From owner-freebsd-current  Sun Nov  8 19:44:55 1998
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id TAA02077
          for freebsd-current-outgoing; Sun, 8 Nov 1998 19:44:55 -0800 (PST)
          (envelope-from owner-freebsd-current@FreeBSD.ORG)
Received: from alive.znep.com (207-178-54-226.go2net.com [207.178.54.226])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA02069
          for <freebsd-current@FreeBSD.ORG>; Sun, 8 Nov 1998 19:44:52 -0800 (PST)
          (envelope-from marcs@znep.com)
Received: from localhost (marcs@localhost)
	by alive.znep.com (8.9.1/8.9.1) with ESMTP id TAA09032;
	Sun, 8 Nov 1998 19:39:14 -0800 (PST)
	(envelope-from marcs@znep.com)
Date: Sun, 8 Nov 1998 19:39:14 -0800 (PST)
From: Marc Slemko <marcs@znep.com>
To: Phillip Salzman <psalzman@gamefish.pcola.gulf.net>
cc: pal <pal@PaLaDiN7.ml.org>, sporkl@ix.netcom.com,
        freebsd-current@FreeBSD.ORG, osa@freebsd.org.ru
Subject: Re: SSH 2.0.10 BUG? (!)
In-Reply-To: <Pine.BSF.4.05.9811090329010.5722-100000@gamefish.pcola.gulf.net>
Message-ID: <Pine.BSF.4.05.9811081938100.8174-100000@alive.znep.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Mon, 9 Nov 1998, Phillip Salzman wrote:

> make it +s

DO NOT.

Doing so would quite possibly introduce a major security hole.  Very few
daemons are designed to have the setuid bit set, for the simple reason
that if they have to be root they are normally already root.  

> On Sun, 8 Nov 1998, pal wrote:
> 
> > its:
> > 
> > -rwxr-xr-x   1 root  wheel  1310188 28  20:57 sshd2 
[...]



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message