RFE: Portable OpenSSH

James Ralston qralston+ml.openssh-unix-dev at andrew.cmu.edu
Wed Mar 28 08:03:20 EST 2001

On Tue, 27 Mar 2001, Darren Moffat wrote:

> > now i must ask, especially since we have someone from sun
> > engineering paying attention to OpenSSH (hi Darren!), just why the
> > most beautifully engineered kernel archetecture (solaris) does not
> > yet have a cryptographic-grade random device?!?  the /dev/random
> > supplied with
> I can't comment officially but I'm sure you won't be dissapointed in
> the future ;-)

If Sun's /dev/[u]random kernel module isn't backported as far back as
Solaris 2.5.1, I'll be disappointed.

Yes, I know everything through Solaris 2.6 is now officially
discontinued.  But I consider the addition of a kernel-implemented
/dev/random to be an important security fix, and IMO it should be
available to Sun customers who are still working on upgrading to a
supported version of Solaris (meaning, Solaris 7 or Solaris 8).

In our case, I estimate we'll have Solaris 2.6 machines lurking around
for at least another 6-12 months, if not longer...

James Ralston, Information Technology
Software Engineering Institute
Carnegie Mellon University, Pittsburgh, PA, USA

More information about the openssh-unix-dev mailing list