Pending OpenSSH release, call for testing.

William R. Knox wknox at mitre.org
Fri Aug 13 22:12:07 EST 2004 

Passes all tests on Solaris 8, including the ability to reset expired
passwords both with UsePAM on and off. One oddity in the configure
was the following message:

checking sys/ptms.h usability... no
checking sys/ptms.h presence... yes
configure: WARNING: sys/ptms.h: present but cannot be compiled
configure: WARNING: sys/ptms.h:     check for missing prerequisite headers?
configure: WARNING: sys/ptms.h: see the Autoconf documentation
configure: WARNING: sys/ptms.h:     section "Present But Cannot Be Compiled"
configure: WARNING: sys/ptms.h: proceeding with the preprocessor's result
configure: WARNING: sys/ptms.h: in the future, the compiler will take precedence
configure: WARNING:     ## ------------------------------------------ ##
configure: WARNING:     ## Report this to the AC_PACKAGE_NAME lists.  ##
configure: WARNING:     ## ------------------------------------------ ##
checking for sys/ptms.h... yes

Built with the following options:

OpenSSH has been configured with the following options:
                     User binaries: /usr/local/bin
                   System binaries: /usr/local/sbin
               Configuration files: /usr/local/etc
                   Askpass program: /usr/local/libexec/ssh-askpass
                      Manual pages: /usr/local/man/manX
                          PID file: /var/run
  Privilege separation chroot path: /var/empty
            sshd default user PATH:
/usr/bin:/bin:/usr/sbin:/sbin:/usr/local/bin
   (If PATH is set in /etc/default/login it will be used instead. If
   used, ensure the path to scp is present, otherwise scp will not work.)
                    Manpage format: man
                       PAM support: yes
                 KerberosV support: no
                 Smartcard support: no
                     S/KEY support: no
              TCP Wrappers support: yes
              MD5 password support: no
       IP address in $DISPLAY hack: no
           Translate v4 in v6 hack: no
                  BSD Auth support: no
              Random number source: OpenSSL internal ONLY

              Host: sparc-sun-solaris2.8
          Compiler: gcc
    Compiler flags: -g -O2 -Wall -Wpointer-arith -Wno-uninitialized
Preprocessor flags:
      Linker flags:
         Libraries: -lwrap -lpam -ldl -lresolv -lcrypto -lrt -lz -lsocket
-lnsl

SVR4 style packages are supported with "make package"\n
PAM is enabled. You may need to install a PAM control file
for sshd, otherwise password authentication may fail.
Example PAM control files can be found in the contrib/
subdirectory

WARNING: the operating system that you are using does not
appear to support either the getpeereid() API nor the
SO_PEERCRED getsockopt() option. These facilities are used to
enforce security checks to prevent unauthorised connections to
ssh-agent. Their absence increases the risk that a malicious
user can connect to your agent.

			Bill Knox
			Lead Operating Systems Programmer/Analyst
			The MITRE Corporation

On Thu, 12 Aug 2004, Darren Tucker wrote:

> Date: Thu, 12 Aug 2004 23:55:20 +1000
> From: Darren Tucker <dtucker at zip.com.au>
> To: openssh-unix-dev at mindrot.org
> Subject: Pending OpenSSH release, call for testing.
>
> Hi All.
> 	OpenSSH is getting ready for a release soon, so we are asking for all
> interested parties to test a snapshot.
>
> 	Changes include:
>
> * sshd will now re-exec itself for each new connection (the "-e" option
> is required when running sshd in debug mode).
>
> * PAM password authentication has been (re)added.
>
> * Interface improvements to sftp(1)
>
> * Many bug fixes and improvements, for details see the ChangeLog and
> http://bugzilla.mindrot.org/show_bug.cgi?id=822
>
> The OpenBSD version is available in CVS HEAD:
> http://www.openbsd.org/anoncvs.html
>
> Portable snapshots are available at:
> ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/snapshot/
> or one of its mirrors listed at http://www.openssh.com/portable.html#ftp
>
> 	Please test!  Running the regression tests supplied with Portable does
> not require installation and is a simply:
> $ ./configure && make tests
>
> 	Testing on suitable non-production systems is also appreciated.  Please
> send reports of success or failure to openssh-unix-dev.
>
> 	Thanks,
> 		-Daz.
>
> --
> Darren Tucker (dtucker at zip.com.au)
> GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
>      Good judgement comes with experience. Unfortunately, the experience
> usually comes from bad judgement.
>
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>

More information about the openssh-unix-dev mailing list