Re: Openssh 4.2p1 and Openssh3.6.1 compatibility



On Tue, Dec 13, 2005 at 03:30:06PM +0100, Aidan Mcgrath L (AT/LMI) wrote:

> we recently were requested to upgrade our Openssh to the latest version
> which was SMCossh421 This caused a problem with some Applications in
> the system. I recently received a mail to this effect i.e...

> "we have concluded that ... is not compatible with this version of
> Open SSH. The reason being, SFTP client of ... uses an option -b of sftp
> command for batch file processing. This option has been removed in openssh
> 4.1. In the absence of this option, SFTP client would not be able to
> work properly in the system. We therefore suggests that openssh 3.6.1
> p1 should additionally be included in the System as ... is dependent on
> it. I suppose the package names of 3.6.1 and 4.1 are different so they
> can co exist in the system. "

> 1) Is this correct?

No (at least, not for the main distribution. It's possible that the
creator of the binary package changed something, you would have to
ask them.) sftp's -b option is present in the source for 4.1p1 and 4.2p1.

> 2) Is it also true that 4.2p1 version has not got this (batch handling)
> option, and is therefore not backward compatible to 3.6.1, and

No.

> if so:
> 3) Can the two versions, 3.6.1 and 4.2p1, coexist on the same system.

Yes, as long as they're compiled to use different paths for their binaries
(again, ask the creator of your packages, or build them yourself giving
different "--prefix" paths to configure).

--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.



Relevant Pages

  • FreeBSD Security Advisory: FreeBSD-SA-01:63.openssh
    ... OpenSSH is an implementation of the SSH1 and SSH2 secure shell ... An experimental upgrade package is available for users who wish to ... Verify the detached PGP signature using your PGP utility. ... Upgrade your entire ports collection and rebuild the OpenSSH port. ...
    (FreeBSD-Security)
  • FreeBSD Security Advisory FreeBSD-SA-01:63.openssh
    ... OpenSSH is an implementation of the SSH1 and SSH2 secure shell ... An experimental upgrade package is available for users who wish to ... Verify the detached PGP signature using your PGP utility. ... Upgrade your entire ports collection and rebuild the OpenSSH port. ...
    (FreeBSD-Security)
  • RE: P.S. - RE: [redhat-list] updates pending question
    ... Not sure if that makes a difference with the sshd not being in a similar path location as the other two. ... The ssh and sftp commands should belong to the same package, ... You may have to re-install the custom version of openssh to resolve this issue. ...
    (RedHat)
  • TSLSA-2003-0033 - openssh
    ... Package name: openssh ... OpenSSH is OpenBSD's rework of the last free version of SSH, ... up to date in terms of security and features, ... The TSL team has choosen to backport these fixes into the various versions ...
    (Bugtraq)
  • Re: tcsetpgrp()
    ... Which SSH implementation and version thereof are you running? ... On QNX the pty allocation process apparently ... In the next release of OpenSSH, ... Good judgement comes with experience. ...
    (comp.security.ssh)