Subject: fun with ssh (was: anoncvs not working)
To: Jeremy C. Reed <reed@reedmedia.net>
From: admin@datazap.net <admin@datazap.net>
List: netbsd-help
Date: 12/21/2003 17:18:03
Hi,
After looking at the problem again, I think I was wrong about it being a
compiling problem. First of all, only the sshd child process uses alot of
cpu time, and that is only when I use protocol 1. I updated pkgsrc
again, and rebuilt the openssh without ipv6 support and now the problem
has basically gone away. Although now it spawns 2 child processes. Is this
normal behaviour (without ipv6 support)?
On Sat, 29 Nov 2003, Jeremy C. Reed wrote:
> > I also looked at moving to freSSH. Has anyone had any luck using it? When
>
> Yes. I use FreSSH on a few boxes (NetBSD and Linux).
>
> > I built it, I didn't get a config file, or a file in rc.d. Infact, I
> > didn't even get a man page. So I went to the website (fressh.org) and I
> > couldn't find any documentation there either.
>
> The key file is at /etc/ssh_host_key (or /etc/sshd.key). You can create
> with fressh-keygen or you could use the OpenSSH keys. Just run fresshd to
> start it. You could put in your /etc/rc.local to start.
> Some changes for fressh were made in pkgsrc recently too. It is not really
> supported anymore ... I'd like someone to pick it up and work on it some
> more. I was told that the fressh CVS has a lot more code that was never
> released.
I was able to get freSSH working by coping ssh_host_key to /etc/sshd.key.
And then running /usr/local/sbin/fresshd. It also spawns 2 child
processes, but it takes less time to log in. Although, it does seem to
hang when I try to log out, and the finger and who command shows there are
more people logged in than there really are (sometimes). Which leaves me
with a couple of questions:
1. Is this normal behaviour for freeSSH?
2. Is freeSSH stable? (how would I contact the server if it has a core
dump?)
3. How would I build sshd.key with fressh-keygen? (lack of docs)
4. Will I be able to use anoncvs with freSSH?
5. Is there a freeSSH mailing list or more docs somewhere?
Thanks,
Al