From owner-freebsd-arch@freebsd.org Mon Oct 9 19:14:37 2017 Return-Path: Delivered-To: freebsd-arch@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id F08E4E39837 for ; Mon, 9 Oct 2017 19:14:37 +0000 (UTC) (envelope-from cy.schubert@komquats.com) Received: from smtp-out-so.shaw.ca (smtp-out-so.shaw.ca [64.59.136.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "Client", Issuer "CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id C55CF77B93 for ; Mon, 9 Oct 2017 19:14:37 +0000 (UTC) (envelope-from cy.schubert@komquats.com) Received: from spqr.komquats.com ([96.50.22.10]) by shaw.ca with SMTP id 1dVUetdMn8LPZ1dVVeFEct; Mon, 09 Oct 2017 13:14:30 -0600 X-Authority-Analysis: v=2.2 cv=e552ceh/ c=1 sm=1 tr=0 a=jvE2nwUzI0ECrNeyr98KWA==:117 a=jvE2nwUzI0ECrNeyr98KWA==:17 a=kj9zAlcOel0A:10 a=02M-m0pO-4AA:10 a=Ikt0M2cxAAAA:8 a=6I5d2MoRAAAA:8 a=YxBL1-UpAAAA:8 a=1wcvNR40QQKOSlA0ZQsA:9 a=YK0CePum-hNoyyvr:21 a=AUeqQT34yG-lyjsj:21 a=CjuIK1q_8ugA:10 a=iYm7J9qDpiSF5xNCBZUT:22 a=IjZwj45LgO3ly-622nXo:22 a=Ia-lj3WSrqcvXOmTRaiG:22 Received: from slippy.cwsent.com (slippy [10.1.1.91]) by spqr.komquats.com (Postfix) with ESMTPS id D3FFFF4; Mon, 9 Oct 2017 12:14:27 -0700 (PDT) Received: from slippy (localhost [127.0.0.1]) by slippy.cwsent.com (8.15.2/8.15.2) with ESMTP id v99JEQTw082402; Mon, 9 Oct 2017 12:14:27 -0700 (PDT) (envelope-from Cy.Schubert@cschubert.com) Message-Id: <201710091914.v99JEQTw082402@slippy.cwsent.com> X-Mailer: exmh version 2.8.0 04/21/2012 with nmh-1.6 Reply-to: Cy Schubert From: Cy Schubert X-os: FreeBSD X-Sender: cy@cwsent.com X-URL: http://www.cschubert.com/ To: "Julian H. Stacey" cc: freebsd-arch@freebsd.org Subject: pam_rhosts (was: Re: rtools were deemed almost unused 15 years ago...) In-Reply-To: Message from "Julian H. Stacey" of "Wed, 04 Oct 2017 12:35:03 +0200." <201710041035.v94AZ4JM095529@fire.js.berklix.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Mon, 09 Oct 2017 12:14:26 -0700 X-CMAE-Envelope: MS4wfBq/78CEw281A7hhJesPzj1DoGfpLAgzSjEt9PD+ykd/yiK9bXieVpXWSpxm8DMzEgESrpZcdLiqknP54d8DVbqR6h5RzgWo/BcA9o2k/OIgbByx+2tM qho7mRs2pmb1kNzVz1BqfGlwgXL99FWqFmyPo4RAqmKCNWlSIDeJoSJhiNqUPCZrELMuLY3RiCI4m7Pco1C/P8G1tF+iHM2btJ0= X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Oct 2017 19:14:38 -0000 In message <201710041035.v94AZ4JM095529@fire.js.berklix.net>, "Julian H. Stacey " writes: > > Have you picked up the recent changes to the code in your port? > > > > ----- Jeremie Le Hen's Original Message ----- > > > I've slacked a bit but here we are: > > > https://reviews.freebsd.org/D12573 > > >=20 > > > On Sat, Jul 1, 2017 at 12:08 PM, Jeremie Le Hen wrote: > > > > On Sat, Jun 24, 2017 at 10:29 PM, Jeremie Le Hen wrot > = > > e: > > > >> So the first step was to create a port with FreeBSD rcmds, here we > > > >> are! But I need some eyes to vet it: > > > >> https://reviews.freebsd.org/D11345 > > > > > > > > The port has been submitted and RCMDS are disabled by default from the > > > > base system. > > > > > > > > See you in a month for the removal! > > > NO ! It's maddening, code vandals periodicaly wanting to delete working code > & pontificating what others globaly should be denied, & forced to do & not do > . > > One example why FreeBSD should not delete rlogin & telnet etc > 3 days ago, a host with broken sshd (bad shared libs version > number), was rescued by ssh to trusted parent host, then rlogin > from that parent host to underlying jail. > > 3rd party code vandals are Not fit to decide what code should be > denied globaly in other peoples' environments. By all means leave off by > default in /etc/inetd.conf as now, but do Not Vandal Delete ! > > BSD is not Microsoft replete with masses of clueless users. BSD > includes skilled users who may wish to make their own risk assessments, > without interference. Ahh but there are masses clueless UNIX, Linux, and BSD users. I deal with these people on a daily basis at $JOB (to them it's %JOB). They're developers, mostly java developers but others too, who only understand Microsoft, and that just barely if even that. Worse is the approval they have for sudo privileges. It's scary. Protecting users from themselves is the right thing to do. Part of the issue with rcmds is they don't support encryption, which is why MIT created kerberized versions of the same utilities. Removing rcmds solves half the problem. The other is rhosts, implemented by pam_rhosts. Why in the world do we still allow IP address based authentication? (I suppose it's OK on a local home network with one or two family members as users.) Seriously, rhosts is the major reason why rcmds is insecure. It was pointed out that pam_rhosts is still used by sshd. I think that's asking for trouble. It's time to discard the rhosts baggage. It's insecure and why ssh keys were developed in the first place. rhosts should be deprecated and removed prior to 13. P.S. This is one issue. There are two others I'd raise here but let's focus on this one first. -- Cheers, Cy Schubert FreeBSD UNIX: Web: http://www.FreeBSD.org The need of the many outweighs the greed of the few.