README.platform (181111) | README.platform (197679) |
---|---|
1This file contains notes about OpenSSH on specific platforms. 2 3AIX 4--- 5As of OpenSSH 3.8p1, sshd will now honour an accounts password expiry 6settings, where previously it did not. Because of this, it's possible for 7sites that have used OpenSSH's sshd exclusively to have accounts which 8have passwords expired longer than the inactive time (ie the "Weeks between --- 42 unchanged lines hidden (view full) --- 51has been removed in recent releases of Darwin and MacOS X. 52 53Nevertheless, tunnel support is known to work with Darwin 8 and 54MacOS X 10.4 in Point-to-Point (Layer 3) and Ethernet (Layer 2) mode 55using a third party driver. More information is available at: 56 http://www-user.rhrk.uni-kl.de/~nissler/tuntap/ 57 58 | 1This file contains notes about OpenSSH on specific platforms. 2 3AIX 4--- 5As of OpenSSH 3.8p1, sshd will now honour an accounts password expiry 6settings, where previously it did not. Because of this, it's possible for 7sites that have used OpenSSH's sshd exclusively to have accounts which 8have passwords expired longer than the inactive time (ie the "Weeks between --- 42 unchanged lines hidden (view full) --- 51has been removed in recent releases of Darwin and MacOS X. 52 53Nevertheless, tunnel support is known to work with Darwin 8 and 54MacOS X 10.4 in Point-to-Point (Layer 3) and Ethernet (Layer 2) mode 55using a third party driver. More information is available at: 56 http://www-user.rhrk.uni-kl.de/~nissler/tuntap/ 57 58 |
59Linux 60----- 61 62Some Linux distributions (including Red Hat/Fedora/CentOS) include 63headers and library links in the -devel RPMs rather than the main 64binary RPMs. If you get an error about headers, or complaining about a 65missing prerequisite then you may need to install the equivalent 66development packages. On Redhat based distros these may be openssl-devel, 67zlib-devel and pam-devel, on Debian based distros these may be 68libssl-dev, libz-dev and libpam-dev. 69 70 |
|
59Solaris 60------- 61If you enable BSM auditing on Solaris, you need to update audit_event(4) 62for praudit(1m) to give sensible output. The following line needs to be 63added to /etc/security/audit_event: 64 65 32800:AUE_openssh:OpenSSH login:lo 66 --- 9 unchanged lines hidden (view full) --- 76As of OpenSSH 4.3p1, sshd will no longer check /etc/nologin itself when 77PAM is enabled. To maintain existing behaviour, pam_nologin should be 78added to sshd's session stack which will prevent users from starting shell 79sessions. Alternatively, pam_nologin can be added to either the auth or 80account stacks which will prevent authentication entirely, but will still 81return the output from pam_nologin to the client. 82 83 | 71Solaris 72------- 73If you enable BSM auditing on Solaris, you need to update audit_event(4) 74for praudit(1m) to give sensible output. The following line needs to be 75added to /etc/security/audit_event: 76 77 32800:AUE_openssh:OpenSSH login:lo 78 --- 9 unchanged lines hidden (view full) --- 88As of OpenSSH 4.3p1, sshd will no longer check /etc/nologin itself when 89PAM is enabled. To maintain existing behaviour, pam_nologin should be 90added to sshd's session stack which will prevent users from starting shell 91sessions. Alternatively, pam_nologin can be added to either the auth or 92account stacks which will prevent authentication entirely, but will still 93return the output from pam_nologin to the client. 94 95 |
84$Id: README.platform,v 1.9 2007/08/09 04:31:53 dtucker Exp $ | 96$Id: README.platform,v 1.10 2009/08/28 23:14:48 dtucker Exp $ |