AIX openssh patches
Matt Richards
v2matt at btv.ibm.com
Fri Jan 21 03:45:39 EST 2000
Thus spake David Rankin (drankin at bohemians.lexington.ky.us):
> I've attached the revised patch. I don't have SOCKS4 or SOCKS5 to play
> with, so if you can test it, that'd be good. As mentioned, AIX users get
> WITH_AIXAUTHENTICATE without choice now.
I'm having a little problem with the pre27 working with the patches, I
let you know when I find out what's going on.
> I did not include any of your USE_SYSRANDOM patches into this patch. I looked
> at one of the AIX boxes I have access to, and srandom() is pseudorandom,
> not truly random (or at least nearly as random as EGD). I don't feel
> comfortable in making this an option given the attack possibilities
> pseudorandom numbers give. Sorry.
You're absolutely right, I don't know what I was thinking. I just don't
like the idea of a separate process to generate randomness.
Thanks,
Matt
More information about the openssh-unix-dev
mailing list