On 31, jul, 2000 at 01:10:47 -0700, kmself@ix.netcom.com wrote:
> On Mon, Jul 31, 2000 at 12:52:18PM -0700, Sean 'Shaleh' Perry wrote:
> >
> > On 31-Jul-2000 kmself@ix.netcom.com wrote:
> > > I'm configuring an OpenBSD firewall in front of my Debian box. Current
> > > problem is getting compatible versions of ssh on both boxes.
> > >
> > > I can ssh FROM OpenBSD to Debian, but not TO OpenBSD from Debian.
> > > Error message on attempting OpenBSD connection:
> > >
> > > Disconnecting: Bad packet length 1349676916.
> > >
> > > ...on the OBSD side, I get the following in /var/log/authlog:
> > >
> > > Jul 31 05:32:37 jung sshd[32168]: Protocol major versions differ
> > > for
> > > 192.168.0.32: SSH-2.0-OpenSSH-2.1 vs. SSH-1.5-OpenSSH-1.2.3
> > >
> > > I obviously need to get compatible versions of ssh, but I'm not sure
> > > which end to even up, or (for the OBSD side) how to do it. My
> > > understanding is that OpenSSH 1.2.3 is licensed freely, that SSH-2 is
> > > not, and that there isn't a free version of OpenSSH-2 available for
> > > Debian.
> > >
> >
> > openSSH is free, whether it is 2.0 or 1.x. I am uncertain that we
> > have packaged 2.0 though. An easy solution temporarily is to install
> > 1.2 openSSH on the bsd box.
>
> I would if I knew how. I'm still puzzling out the OpenBSD packaging
> system. "ports" installs stuff under /usr/local. Sacrilege!
You need to have the portstree installed, first of all. :-)
As root: cd /usr/ports/<somewhere>/ssh and do a `make install' there
while on-line so the sources can be fetched. That way you get an old
openssh in /usr/local/bin, and keep the new openssh in /usr/bin.
Installing to /usr/local is thoroughly[1] logical i the OpenBSD sense,
it's not part of the ``distro'', it is not audited code ...
Oh well, I'm just in love with the combination of OpenBSD and Debian,
with those two tou have the tools for most jobs. ;-)
HAND
Morten
--
UNIX, reach out and grep someone!
