HPE Community
Operating System - HP-UX
1833780 Members
2572 Online
110063 Solutions
New Discussion

Compiling Openssh 3.7p1 on 10.20

 
John Kelly_3
Regular Advisor

‎09-23-2003 03:39 AM

‎09-23-2003 03:39 AM

Compiling Openssh 3.7p1 on 10.20

Hi,
I've successfully compiled and run this new version of openssh but I can't get priv-sep and compression to work together. I get the error "sshd[20025]: fatal: buffer_append_space: alloc 10506240 not supported" when both features are activated.
The OpenSSH FAQ says some platforms don't support anonymous shared memory required for this combination of features. Is this the case of HP-UX 10.20 or have I made a mush of this somehow? (I have compiled zlib 1.1.4 and openssl 0.9.7b)

Cheers

John K
0 Kudos
Reply
6 REPLIES 6
Steven Sim Kok Leong
Honored Contributor

‎09-23-2003 12:28 PM

‎09-23-2003 12:28 PM

Re: Compiling Openssh 3.7p1 on 10.20

Hi,

Sidetracking a bit, you should install OpenSSH 3.7.1p1 which resolves the latest security vulnerabilities with it.

Hope this helps. Regards.

Steven Sim Kok Leong
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎09-23-2003 12:36 PM

‎09-23-2003 12:36 PM

Re: Compiling Openssh 3.7p1 on 10.20

Steven,

It appears he has compiled the latest and greatest version of OpenSSH 3.7p1, as you indicated.

The question at hand.

A search of the HP websites find no reference to the problem you are asking about. That means its not documented, but it is a clue.

Another suggestion: You might try to compile the source code available here:
http://hpux.connect.org.uk/hppd/hpux/Networking/Admin/openssh-3.7.1p1/

Though not strictly for 10.20, I have the feeling that many HP-UX issues are resolved in this source code.

Hope this helps.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
John Kelly_3
Regular Advisor

‎09-23-2003 09:15 PM

‎09-23-2003 09:15 PM

Re: Compiling Openssh 3.7p1 on 10.20

Actually Kok Leong is correct in that I have downloaded 3.7p1 instead of 3.7.1p1. I'll try 3.7.1p2 which is now out and post an update here.
Thanks for your replies. If this fails then I'll try the HP download suggested.
0 Kudos
Reply
John Kelly_3
Regular Advisor

‎09-23-2003 11:44 PM

‎09-23-2003 11:44 PM

Re: Compiling Openssh 3.7p1 on 10.20

Right, 3.1.7p2 gives the same issue. So I then struggled with the HP hacked version of 3.7.1p1. I had to turn off all the 11.00 features and change the install path. (Why are they installing in /usr/local? Should it not be /opt?) Once it compiled and installed, however, it gave the exact same scenario. Priv-separation or Compression but not both.
So for now, I have gone with 3.7.1p2 with compression turned off in the sshd_config file.
Any suggestions?
Cheers

John K
0 Kudos
Reply
Peter Kielbasiewicz
Frequent Advisor

‎11-17-2003 01:22 AM

‎11-17-2003 01:22 AM

Re: Compiling Openssh 3.7p1 on 10.20

Hi John,
I do see the same problem with our package of ssh 3.6.1p1.
What I found is that ssh -C -l {someuser} {somehost} also creates the given syslog entry.
The thing which puzzles me though is, that some connections do work others do not.
E.g. I have 3 machines which all have the same openssh package installed.

ssh -C from bmdme9 to bmdpim or bmdp3 give the alloc error.
ssh -C from bmdpim to bmdp3 also gives the alloc error,
BUT: ssh -C from bmdpim to bmdme9 does work !!!!!
This means, it is not only HPUX 10.20 nor solely openssh but some other mechanism involved. I suspect kernel config or patch level.
What makes things even stranger is that by last week both systems bmdme9 and bmdp3 have been patched to the latest patch level available for 10.20.
0 Kudos
Reply
John Kelly_3
Regular Advisor

‎04-08-2004 01:18 AM

‎04-08-2004 01:18 AM

Re: Compiling Openssh 3.7p1 on 10.20

I eventually went to a later patch level and this fixed it. The server patch-level was well out of date.
Sorry for the late update to this post.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.