From owner-freebsd-security Tue Apr 9 10:18:22 2002 Delivered-To: freebsd-security@freebsd.org Received: from web11806.mail.yahoo.com (web11806.mail.yahoo.com [216.136.172.160]) by hub.freebsd.org (Postfix) with SMTP id 6299537B417 for ; Tue, 9 Apr 2002 10:18:17 -0700 (PDT) Message-ID: <20020409171817.52900.qmail@web11806.mail.yahoo.com> Received: from [64.73.64.94] by web11806.mail.yahoo.com via HTTP; Tue, 09 Apr 2002 10:18:17 PDT Date: Tue, 9 Apr 2002 10:18:17 -0700 (PDT) From: X Philius Reply-To: xphilius@yahoo.com Subject: Re: Verifying that a security patch has done it's thing... To: "Jacques A. Vidrine" Cc: freebsd-security@FreeBSD.ORG In-Reply-To: <20020409162341.GL19961@madman.nectar.cc> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Jacques, Thanks so much for your rapid reply. One would hope to get such excellent service from paid, comerical software! An excellent example of open source software at it's finest! More below.. Jason > There is nothing special to do to verify that the patch was > installed. > Either you applied the patch, recompiled, and reinstalled, or you > didn't. Great. That is clear enough. I suppose the practice of using 'script' to capture the output of the patch, make and install process and looking it over for errors will be sufficient to satisfy my anal retentive tendancies ;-) > > > 2. The security notice did not really say what I needed to do to > make > > sure that the new version of sshd was loaded in to memory after the > > install. > > Yes, that was an oversight that we hope to avoid in the future. Wow. You guys are great. The security notifications in general are very clear. As I said, I pretty much followed the instructions by rote, never having run a patch on my source before, and it worked just fine. > You can terminate the master SSH process without affecting your > currently active SSH sessions. The PID of the master process is > probably in /var/run/sshd.pid. You might also use `sockstat' to > determine which process is listening --- look for the wildcard > address > `*:*' in the rightmost column. > Wonderful. I assume I can find the PID by running ps -x as well, correct? It would be the process ID for /usr/sbin/sshd... Thanks again for your diligence. Jason __________________________________________________ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://taxes.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message