connect: getuid 1158 geteuid 0 anon 1
debug: Connecting to dontask [129.177.192.97] port 22.
debug: Connection established.
debug: Setting sat id to 1158
debug: Remote protocol version 1.99, remote software version
OpenSSH_2.1.1p5
debug: Local version string SSH-1.5-OpenSSH_2.1.1
debug: Waiting for server public key.
debug: Received server public key (768 bits) and host key (1024 bits).
debug: Host 'dontask' is known and matches the RSA host key.
debug: Command 'ps -efl' timed out
debug: Seeded RNG with 27 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Encryption type: 3des
debug: Sent encrypted session key.
debug: Installing crc compensation attack detector.
debug: Received encrypted confirmation.
debug: Trying RSA authentication via agent with 'jfm at krypvier.ii.uib.no'
debug: Received RSA challenge from server.
debug: Sending response to RSA challenge.
debug: Remote: RSA authentication accepted.
debug: RSA authentication accepted by server.
debug: Requesting X11 forwarding with authentication spoofing.
debug: Requesting authentication agent forwarding.
debug: Sending command: exit
debug: Entering interactive session.
debug: Transferred: stdin 0, stdout 0, stderr 0 bytes in 0.4 seconds
debug: Bytes per second: stdin 0.0, stdout 0.0, stderr 0.0
debug: Exit status 0
debug: writing PRNG seed to file /Home/plab/janfrode/.ssh/prng_seed


2.1.1p5:
SSH Version OpenSSH_2.1.1p5, protocol versions 1.5/2.0.
Compiled with SSL (0x0090581f).
debug: Reading configuration data /usr/people/jfm/.ssh/config
debug: Applying options for dontask
debug: Applying options for *
debug: Reading configuration data /usr/openssh/etc/ssh_config
debug: Applying options for *
debug: Command 'netstat -an' timed out
debug: Seeded RNG with 28 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: ssh_connect: getuid 1200 geteuid 0 anon 1
debug: Connecting to dontask [129.177.192.97] port 22.
debug: Connection established.
debug: Setting sat id to 1200
debug: Remote protocol version 1.99, remote software version
OpenSSH_2.1.1p5
debug: Local version string SSH-1.5-OpenSSH_2.1.1p5
debug: Waiting for server public key.
debug: Received server public key (768 bits) and host key (1024 bits).
debug: Host 'dontask' is known and matches the RSA host key.
debug: Seeded RNG with 28 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 28 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Command 'netstat -an' timed out
debug: Command 'ps -efl' timed out
debug: Seeded RNG with 30 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Command 'ps -efl' timed out
debug: Seeded RNG with 28 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Command 'netstat -an' timed out
debug: Seeded RNG with 28 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Encryption type: 3des
debug: Sent encrypted session key.
debug: Installing crc compensation attack detector.
debug: Received encrypted confirmation.
debug: Trying RSA authentication via agent with 'jfm at krypvier.ii.uib.no'
debug: Received RSA challenge from server.
debug: Sending response to RSA challenge.
debug: Remote: RSA authentication accepted.
debug: RSA authentication accepted by server.
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Command 'ps -efl' timed out
debug: Seeded RNG with 28 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Requesting X11 forwarding with authentication spoofing.
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Seeded RNG with 25 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Command 'netstat -an' timed out
debug: Seeded RNG with 26 bytes from programs
debug: Seeded RNG with 3 bytes from system calls
debug: Requesting authentication agent forwarding.
debug: Sending command: exit
debug: Entering interactive session.
debug: Transferred: stdin 0, stdout 0, stderr 0 bytes in 0.4 seconds
debug: Bytes per second: stdin 0.0, stdout 0.0, stderr 0.0
debug: Exit status 0
debug: writing PRNG seed to file /usr/people/jfm/.ssh/prng_seed




  -jf





More information about the openssh-unix-dev mailing list