12-11-2006
commercial SSH vs. OpenSSH
I'm not sure if this is appropriate for the forum, but I figured it was security related, so here goes...
I'm writing an anlaysis for my group about moving some of the old internet protocols (rsh, rlogin, etc...) to the SSH suite of tools. An outside security group recommended a commercial version of SSH (Tectia), but I'm not sure that it's worth paying for. I have lots of previous experience with OpenSSH, and I was wondering if the commercial version offered anything more than the open-source version. I understand that the open-source version does not use patented algorithms. Am I losing any level of security by using the open-source version over the commercial version?
Any info would be greatly appreciated!!
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
First off, I apologize for making my first post here a question that has probably been asked over a billion times... however with the ever changing nature of technology, it almost seems like yesterday's answers are no longer applicable.
Basically I am looking to start up a business and am trying... (15 Replies)
Discussion started by: Verbose Bob
15 Replies
2. Solaris
Hi,
I would like to login from a Sun server running ssh:
Sun_SSH_1.1, SSH protocols 1.5/2.0, OpenSSL 0x0090704f
to
ssh: SSH Secure Shell 3.0.1 on sparc-sun-solaris2.6
How can I achieve this?
Thanks a million in advance (1 Reply)
Discussion started by: newbewie
1 Replies
3. UNIX for Dummies Questions & Answers
I am using OpenSSH on my sun servers.
There is another suite of sun servers attempting to SSH into my machines.
I am running ssh -vv:
OpenSSH_4.4p1, OpenSSL 0.9.8d 28 Sep 2006
the other guy is running the sun version of ssh (i don't know what/if any differences there are between... (7 Replies)
Discussion started by: EWTGPAC
7 Replies
4. UNIX for Dummies Questions & Answers
I have a FreeBSD server on my home network. It is hooked to the router with an Ethernet cable. Both the server and the router are in the basement. The other computers in the house are upstairs, wireless. So the server's local IP address is set outside the wireless pool, and suppose it's... (1 Reply)
Discussion started by: gabi
1 Replies
5. Solaris
I set the RETRIES and DISABLETIME in /etc/default/login on 2 systems:
- 1 Solaris 9 system running Sun SSH
- 1 Solaris 9 system running Openssh 5.2 P1
I expected that after n failed logins, the login process will hang for n seconds.
It does when the attempted login is done at the console... (8 Replies)
Discussion started by: jabentay
8 Replies
6. Solaris
hi All,
We tried to establish a connection from OpenSSH3.8.1 running on Windows Box to SunSSH-1.1 running on Solaris 10. Please see the debug statements.
C:\Documents and Settings\sadmin\.ssh>ssh sadmin@10.4.3.8 -v -v -v
OpenSSH_3.8.1p1, OpenSSL 0.9.7d 17 Mar 2004
debug1: Reading... (2 Replies)
Discussion started by: venusunil
2 Replies
7. UNIX for Advanced & Expert Users
Hi all,
I have a Solaris 10 server with SUN_SSH_1.1 installed.
I want to restrict a user via SFTP to only be able to access one directory. I've written a little script in .profile which works perfectly for an ssh login but it appears sftp doesn't read the .profile file so it doesn't work.
... (2 Replies)
Discussion started by: Donkey25
2 Replies
8. Solaris
which should i prefer to install in my system openssh or ssh package provided by SUN by default. can i have two packages installed at the same time? (2 Replies)
Discussion started by: chidori
2 Replies
9. Red Hat
There was a security analysis run on one server which has RHEL 5.8 installed and it is showing security vulnerabilities with respect to ssh in OpenSSH with reference no CVE-2007-4752. The vulnerability solution in the security report is showing solution as below:
1) Download and apply the... (3 Replies)
Discussion started by: RHCE
3 Replies
LEARN ABOUT DEBIAN
pull-debian-source
PULL-DEBIAN-SOURCE(1) General Commands Manual PULL-DEBIAN-SOURCE(1)
NAME
pull-debian-source - download and extract a source package from Debian
SYNOPSIS
pull-debian-source [options] <source package> [release|version]
DESCRIPTION
pull-debian-source downloads and extracts the specified version of source package, or the latest version in the specified Debian release.
pull-debian-source will try the preferred mirror, default mirror, security mirror, and fall back to Launchpad or snapshot.debian.org, in
search of the requested version.
OPTIONS
source package
The source package to download from Debian.
release
The release to download the source package from. Defaults to unstable.
version
The specific version of the package to download.
-d, --download-only
Do not extract the source package.
-m DEBIAN_MIRROR, --mirror=DEBIAN_MIRROR
Use the specified mirror. Should be in the form http://ftp.debian.org/debian. If the package isn't found on this mirror,
pull-debian-source will fall back to the default mirror.
-s DEBSEC_MIRROR, --security-mirror=DEBSEC_MIRROR
Use the specified mirror. Should be in the form http://security.debian.org. If the package isn't found on this mirror,
pull-debian-source will fall back to the default mirror.
--no-conf
Do not read any configuration files, or configuration from environment variables.
-h, --help
Display the usage instructions and exit.
ENVIRONMENT
All of the CONFIGURATION VARIABLES below are also supported as environment variables. Variables in the environment take precedence to
those in configuration files.
CONFIGURATION VARIABLES
The following variables can be set in the environment or in ubuntu-dev-tools(5) configuration files. In each case, the script-specific
variable takes precedence over the package-wide variable.
PULL_DEBIAN_SOURCE_DEBIAN_MIRROR, UBUNTUTOOLS_DEBIAN_MIRROR
The default value for --mirror.
PULL_DEBIAN_SOURCE_DEBSEC_MIRROR, UBUNTUTOOLS_DEBSEC_MIRROR
The default value for --security-mirror.
SEE ALSO
dget(1), pull-debian-debdiff(1), pull-lp-source(1), ubuntu-dev-tools(5)
ubuntu-dev-tools 22 January 2011 PULL-DEBIAN-SOURCE(1)