From owner-freebsd-doc  Wed May 23 10:47:43 2001
Delivered-To: freebsd-doc@freebsd.org
Received: from corleone.idealab.com (mx2.idealab.com [64.208.8.4])
	by hub.freebsd.org (Postfix) with SMTP id 44DB937B422
	for <doc@FreeBSD.org>; Wed, 23 May 2001 10:47:32 -0700 (PDT)
	(envelope-from jim@FreeBSD.org)
Received: (qmail 18282 invoked by alias); 23 May 2001 17:47:32 -0000
Received: (qmail 18259 invoked from network); 23 May 2001 17:47:31 -0000
Received: from unknown (HELO cartman.boston.geekhouse.net) (10.5.1.189)
  by corleone.idealab.com with SMTP; 23 May 2001 17:47:31 -0000
Received: by cartman.boston.geekhouse.net (Postfix, from userid 1000)
	id 3712B322F; Wed, 23 May 2001 13:47:09 -0400 (EDT)
Date: Wed, 23 May 2001 13:47:09 -0400
From: Jim Mock <jim@FreeBSD.org>
To: doc@FreeBSD.org
Subject: Updated patch (was Re: 4.3R and ssh problems)
Message-ID: <20010523134708.C8824@cartman.bos.geekhouse.net>
Reply-To: jim@FreeBSD.org
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="EVF5PPMfhYS0aIcm"
Content-Disposition: inline
User-Agent: Mutt/1.3.18i
Sender: owner-freebsd-doc@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-doc.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-doc>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-doc>
X-Loop: FreeBSD.org


--EVF5PPMfhYS0aIcm
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

The latest patch for FAQ is attached.

- jim

-- 
- jim mock <jim@compete.com>      www.compete.com - jim@FreeBSD.org -
- senior systems administrator - Compete, Inc. - ph: 1.617.867.7035 -

--EVF5PPMfhYS0aIcm
Content-Type: text/plain; charset=us-ascii
Content-Disposition: attachment; filename="faq.diff"

Index: book.sgml
===================================================================
RCS file: /home/ncvs/doc/en_US.ISO_8859-1/books/faq/book.sgml,v
retrieving revision 1.204
diff -u -r1.204 book.sgml
--- book.sgml	2001/05/22 17:33:26	1.204
+++ book.sgml	2001/05/23 17:44:19
@@ -7290,6 +7290,43 @@
             securelevel</link> and the &man.init.8; manual page.</para>
         </answer>
       </qandaentry>
+
+      <qandaentry>
+        <question id="ssh-shosts">
+	  <para>Why doesn't SSH authentication through
+	    <filename>.shosts</filename> work by default in recent
+	    versions of FreeBSD?</para>
+	</question>
+
+	<answer>
+	  <para>The reason why <filename>.shosts</filename>
+	    authentication does not work by default in more recent
+	    versions of FreeBSD is because <application>ssh</application>
+	    is not installed suid root by default.  To
+	    <quote>fix</quote> this, you can do one of the
+	    following:</para>
+
+	  <itemizedlist>
+	    <listitem>
+	      <para>As a permanent fix, set
+		<makevar>ENABLE_SUID_SSH</makevar> to <literal>true</literal>
+		in <filename>/etc/make.conf</filename> and rebuild ssh
+		(or run <command>make world</command>).</para>
+	    </listitem>
+
+	    <listitem>
+	      <para>As a temporary fix, change the mode on
+		<filename>/usr/bin/ssh</filename> to <literal>4555</literal>
+		by running <command>chmod 4755 /usr/bin/ssh</command> as
+		<username>root</username>.  Then add
+		<makevar>ENABLE_SUID_SSH= true</makevar> to
+		<filename>/etc/make.conf</filename> so the change takes
+		effect the next time <command>make world</command> is
+		run.</para>
+	    </listitem>
+	  </itemizedlist>
+	</answer>
+      </qandaentry>
     </qandaset>
   </chapter>
 

--EVF5PPMfhYS0aIcm--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message