...

...

...

Is there a chance of an update which will work with both privsep and compression at some point in the near future, or will we have to wait for SuSE 8.1 to get that?

It already DOES work, iff you have a 2.4 kernel. The problem is with missing features in the shared mem implementation in 2.2 and earlier kernels.

That's another problem - Olaf and Solar Designer have made a backwards compatibility patch for the older distributions. I have removed this patch from the 8.0 package earlier today (yesterday) because 8.0 doesn't come with 2.2 kernels any more.

[...]

It's on our wishlist as well, yes. Compression is desireable whereever your link is weaker than your CPU.

yes yes... Adding the patch again right now since anon mmaps might not be supported at compile-time on one or more machines in our build farm. This is messy. Expect the update package for 8.0 as soon as it has passed our testing team.

The 8.0 package has another bug that needs a fix: Key generation in the start script. It's a bit of a mess...

Fixed. Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "You don't need eyes to see, | SuSE Linux AG - Security Phone: // you need vision!" | Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless | - -

Are we expecting a newer package then openssh-3.4p1-4 as when I start sshd on a 8.0 machine I get the following message

"This platform does not support both privilege separation and compression Compression disabled"

...is on the way. The packages has been built on a 2.2 machine. :-( Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "You don't need eyes to see, | SuSE Linux AG - Security Phone: // you need vision!" | Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless | - -

On Wed, 2002-07-03 at 05:32, Philippe Vogel wrote:

As I know from an announcement V3.4 should have compression enabled. The early 3.3 had no support and no full pam-support. If they did not get it working in 3.4, other features may not work as well. This would be a bad thing!

What exactly is the problem with Openssh 3.4 and SUSE 8.0? I compiled it on my system when it come out and both UsePrivilegeSeparation and Compression worked fine. Charles -- "...Unix, MS-DOS, and Windows NT (also known as the Good, the Bad, and the Ugly)." (By Matt Welsh)

* Roman Drahtmueller wrote on Wed, Jul 03, 2002 at 11:55 +0200: Well, I know it's OT, but I think it's interesting :)

Our build farm builds packages in chrooted environments. This is one out of 4000 cases where the running kernel version matters, and, frankly, we think it's braindead.

The kernel running at build time does matter? Why that?! And will the next kernel upgrade have ssh as dependency or what?

We have had another problem almost two years ago where a build script in some package remounted /proc read-only in the chroot environment. No problem for 2.2 kernels, the /proc outside the chroot is untouched. In 2.4 though, all mounted proc filesystems change options.

What does this mean? I do not understand it. oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.

...

...

...

Is there a chance of an update which will work with both privsep and compression at some point in the near future, or will we have to wait for SuSE 8.1 to get that?

It already DOES work, iff you have a 2.4 kernel. The problem is with missing features in the shared mem implementation in 2.2 and earlier kernels.

That's another problem - Olaf and Solar Designer have made a backwards compatibility patch for the older distributions. I have removed this patch from the 8.0 package earlier today (yesterday) because 8.0 doesn't come with 2.2 kernels any more.

[...]

It's on our wishlist as well, yes. Compression is desireable whereever your link is weaker than your CPU.

yes yes... Adding the patch again right now since anon mmaps might not be supported at compile-time on one or more machines in our build farm. This is messy. Expect the update package for 8.0 as soon as it has passed our testing team.

The 8.0 package has another bug that needs a fix: Key generation in the start script. It's a bit of a mess...

Fixed. Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "You don't need eyes to see, | SuSE Linux AG - Security Phone: // you need vision!" | Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless | - -

Are we expecting a newer package then openssh-3.4p1-4 as when I start sshd on a 8.0 machine I get the following message

"This platform does not support both privilege separation and compression Compression disabled"

...is on the way. The packages has been built on a 2.2 machine. :-( Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "You don't need eyes to see, | SuSE Linux AG - Security Phone: // you need vision!" | Nürnberg, Germany +49-911-740530 // Maxi Jazz, Faithless | - -

On Wed, 2002-07-03 at 05:32, Philippe Vogel wrote:

As I know from an announcement V3.4 should have compression enabled. The early 3.3 had no support and no full pam-support. If they did not get it working in 3.4, other features may not work as well. This would be a bad thing!

What exactly is the problem with Openssh 3.4 and SUSE 8.0? I compiled it on my system when it come out and both UsePrivilegeSeparation and Compression worked fine. Charles -- "...Unix, MS-DOS, and Windows NT (also known as the Good, the Bad, and the Ugly)." (By Matt Welsh)