Date: Mon, 31 Jul 2000 11:27:53 -0400 From: Bill Fumerola <billf@chimesnet.com> To: Jon Hamilton <hamilton@pobox.com> Cc: Kris Kennaway <kris@FreeBSD.org>, stable@FreeBSD.org Subject: Re: HEADS UP! OpenSSH FallBackToRsh default changed Message-ID: <20000731112753.C5021@jade.chc-chimes.com> In-Reply-To: <20000731114006.238FE1D@woodstock.monkey.net>; from hamilton@pobox.com on Mon, Jul 31, 2000 at 06:40:06AM -0500 References: <Pine.BSF.4.21.0007310053570.70721-100000@freefall.freebsd.org> <20000731114006.238FE1D@woodstock.monkey.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jul 31, 2000 at 06:40:06AM -0500, Jon Hamilton wrote:
> I suppose the people who run it that way that you would consider to be
> "legitimate" would be folks in a mixed shop who have a mix of ssh-enabled
> and non-ssh-enabled machines (to avoid argument, perhaps the latter are
> out of the control of the admin of the former). Remember that ssh is
> meant to be a drop-in replacement for rsh, so in the circumstance described
> above, this change may violate POLA. Besides, if the target machine is
> not running rshd, what is the harm in falling back to it if rsh doesn't work?
> This smells like a feel-good change that will actually inconvenience some
> folks, which doesn't really buy anything.
When I type ssh I expect that when everything is said and done that I have
a secure channel to the machine.
--
Bill Fumerola - Network Architect, BOFH / Chimes, Inc.
billf@chimesnet.com / billf@FreeBSD.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000731112753.C5021>