Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

An OpenSSH replacement UNIX
When I tried to access securely (with ssh) my work's server (remote) from my iBook (local1) running 10.1.2, I wasn't allowed in, whereas from the faculty's computer (local2), this was no problem at all. I worked through several ssh and sshd config files, but couldn't find any relevant differences, until I noticed that local1 had OpenSSH installed (OS X standard), while local2 and remote used the commercial SSH from SSH Communications Security.

I downloaded the source code at, which is free for non-commercial use. It compiled right out of the box, and was installed in /usr/local, so my original OpenSSH is still intact in /usr. Now I can access remote just as easily from local1 as from local2.

I am somewhat confused, though, since I had supposed OpenSSH and SSH to be completely compatible. If for some reason you would like to run /usr/local/sbin/sshd instead of /usr/sbin/sshd, you could easily accomplish this by changing the relevant line in /System/Library/StartupItems/SSH/SSH.
  • Currently 0.00 / 5
  • 1
  • 2
  • 3
  • 4
  • 5
  (0 votes cast)

An OpenSSH replacement | 2 comments | Create New Account
Click here to return to the 'An OpenSSH replacement' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
they are compatible
Authored by: see on Jan 25, '02 09:48:24AM

openssh and commercial ssh are compatible, you probably just used wrong protocol when trying to communicate. either server uses protocol 2 and client 1 or viceversa.
just try "/usr/bin/ssh -1 user@box" and "/usr/bin/ssh -2 user@box" to see if thats the problem, you can edit /etc/ssh_config on line "# Protocol 2,1" and take away the # and choose order in protocols tested...otherwise it only tests version 1 i think...
hope this solved the problem

[ Reply to This | # ]
Or you used IDEA keys
Authored by: themostbob on Jan 25, '02 02:39:48PM

OpenSSH lacks the IDEA algorithm for key generation and checking---they only include open, unpatented algorithms and IDEA is patented all over the world, as I understand it. RSA's ran out last year and it's now included, thankfully, so you could use it instead.

[ Reply to This | # ]