Ubuntu
openssh package

Bug #162253
Comment #3

Comment 3 for bug 162253

Revision history for this message

In Debian Bug tracker #292932, Mark Nipper (nipsy) wrote on 2005-08-13: openssh-server: actually, to provide something useful...

Package: openssh-server
Version: 1:4.1p1-6
Followup-For: Bug #292932

In an attempt to provide something useful to this request
(rather than my me too post a moment ago), I just ran across this:
---
http://groups.google.com/group/mailing.unix.openssh-dev/browse_thread/thread/d6f419da2faae3ad/508e0f2fb1208e7d?lnk=st&q=%22darren+tucker%22+hpn-ssh&rnum=1#508e0f2fb1208e7d

Hopefully that comes through properly. Anyway, it's a discussion
between Darren Tucker (one of the OpenSSH contributors) and Chris Rapier
(one of the HPN-SSH contributors) about the performance patch with some
suggested changes by Darren. Assuming this all goes well ultimately,
upstream might very well be including these changes.

But for the time being, it might be nice to grab the original
HPN-SSH patch and make Darren's recommended changes and include it in
the Debian package. In another post I saw by Darren at:
---
http://groups.google.com/group/comp.security.ssh/browse_thread/thread/91064fcec483b534/7d2ecfbc5bd0369b?lnk=st&q=%22darren+tucker%22+hpn-ssh&rnum=2#7d2ecfbc5bd0369b

he mentions that using the none cipher probably won't increase
throughput too much as the MAC (Message Authentication Code) is usually
the bottleneck. Although, this would change probably if the previous
performance patch were also included, assuming that Darren was referring
to the MAC being the bottleneck with the currently implemented OpenSSH
buffering scheme.

So anyway, that's all I know at this point. Something to at
least keep an eye on as more of us are working on fast network segments
and even people on high latency and possibly even slow networks look to
benefit from this.

-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12.4
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)

Versions of packages openssh-server depends on:
ii adduser 3.67 Add and remove users and groups
ii debconf [debconf-2.0] 1.4.57 Debian configuration management sy
ii dpkg 1.13.10 Package maintenance system for Deb
ii libc6 2.3.5-3 GNU C Library: Shared libraries an
ii libpam-modules 0.76-23 Pluggable Authentication Modules f
ii libpam-runtime 0.76-23 Runtime support for the PAM librar
ii libpam0g 0.76-23 Pluggable Authentication Modules l
ii libselinux1 1.24-4 SELinux shared libraries
ii libssl0.9.7 0.9.7g-1 SSL shared libraries
ii libwrap0 7.6.dbs-8 Wietse Venema's TCP wrappers libra
ii openssh-client 1:4.1p1-6 Secure shell client, an rlogin/rsh
ii zlib1g 1:1.2.3-3 compression library - runtime

openssh-server recommends no packages.

-- debconf information excluded

Package: openssh-server
Version: 1:4.1p1-6
Followup-For: Bug #292932

Hopefully that comes through properly.  Anyway, it's a discussion
between Darren Tucker (one of the OpenSSH contributors) and Chris Rapier
(one of the HPN-SSH contributors) about the performance patch with some
suggested changes by Darren.  Assuming this all goes well ultimately,
upstream might very well be including these changes.

But for the time being, it might be nice to grab the original
HPN-SSH patch and make Darren's recommended changes and include it in
the Debian package.  In another post I saw by Darren at:
---
http://groups.google.com/group/comp.security.ssh/browse_thread/thread/91064fcec483b534/7d2ecfbc5bd0369b?lnk=st&q=%22darren+tucker%22+hpn-ssh&rnum=2#7d2ecfbc5bd0369b

he mentions that using the none cipher probably won't increase
throughput too much as the MAC (Message Authentication Code) is usually
the bottleneck.  Although, this would change probably if the previous
performance patch were also included, assuming that Darren was referring
to the MAC being the bottleneck with the currently implemented OpenSSH
buffering scheme.

So anyway, that's all I know at this point.  Something to at
least keep an eye on as more of us are working on fast network segments
and even people on high latency and possibly even slow networks look to
benefit from this.

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12.4
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)

Versions of packages openssh-server depends on:
ii  adduser                       3.67       Add and remove users and groups
ii  debconf [debconf-2.0]         1.4.57     Debian configuration management sy
ii  dpkg                          1.13.10    Package maintenance system for Deb
ii  libc6                         2.3.5-3    GNU C Library: Shared libraries an
ii  libpam-modules                0.76-23    Pluggable Authentication Modules f
ii  libpam-runtime                0.76-23    Runtime support for the PAM librar
ii  libpam0g                      0.76-23    Pluggable Authentication Modules l
ii  libselinux1                   1.24-4     SELinux shared libraries
ii  libssl0.9.7                   0.9.7g-1   SSL shared libraries
ii  libwrap0                      7.6.dbs-8  Wietse Venema's TCP wrappers libra
ii  openssh-client                1:4.1p1-6  Secure shell client, an rlogin/rsh
ii  zlib1g                        1:1.2.3-3  compression library - runtime

openssh-server recommends no packages.

-- debconf information excluded

Ubuntuopenssh package

Comment 3 for bug 162253

Ubuntu
openssh package