Date: 01 Jul 2002 16:01:34 +0200 From: Dag-Erling Smorgrav <des@ofug.org> To: Chris Johnson <cjohnson@palomine.net> Cc: security@freebsd.org Subject: Re: security risk: ktrace(2) in FreeBSD prior to -current. Message-ID: <xzpelenim2p.fsf@flood.ping.uio.no> In-Reply-To: <20020701135719.GA65770@palomine.net> References: <200206301817.EAA05639@caligula.anu.edu.au> <xzp65zzk2ds.fsf@flood.ping.uio.no> <20020701135719.GA65770@palomine.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Chris Johnson <cjohnson@palomine.net> writes:
> On Mon, Jul 01, 2002 at 03:23:59PM +0200, Dag-Erling Smorgrav wrote:
> > Darren Reed <avalon@coombs.anu.edu.au> writes:
> > > With OpenSSH 3.4, ssh-keysign gets installed setuid-root.
> > Not in FreeBSD.
> Are you sure?
I don't care about the port. Personally, I'd rather it didn't exist,
and I think admins who install it need to have their head checked.
des@des ~% cat /usr/src/secure/usr.bin/ssh-keysign/Makefile
# $FreeBSD: src/secure/usr.bin/ssh-keysign/Makefile,v 1.4 2002/06/25 19:10:09 des Exp $
PROG= ssh-keysign
MAN= ssh-keysign.8
CFLAGS+=-I${SSHDIR}
DPADD= ${LIBSSH} ${LIBCRYPTO} ${LIBZ}
LDADD= -lssh -lcrypto -lz
.include <bsd.prog.mk>
.PATH: ${SSHDIR}
DES
--
Dag-Erling Smorgrav - des@ofug.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzpelenim2p.fsf>