Hi guys,
The reason ssh should not be started as an inetd process is that it takes
a while to generate the keys. You can shorten the key so it generates
faster, but this subverts security. In other words shorter keys are
easier to crack. I always start ssh as an rc process and use tcp-wrappers
also. The only problem is that tcpdchk -v will complain that it can't
fine your ssh daemon.
Carl
On 09-Aug-00 Yuji Yamano wrote:
> ptah <[EMAIL PROTECTED]> writes:
>
>> Thanks for the response Yuji. However I have read that you can
>> use ssh through inetd. I have it setup in slackware doing this.
>
> I can start sshd using inetd, but I don't like it because of the key
> generation at sshd start time is too slow on my old machines.
>
>> I am new to FreeBSD, but I don't understand why it wouldn't work.
>
> inetd invoke a sshd when receive the connection request.
> sshd is not stared at system boot time.
>
> --
> Yuji Yamano
------------------------------------------------------------------------
E-Mail: Carl J. Nobile <[EMAIL PROTECTED]>
Date: 09-Aug-00 Phone: 315-453-2912 Ex. 5336
Time: 08:16:53 Fax: 315-479-0859
Software Engineering Group -- AppliedTheory Corp.
224 Harrison Street, 6th Floor, Syracuse, NY 13202
------------------------------------------------------------------------
