AIX openssh patches

Matt Richards v2matt at btv.ibm.com
Fri Jan 21 03:45:39 EST 2000


Thus spake David Rankin (drankin at bohemians.lexington.ky.us):

> I've attached the revised patch. I don't have SOCKS4 or SOCKS5 to play
> with, so if you can test it, that'd be good. As mentioned, AIX users get
> WITH_AIXAUTHENTICATE without choice now.

I'm having a little problem with the pre27 working with the patches, I
let you know when I find out what's going on.


> I did not include any of your USE_SYSRANDOM patches into this patch. I looked
> at one of the AIX boxes I have access to, and srandom() is pseudorandom,
> not truly random (or at least nearly as random as EGD). I don't feel
> comfortable in making this an option given the attack possibilities 
> pseudorandom numbers give. Sorry.

You're absolutely right, I don't know what I was thinking. I just don't
like the idea of a separate process to generate randomness.

Thanks,
Matt





More information about the openssh-unix-dev mailing list