OpenSSH question / Re: PIX software release 5.2

[John Adams <jna () retina net>]

On Mon, 18 Sep 2000, Carson Gaspar wrote:

> --On Monday, September 18, 2000 10:54 AM -0500 shewitt () cdw com wrote:
>
> > Anybody have any good / bad experiences with PIX 5.2(1)?
>
> It's working fine for me, so far. But it's a very small install, and we 
> don't use WebSense. 5.2(1) adds SSH support (finally!), so that's a good 
> reson to upgrade. Of course, you have to have a VPN license to use it 
> (wonderful Cisco...). You can get a free 56-bit DES VPN license from Cisco, 
> but have to pay for the 3-DES license. Oh, and you can only install the new 
> license by re-loading the firmare on the PIX. Oh, and SSH-DES doesn't work 
> with Tatu's unix SSH-1 client (it does with SecureCRT, so I suspect the 
> unix code to be at fault, but...). And OpenSSH doesn't support DES.

That's funny. I'm using Secure CRT with ssh 3DES to an Open SSH (latest
version) server, and it works fine. 

My major complaint is that under the noncommercial sshd, I used to be able
to say:

AllowUsers foo@*.bar.com
and
AllowUsers jna@*

and it would work. When I do this under OpenSSH, it doesn't. Any ideas?

-john


--
J. Adams                                        http://www.retina.net/~jna
You are supposed to be a consumer, a black hole for goods, advertising and
content. They only want to allocate enough upstream bandwidth for
10,000,000 buy buttons. Producing or sharing information is a subversive
act and will not be tolerated. -anonymous coward on /.



_______________________________________________
Firewall-wizards mailing list
Firewall-wizards () nfr net
http://www.nfr.net/mailman/listinfo/firewall-wizards