Date: Fri, 10 Sep 2021 11:32:34 -0400 From: Ed Maste <emaste@freebsd.org> To: freebsd-security@freebsd.org Subject: Re: Important note for future FreeBSD base system OpenSSH update Message-ID: <CAPyFy2BQ9wS=ajYCTmieeF4JmTPGiCJVuC1dZ3X2GouxyeHcow@mail.gmail.com> In-Reply-To: <CAPyFy2Aw8Z3ngiM8YHApjjPRLZVC5MCN8TRQkh6pj2fSeM1zqw@mail.gmail.com> References: <CAPyFy2A390kS_C3g=Y9QhQcJ06z_FKUxXsNvi9g2CdWF24pukg@mail.gmail.com> <CAPyFy2B04b0GtWoHFQwxht5vK4_cnApPXpDLXU%2BRvcR=2L9YxA@mail.gmail.com> <CAPyFy2Aw8Z3ngiM8YHApjjPRLZVC5MCN8TRQkh6pj2fSeM1zqw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 9 Sept 2021 at 14:01, Ed Maste <emaste@freebsd.org> wrote: > > There is an important caveat to be aware of for the next base system > update though - I've reproduced it below (from OpenSSH's release > notes, https://www.openssh.com/releasenotes.html). Upstream has also made a change to have scp use the SFTP protocol by default. This will appear in OpenSSH 8.8. You can test SFTP protocol mode now by passing the -s flag to OpenSSH (in main/-CURRENT). Commit message: Author: djm@openbsd.org <djm@openbsd.org> AuthorDate: Wed Sep 8 23:31:39 2021 +0000 Commit: Damien Miller <djm@mindrot.org> CommitDate: Thu Sep 9 12:35:37 2021 +1000 upstream: Use the SFTP protocol by default. The original scp/rcp protocol remains available via the -O flag. Note that ~user/ prefixed paths in SFTP mode require a protocol extension that was first shipped in OpenSSH 8.7. ok deraadt, after baking in snaps for a while without incident
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPyFy2BQ9wS=ajYCTmieeF4JmTPGiCJVuC1dZ3X2GouxyeHcow>