It would be nice if "ssh -\?" reported the openssl version string.
Created attachment 349 [details] patch to sshd.c
Created attachment 350 [details] proposed output
Perhaps sshd should understand -V same as ssh? (Hmm, -V appears to be already used by sshd for an undocumented option...)
You're right but notice that -V takes an argument and so if you naively run "sshd -V" it prints out the usage() message and you still get to see the version strings.
I'm wondering if the undocumented -V option should be either replaced or documented. It sets the client SSH protocol version from the command line when used with inetd but I can't figure out what use that might be.
-V is used by the commercial ssh.com v2 implementation to execute a ssh v1 capable server in compatibility mode. its not supposed to be used by anyone else. but i think we can remove -V now and implement -V similar to ssh(1).
Created attachment 352 [details] Make sshd's -V like ssh's Ah, that explains it: the v2 sshd would just exec the v1 sshd with that option after the first line of input. I didn't know that OpenSSH's sshd could be used that way. Anyway, attached patch (stolen from ssh.c) looks like this: $ ./sshd -V OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0.9.6b [engine] 9 Jul 2001
-V has been removed from sshd. but no new -V option. ssh -V should be enough.
(I'm confused; what does ssh -V have to do with the version of openssl sshd is using?) Note that I did not ask for a -V flag; that was proposed by someone else. What I asked was that sshd display the openssl version from usage(). It already displays the openssh version and I think being able to verify the version of openssl used by sshd is a critical security feature. Please reconsider the patch I submitted (the first attachment to this bug). All it does is add the openssl version string to the printout of the openssh version.
This has been done: - markus@cvs.openbsd.org 2003/10/02 10:41:59 [sshd.c] print openssl version, too, several requests; ok henning/djm.
Mass change of RESOLVED bugs to CLOSED