Manualshelf

HP-UX Secure Shell A.05.60.001, A.05.60.002, and A.05.60.003 Release Notes, October 2010 (5900-1115)

ManualsBrandsHP ManualsSoftwareHP-UX 11i Secure Shell Software
9101112131415161718
If sshd runs in debug mode (-d), logging goes to standard error instead of to syslog. Get
more debugging information by using additional d's for sshd and additional v's for ssh, as
in the following:
ssh -v
ssh -vv
ssh -vvv
sshd -d
sshd -dd
sshd -ddd
Other commands with debugging option -v are:
ssh-keyscan -v
sftp -v
scp -v
ssh-keyscan -v
15 How do I find out the version of HP-UX Secure Shell I am using? How do I find out whether
I am running HP-UX Secure Shell or the public domain version of OpenSSH?
Use the swlist command to display the name and version number of HP-UX Secure Shell.
For example:
# swlist | grep T1471
T1471AA A.05.60 HP-UX Secure Shell
You can also use the what command shown in the example below:
# what /usr/bin/scp
16
Is libwrap.a linked in HP-UX Secure Shell? Must I only configure hosts.allow and
hosts.deny to use the access control provided by tcp_wrapper?
Yes, the libwrap.a archive library consisting of tcp_wrapper version 7.6-ipv6.4,
is linked to HP-UX Secure Shell. You only need to configure hosts.allow and hosts.deny
to use the access control provided by tcp_wrapper.
17
Is HP-UX Secure Shell vulnerable to the reported double free bug in the zlib compression
algorithm documented at http://www.cert.org/advisories/CA-2002-07.html?
All versions of HP-UX Secure Shell starting from A.03.10 are built with support for
zlib-1.1.4 or later. So, HP-UX Secure Shell is not affected by the bug described above.
HP-UX Secure Shell versions A.05.60.001, A.05.60.002, and A.05.60.003 are built with zlib
v1.2.3.
18 Is HP-UX Secure Shell vulnerable to the following CERTs: http://cve.mitre.org/cgi-bin/
cvename.cgi?name=CAN-2003-0147 http://cve.mitre.org/cgi-bin/
cvename.cgi?name=CAN-2003-0131?
This version of HP-UX Secure Shell is built with OpenSSL-0.9.8o and is not affected by these
two CERTs. The vulnerabilities were fixed in OpenSSL-0.9.7d.
19 What options is HP-UX Secure Shell compiled with?
HP-UX Secure Shell is compiled with the following options:
Options defined in config.h:
— #define USE_PAM 1
— #define IPV4_IN_IPV6 1
— #define GSSAPI 1
— #define KRB5 1
— #define LIBWRAP 1
Frequently Asked Questions (FAQ) 17