Bug 323

Summary: arp -n flag doesn't exist under Solaris, ssh_prng_cmds still uses it
Product: Portable OpenSSH Reporter: Chris Myers <chris>
Component: Build systemAssignee: OpenSSH Bugzilla mailing list <openssh-bugs>
Status: CLOSED FIXED    
Severity: normal CC: keith
Priority: P2    
Version: -current   
Hardware: All   
OS: Solaris   

Description Chris Myers 2002-06-30 05:23:48 AEST 
The Solaris arp command does not support the -n flag to avoid using the 
nameserver to resolve IP addresses when printing the arp table.  If there is a 
private IP address in use AND the internal DNS server doesn't have a zone for 
the private address space then the SSH prng code will hang for an indeterminate 
period of time (usually longer than a person will wait).

SSH tests for the existence of the -n flag by trying 'arp -a -n'.  
Unfortunately, Solaris' arp program interprets the second flag, -n, as a 
hostname and basically ignores it.

FIX:

Test by using "arp -n -a" or "arp -an".
Comment 1 Luc Suryo 2002-06-30 05:40:16 AEST 
A better solution is to install the pacthes that will support /dev/random and
/dev/urandom. Then recompile openssl and then openssh.
Solaris 8:
 112438-01 patch for Sparc
 112439-01 patch for x86
Solaris 9:
  has standard /dev/random and /dev/urandom

Not sure if one can apply the Solaris 8 patch to Solaris 2.6 (near end of life)
and Solaris 7. More info (Sparc) here below

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fpatches%2F112438&zone_32=%2Fdev%2Frandom
Comment 2 Tim Rice 2002-07-15 07:46:44 AEST 
Fixed in current
Comment 3 Tim Rice 2002-12-05 16:03:34 AEDT 
*** Bug 449 has been marked as a duplicate of this bug. ***
Comment 4 Damien Miller 2004-04-14 12:24:18 AEST 
Mass change of RESOLVED bugs to CLOSED