Date: 19 Jun 1999 14:24:56 +0200 From: Dag-Erling Smorgrav <des@flood.ping.uio.no> To: ark@eltex.ru Cc: brian@CSUA.Berkeley.EDU (Brian W. Buchanan), avalon@coombs.anu.edu.au, freebsd-security@FreeBSD.ORG Subject: Re: proposed secure-level 4 patch Message-ID: <xzp3dzo9y3r.fsf@flood.ping.uio.no> In-Reply-To: -=ArkanoiD=-'s message of "Sat, 19 Jun 1999 13:36:51 %2B0400 (MSD)" References: <199906190936.NAA02092@paranoid.eltex.spb.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
-=ArkanoiD=- <ark@eltex.ru> writes: > btw do you know your "securelevel 4" will break legacy protocols > incl. outbound rsh,rlogin,lp,partially even ssh? So? If you're security-conscious enough to use securelevels, you sure don't allow rsh, rlogin or lp, and ssh doesn't need privileged ports to run. Remove the SUID bit on the ssh binary, or run it with the -P option. DES -- Dag-Erling Smorgrav - des@flood.ping.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzp3dzo9y3r.fsf>