3 files changed, 16 insertions, 25 deletions
@@ -22,6 +22,7 @@
- Moved all the bsd-* and fake-* stuff into new libopenbsd-compat.a
+ - Doc updates
- Makefile and RPM spec fixes
@@ -29,12 +29,8 @@ passphrase requester. This is maintained separately at:
-If you are planning to use OpenSSH on a Unix which lacks a Kernel random
-number generator (/dev/urandom), you may want to install the Entropy
-Gathering Daemon (or similar). You will also need to specify the
---with-egd-pool option to ./configure. OpenSSH 2.0 includes some
-peliminary built-in randomness collection, but it is not as well
-tested as EGD.
+The Entropy Gathering Daemon (EGD) is supported if you have a system which
+lacks /dev/random and don't want to use OpenSSH's internal entropy collection.
@@ -98,10 +94,9 @@ random numbers (the default is /dev/urandom). Unless you are absolutly
sure of what you are doing, it is best to leave this alone.
--with-egd-pool=/some/file allows you to enable Entropy Gathering
-Daemon support and to specify a EGD pool socket. You may want to
-use this if your Unix does not support the /dev/urandom device (or
-similar). The file argument refers to the EGD pool file, not the
-EGD program itself. Please refer to the EGD documentation.
+Daemon support and to specify a EGD pool socket. Use this if your
+Unix lacks /dev/random and you don't want to use OpenSSH's builtin
+entropy collection support.
--with-lastlog=FILE will specify the location of the lastlog file.
./configure searches a few locations for lastlog, but may not find
@@ -3,11 +3,11 @@
[ Thanks to HARUYAMA Seigo <firstname.lastname@example.org>
-* On systmes which lack a /dev/random driver, this port of
-* OpenSSH-1.2.2 was not correctly seeding OpenSSL's random number
+* On systmes which lack a /dev/random driver, version of this port
+* prior to 1.2.2 were not correctly seeding OpenSSL's random number
* pool. This resulted in lower quality RSA keys being generated. If
-* you generated host or user keys with v1.2.2, please generate new
-* ones using a more recent version.
+* you generated host or user keys with v1.2.2 or previous versions,
+* please generate new ones using a more recent version.
This is the port of OpenBSD's excellent OpenSSH to Linux and other
@@ -21,20 +21,17 @@ Markus Friedl, Niels Provos, Theo de Raadt, and Dug Song. It has a
homepage at http://www.openssh.com/
This port consists of the re-introduction of autoconf support, PAM
-support (for Linux and Solaris), EGD support, SOCKS support (using
-the Dante  libraries and replacements for OpenBSD library functions
-that are (regrettably) absent from other unices. This port has been
-best tested on Linux, Solaris, HPUX, NetBSD and Irix. Support for AIX,
-SCO, NeXT and other Unices is underway. This version actively tracks
-changes in the OpenBSD CVS repository.
+support (for Linux and Solaris), EGD support and replacements for
+OpenBSD library functions that are (regrettably) absent from other
+unices. This port has been best tested on Linux, Solaris, HPUX, NetBSD
+and Irix. Support for AIX, SCO, NeXT and other Unices is underway.
+This version actively tracks changes in the OpenBSD CVS repository.
The PAM support is now more functional than the popular packages of
commercial ssh-1.2.x. It checks "account" and "session" modules for
all logins, not just when using password authentication.
-OpenSSH depends on Zlib, OpenSSL and optionally PAM and
-Dante. To build the GNOME pass-phrase requester
-(--with-gnome-askpass), you will need the GNOME libraries installed.
+OpenSSH depends on Zlib, OpenSSL and optionally PAM.
There is now several mailing lists for this port of OpenSSH. Please
refer to http://violet.ibs.com.au/openssh/list.html for details on how
@@ -63,6 +60,4 @@ References -
 http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)