README.platform (181110) | README.platform (181111) |
---|---|
1This file contains notes about OpenSSH on specific platforms. 2 3AIX 4--- 5As of OpenSSH 3.8p1, sshd will now honour an accounts password expiry 6settings, where previously it did not. Because of this, it's possible for 7sites that have used OpenSSH's sshd exclusively to have accounts which 8have passwords expired longer than the inactive time (ie the "Weeks between --- 9 unchanged lines hidden (view full) --- 18if found. This will enable IPv6 support. If for some reason configure 19gets it wrong, or if you want to build binaries to work on earlier MLs 20than the build host then you can add "-DBROKEN_GETADDRINFO" to CFLAGS 21to force the previous IPv4-only behaviour. 22 23IPv6 known to work: 5.1ML7 5.2ML2 5.2ML5 24IPv6 known broken: 4.3.3ML11 5.1ML4 25 | 1This file contains notes about OpenSSH on specific platforms. 2 3AIX 4--- 5As of OpenSSH 3.8p1, sshd will now honour an accounts password expiry 6settings, where previously it did not. Because of this, it's possible for 7sites that have used OpenSSH's sshd exclusively to have accounts which 8have passwords expired longer than the inactive time (ie the "Weeks between --- 9 unchanged lines hidden (view full) --- 18if found. This will enable IPv6 support. If for some reason configure 19gets it wrong, or if you want to build binaries to work on earlier MLs 20than the build host then you can add "-DBROKEN_GETADDRINFO" to CFLAGS 21to force the previous IPv4-only behaviour. 22 23IPv6 known to work: 5.1ML7 5.2ML2 5.2ML5 24IPv6 known broken: 4.3.3ML11 5.1ML4 25 |
26If you wish to use dynamic libraries that aren't in the normal system 27locations (eg IBM's OpenSSL and zlib packages) then you will need to 28define the environment variable blibpath before running configure, eg 29 30blibpath=/lib:/usr/lib:/opt/freeware/lib ./configure \ 31 --with-ssl-dir=/opt/freeware --with-zlib=/opt/freeware 32 33If sshd is built with the WITH_AIXAUTHENTICATE option (which is enabled 34by default) then sshd checks that users are permitted via the 35loginrestrictions() function, in particular that the user has the 36"rlogin" attribute set. This check is not done for the root account, 37instead the PermitRootLogin setting in sshd_config is used. 38 39 |
|
26Cygwin 27------ 28To build on Cygwin, OpenSSH requires the following packages: 29gcc, gcc-mingw-core, mingw-runtime, binutils, make, openssl, 30openssl-devel, zlib, minres, minires-devel. 31 32 33Darwin and MacOS X --- 28 unchanged lines hidden (view full) --- 62As of OpenSSH 4.3p1, sshd will no longer check /etc/nologin itself when 63PAM is enabled. To maintain existing behaviour, pam_nologin should be 64added to sshd's session stack which will prevent users from starting shell 65sessions. Alternatively, pam_nologin can be added to either the auth or 66account stacks which will prevent authentication entirely, but will still 67return the output from pam_nologin to the client. 68 69 | 40Cygwin 41------ 42To build on Cygwin, OpenSSH requires the following packages: 43gcc, gcc-mingw-core, mingw-runtime, binutils, make, openssl, 44openssl-devel, zlib, minres, minires-devel. 45 46 47Darwin and MacOS X --- 28 unchanged lines hidden (view full) --- 76As of OpenSSH 4.3p1, sshd will no longer check /etc/nologin itself when 77PAM is enabled. To maintain existing behaviour, pam_nologin should be 78added to sshd's session stack which will prevent users from starting shell 79sessions. Alternatively, pam_nologin can be added to either the auth or 80account stacks which will prevent authentication entirely, but will still 81return the output from pam_nologin to the client. 82 83 |
70$Id: README.platform,v 1.7 2006/06/23 11:05:13 dtucker Exp $ | 84$Id: README.platform,v 1.9 2007/08/09 04:31:53 dtucker Exp $ |