Date: Mon, 19 Feb 2001 15:35:42 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Matt Dillon <dillon@earth.backplane.com> Cc: Fernando Schapachnik <fpscha@ns1.via-net-works.net.ar>, security@FreeBSD.ORG Subject: Re: Inconsistent behavior on openssh Message-ID: <20010219153542.A54742@mollari.cthul.hu> In-Reply-To: <200102191834.f1JIYl937444@earth.backplane.com>; from dillon@earth.backplane.com on Mon, Feb 19, 2001 at 10:34:47AM -0800 References: <200102191735.OAA72628@ns1.via-net-works.net.ar> <200102191834.f1JIYl937444@earth.backplane.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--CE+1k2dSO48ffgeK Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Feb 19, 2001 at 10:34:47AM -0800, Matt Dillon wrote: > :After installing the latest versions of openssh I noted that ssh will > :not request rhost authentication if run by an user other than root. > :This is because it can't bind to a low port, as it lost the suid bit. > :This wasn't like this before. > : > :What is supposed to be the standard way of remote ssh logging > :without password? > : > :TIA! > : > :Fernando P. Schapachnik > :Administraci=F3n de la red > :VIA NET.WORKS ARGENTINA S.A. > :fschapachnik@vianetworks.com.ar > :Conmutador: (54-11) 4323-3333 - Soporte: 0810-333-AYUDA >=20 > Simply install your ~/.ssh/identity.pub in your remote account's > ~/.ssh/authorized_keys file. That's why I use. I've never in my > life used .rhosts or .shosts with ssh. Or if you really want to use RhostsRSAAuthentication, rebuild sshd with ENABLE_SUID_SSH=3Dtrue in /etc/make.conf Kris --CE+1k2dSO48ffgeK Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE6ka3OWry0BWjoQKURAirJAJ9zM4S8keUpmg5BF4Z3VInxZ8+0jgCguH+r +N7y9HPh6hYRWiTWtbGKUNw= =ht3c -----END PGP SIGNATURE----- --CE+1k2dSO48ffgeK-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010219153542.A54742>