Bug 610

Created attachment 349 [details]
patch to sshd.c

Created attachment 350 [details]
proposed output

Perhaps sshd should understand -V same as ssh?  (Hmm, -V appears to be 
already used by sshd for an undocumented option...)

You're right but notice that -V takes an argument and so if you naively run
"sshd -V" it prints out the usage() message and you still get to see the version
strings.

I'm wondering if the undocumented -V option should be either replaced or 
documented.

It sets the client SSH protocol version from the command line when used with 
inetd but I can't figure out what use that might be.

-V is used by the commercial ssh.com v2 implementation to 
execute a ssh v1 capable server in compatibility mode.

its not supposed to be used by anyone else.

but i think we can remove -V now and implement -V similar to ssh(1).

Created attachment 352 [details]
Make sshd's -V like ssh's

Ah, that explains it: the v2 sshd would just exec the v1 sshd with that option
after the first line of input.	I didn't know that OpenSSH's sshd could be used
that way.

Anyway, attached patch (stolen from ssh.c) looks like this:
$ ./sshd -V
OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0.9.6b [engine] 9 Jul 2001

-V has been removed from sshd.

but no new -V option. ssh -V should be enough.

(I'm confused; what does ssh -V have to do with the version of openssl sshd is
using?)

Note that I did not ask for a -V flag; that was proposed by someone else. What I
asked was that sshd display the openssl version from usage(). It already
displays the openssh version and I think being able to verify the version of
openssl used by sshd is a critical security feature.

Please reconsider the patch I submitted (the first attachment to this bug). All
it does is add the openssl version string to the printout of the openssh
version.

This has been done:
   - markus@cvs.openbsd.org 2003/10/02 10:41:59
     [sshd.c]
     print openssl version, too, several requests; ok henning/djm.

Mass change of RESOLVED bugs to CLOSED