Date: Mon, 16 Jul 2001 21:48:01 -0500 (CDT) From: Mike Silbersack <silby@silby.com> To: Shila Ofek <shila_ofek@hotmail.com> Cc: <roam@orbitel.bg>, <security@freebsd.org> Subject: Re: OpenSSH UseLogin parameter Message-ID: <20010716214440.G314-100000@achilles.silby.com> In-Reply-To: <F40NYAE4TEdkuCLU8AM00014558@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 16 Jul 2001, Shila Ofek wrote: > > I'm working with OpenSSH-2.2.0 on FreeBSD 4.2, and from a look at the code > it doesn't work with PAM. The only reminder of PAM in the code is in file > auth1.c: > #ifdef HAVE_LIBPAM > int pam_retval; > #endif /* HAVE_LIBPAM */ > and that's it... > > Should I recompile the SSH daemon with some flag or something, or do I have > the wrong version? PAM was added along with openssh 2.3.0 in FreeBSD 4.3. But PAM isn't the main reason you should upgrade. You should upgrade because you're running a remotely exploitable version of OpenSSH! Please subscribe to the security advisories. Mike "Silby" Silbersack To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010716214440.G314-100000>