Results 1 to 6 of 6

Thread: HPN-SSH: A High-Performance SSH/SCP

  1. #1
    Join Date
    Jan 2007
    Posts
    15,658

    Default HPN-SSH: A High-Performance SSH/SCP

    Phoronix: HPN-SSH: A High-Performance SSH/SCP

    HPN-SSH is a high performance SSH/SCP implementation coming out of the Pittsburgh Supercomputing Center. The code to HPN-SSH is released as a patch-set atop OpenSSH...

    http://www.phoronix.com/vr.php?view=MTQ0OTQ

  2. #2
    Join Date
    Sep 2007
    Posts
    366

    Default

    Are this really "news"? I was in progress to patch my ssh server on gentoo to include these patches, just to realize that they are already included:

    Code:
    ls /usr/portage/net-misc/openssh/files
    
    openssh-4.7_p1-GSSAPI-dns.patch
    openssh-5.2p1-ldap-stdargs.diff
    openssh-5.4_p1-openssl.patch
    openssh-5.6_p1-hpn-progressmeter.patch
    openssh-5.8_p1-x509-hpn-glue.patch
    openssh-5.9_p1-drop-openssl-check.patch
    openssh-5.9_p1-sshd-gssapi-multihomed.patch
    openssh-5.9_p1-x509-glue.patch
    openssh-6.0_p1-fix-freebsd-compilation.patch
    openssh-6.0_p1-hpn-progressmeter.patch
    openssh-6.0_p1-test.patch
    openssh-6.0_p1-x509-glue.patch
    openssh-6.0_p1-x509-hpn-glue.patch
    openssh-6.1_p1-x509-glue.patch
    openssh-6.1_p1-x509-hpn-glue.patch
    openssh-6.2_p2-x509-glue.patch
    openssh-6.2_p2-x509-hpn14v1-glue.patch
    openssh-6.2_p2-x509-hpn-glue.patch
    [...]

  3. #3
    Join Date
    Nov 2008
    Posts
    57

    Default Upstream

    These patches have been around for years. The problem is that the upstream won't accept them, and as a result, many distributions won't accept them.

  4. #4
    Join Date
    Jul 2013
    Location
    Bordeaux, France
    Posts
    321

    Default

    "Please refer to this tuning page "

    Care to add the link in the article ?

  5. #5
    Join Date
    Jan 2011
    Posts
    1,287

    Default

    Quote Originally Posted by macemoneta View Post
    These patches have been around for years. The problem is that the upstream won't accept them, and as a result, many distributions won't accept them.
    Do you know of any reason why they don't accept them?

  6. #6
    Join Date
    Nov 2008
    Posts
    57

    Default

    Quote Originally Posted by mrugiero View Post
    Do you know of any reason why they don't accept them?
    There are lots of discussions on the mailing lists, but it comes down to a few issues. They refuse the no cipher portion, because it provides no security. The multi-threaded cipher opens timing risks to security. The windowing portion provides benefit only to very high speed low latency networks (this discussion took place before gigabit was common). And the patch set adds complexity for the developers.

    It basically comes down to them not having the resources to add the functionality while insuring security. Various others have packaged openssh with the patches for many distributions, but you are getting the software from sources that are not trusted - which defeats the purpose of using secure communication software.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •