Subject: Re: Off-Topic: NiftyTelnet with SSHv2 question
To: gabriel rosenkoetter <gr@eclipsed.net>
From: Henry B. Hotz <hotz@jpl.nasa.gov>
List: port-mac68k
Date: 09/22/2000 15:35:26
At 5:32 PM -0400 9/22/00, gabriel rosenkoetter wrote:
>On Fri, Sep 22, 2000 at 10:52:38AM -0700, Henry B. Hotz wrote:
> > better.  I'm interested to see that OpenSSH is now getting
> > recommendations that it may be ready for prime time.
>
>Yep. It's been ready for primetime on OpenBSD since it was released,
>really, but the ports haven't been well behaved more than a month or
>two (and I don't trust the Solaris port just yet, but "I" is by
>comittee--cs.swarthmore.edu... were it up to me, I'd probably have it
>installed).

Well, if I need to install on any new machines I'll keep it in mind. 
I used to use telnet with kerberos 4 because Nifty/ssh wasn't legal 
in the US.  I switched  to Nifty/ssh for evaluation when the buffer 
overflow was discovered in MIT kerberos 4, and I started using it 
regularly when the RSA patent was released. 8-)

> > For NetBSD I'm using the pkgsrc-patched-source, but I had to do the
> > configure and install the old fashioned way in order to get .rhosts
> > authentication to work.  The only difference I see that might matter
>
>Well, I don't use .rhosts, so...

It seemed easier to set up than the public/private key stuff.  One 
trick on NetBSD is you seem to need identical entries for both the 
common name (macbsd) and the FQDN (macbsd-840av.jpl.nasa.gov) before 
it works.  I really should fix that name since it isn't a Quadra 
anymore.


Signature held pending an ISO 9000 compliant
signature design and approval process.
h.b.hotz@jpl.nasa.gov, or hbhotz@oxy.edu