From owner-freebsd-questions  Fri Jul  3 07:24:42 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id HAA04816
          for freebsd-questions-outgoing; Fri, 3 Jul 1998 07:24:42 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from cygnus.rush.net (root@cygnus.rush.net [209.45.245.133])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA04804
          for <freebsd-questions@FreeBSD.ORG>; Fri, 3 Jul 1998 07:24:37 -0700 (PDT)
          (envelope-from lynch@rush.net)
Received: from localhost (lynch@localhost)
	by cygnus.rush.net (8.8.7/8.8.7) with SMTP id LAA26469;
	Fri, 3 Jul 1998 11:00:14 -0500 (EST)
Date: Fri, 3 Jul 1998 11:00:13 -0500 (EST)
From: P Lynch <lynch@rush.net>
To: Matthew Patton <patton@sysnet.net>
cc: freebsd-questions@FreeBSD.ORG
Subject: Re: CVS and suid behavior of rsh
In-Reply-To: <l03110704b1c0df8abe35@[192.168.1.10]>
Message-ID: <Pine.BSF.3.96.980703105951.25317C-100000@cygnus.rush.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

there is a list for developers.....freebsd-hackers

___________________________________________________________________________

Pat Lynch						lynch@rush.net
Systems Administrator					Rush Networking
___________________________________________________________________________

On Thu, 2 Jul 1998, Matthew Patton wrote:

> Forgive me if this is not the correct forum but I don't see a list for
> developers in the hierarchy...
> 
> My primary OS is OpenBSD, FWIW.
> 
> I noticed that when I tried to grab updated sources via anoncvs, rsh was
> opening a connection on a low port. Given how rsh does "authentication" and
> is suid root this is understandable behavior. I'm sitting behind a FW that
> prohibits anything origining below 1024, however. So I UNsuid'd it and rsh
> promptly blew up with a SIOCTL error.
> 
> In OpenBSD, we don't use rsh but ssh instead. It's been so long since I've
> used 'traditional' rsh but if memory serves the program does work even if
> not suid. Though being able to talk to the daemon on the other end may be
> problematic.
> 
> So is there anyone in the anoncvs userbase who would prefer to ssh instead?
> What are my options aside from letting outbound connections from low ports?
> 
> --------
> It is by caffeine alone I set my mind in motion, it is by the beans of Java
> that thoughts acquire speed, the hands acquire shaking, the shaking becomes
> a warning, it is by caffeine alone I set my mind in motion.
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message