Minor documentation update:
- remove duplication of dependency information (it's all in INSTALL). - SSHFP is now an RFC.
This commit is contained in:
parent
14ccfdb724
commit
b763ed05bd
2
INSTALL
2
INSTALL
|
@ -252,7 +252,7 @@ to generate keys for all supported types.
|
||||||
|
|
||||||
Replacing /etc/ssh with the correct path to the configuration directory.
|
Replacing /etc/ssh with the correct path to the configuration directory.
|
||||||
(${prefix}/etc or whatever you specified with --sysconfdir during
|
(${prefix}/etc or whatever you specified with --sysconfdir during
|
||||||
configuration)
|
configuration).
|
||||||
|
|
||||||
If you have configured OpenSSH with EGD support, ensure that EGD is
|
If you have configured OpenSSH with EGD support, ensure that EGD is
|
||||||
running and has collected some Entropy.
|
running and has collected some Entropy.
|
||||||
|
|
28
README
28
README
|
@ -15,7 +15,7 @@ Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos, Theo de Raadt,
|
||||||
and Dug Song. It has a homepage at https://www.openssh.com/
|
and Dug Song. It has a homepage at https://www.openssh.com/
|
||||||
|
|
||||||
This port consists of the re-introduction of autoconf support, PAM
|
This port consists of the re-introduction of autoconf support, PAM
|
||||||
support, EGD[1]/PRNGD[2] support and replacements for OpenBSD library
|
support, EGD/PRNGD support and replacements for OpenBSD library
|
||||||
functions that are (regrettably) absent from other unices. This port
|
functions that are (regrettably) absent from other unices. This port
|
||||||
has been best tested on AIX, Cygwin, HP-UX, Linux, MacOS/X,
|
has been best tested on AIX, Cygwin, HP-UX, Linux, MacOS/X,
|
||||||
FreeBSD, NetBSD, OpenBSD, OpenServer, Solaris and UnixWare.
|
FreeBSD, NetBSD, OpenBSD, OpenServer, Solaris and UnixWare.
|
||||||
|
@ -26,37 +26,27 @@ The PAM support is now more functional than the popular packages of
|
||||||
commercial ssh-1.2.x. It checks "account" and "session" modules for
|
commercial ssh-1.2.x. It checks "account" and "session" modules for
|
||||||
all logins, not just when using password authentication.
|
all logins, not just when using password authentication.
|
||||||
|
|
||||||
OpenSSH depends on Zlib[3], OpenSSL[4], and optionally PAM[5] and
|
|
||||||
libedit[6]
|
|
||||||
|
|
||||||
There is now several mailing lists for this port of OpenSSH. Please
|
There is now several mailing lists for this port of OpenSSH. Please
|
||||||
refer to https://www.openssh.com/list.html for details on how to join.
|
refer to https://www.openssh.com/list.html for details on how to join.
|
||||||
|
|
||||||
Please send bug reports and patches to the mailing list
|
Please send bug reports and patches to the mailing list
|
||||||
openssh-unix-dev@mindrot.org. The list is open to posting by unsubscribed
|
openssh-unix-dev@mindrot.org. The list is open to posting by unsubscribed
|
||||||
users. Code contribution are welcomed, but please follow the OpenBSD
|
users. Code contribution are welcomed, but please follow the OpenBSD
|
||||||
style guidelines[7].
|
style guidelines[1].
|
||||||
|
|
||||||
Please refer to the INSTALL document for information on how to install
|
Please refer to the INSTALL document for information on dependencies and
|
||||||
OpenSSH on your system.
|
how to install OpenSSH on your system.
|
||||||
|
|
||||||
Damien Miller <djm@mindrot.org>
|
Damien Miller <djm@mindrot.org>
|
||||||
|
|
||||||
Miscellania -
|
Miscellania -
|
||||||
|
|
||||||
This version of OpenSSH is based upon code retrieved from the OpenBSD
|
This version of OpenSSH is based upon code retrieved from the OpenBSD CVS
|
||||||
CVS repository which in turn was based on the last free sample
|
repository which in turn was based on the last free sample implementation
|
||||||
implementation released by Tatu Ylonen.
|
released by Tatu Ylonen.
|
||||||
|
|
||||||
References -
|
References -
|
||||||
|
|
||||||
[0] https://www.openssh.com/
|
[0] https://www.openssh.com/
|
||||||
[1] http://www.lothar.com/tech/crypto/
|
[1] https://man.openbsd.org/style.9
|
||||||
[2] http://prngd.sourceforge.net/
|
|
||||||
[3] https://www.zlib.net/
|
|
||||||
[4] https://www.openssl.org/
|
|
||||||
[5] https://www.openpam.org
|
|
||||||
https://www.kernel.org/pub/linux/libs/pam/
|
|
||||||
(PAM also is standard on Solaris and HP-UX 11)
|
|
||||||
[6] https://thrysoee.dk/editline/ (portable version)
|
|
||||||
[7] https://man.openbsd.org/style.9
|
|
||||||
|
|
|
@ -1,10 +1,10 @@
|
||||||
How to verify host keys using OpenSSH and DNS
|
How to verify host keys using OpenSSH and DNS
|
||||||
---------------------------------------------
|
---------------------------------------------
|
||||||
|
|
||||||
OpenSSH contains support for verifying host keys using DNS as described in
|
OpenSSH contains support for verifying host keys using DNS as described
|
||||||
draft-ietf-secsh-dns-05.txt. The document contains very brief instructions
|
in https://tools.ietf.org/html/rfc4255. The document contains very brief
|
||||||
on how to use this feature. Configuring DNS is out of the scope of this
|
instructions on how to use this feature. Configuring DNS is out of the
|
||||||
document.
|
scope of this document.
|
||||||
|
|
||||||
|
|
||||||
(1) Server: Generate and publish the DNS RR
|
(1) Server: Generate and publish the DNS RR
|
||||||
|
|
Loading…
Reference in New Issue