From owner-freebsd-security Tue Apr 9 23:59:12 2002 Delivered-To: freebsd-security@freebsd.org Received: from south.nanolink.com (south.nanolink.com [217.75.134.10]) by hub.freebsd.org (Postfix) with SMTP id 68AF737B404 for ; Tue, 9 Apr 2002 23:59:02 -0700 (PDT) Received: (qmail 8458 invoked from network); 10 Apr 2002 07:05:22 -0000 Received: from unknown (HELO straylight.ringlet.net) (212.116.140.125) by south.nanolink.com with SMTP; 10 Apr 2002 07:05:22 -0000 Received: (qmail 4005 invoked by uid 1000); 10 Apr 2002 06:58:51 -0000 Date: Wed, 10 Apr 2002 09:58:51 +0300 From: Peter Pentchev To: Andrew McNaughton Cc: "Jacques A. Vidrine" , X Philius , freebsd-security@FreeBSD.ORG Subject: Re: Verifying that a security patch has done it's thing... Message-ID: <20020410095851.C347@straylight.oblivion.bg> Mail-Followup-To: Andrew McNaughton , "Jacques A. Vidrine" , X Philius , freebsd-security@FreeBSD.ORG References: <20020409172127.GN19961@madman.nectar.cc> <20020410052724.H12945-100000@a2> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="XMCwj5IQnwKtuyBG" Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20020410052724.H12945-100000@a2>; from andrew@scoop.co.nz on Wed, Apr 10, 2002 at 05:28:58AM +1200 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --XMCwj5IQnwKtuyBG Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Apr 10, 2002 at 05:28:58AM +1200, Andrew McNaughton wrote: >=20 >=20 > On Tue, 9 Apr 2002, Jacques A. Vidrine wrote: >=20 > > On Tue, Apr 09, 2002 at 10:18:17AM -0700, X Philius wrote: > > [deletia ... thanks for the kind words!] > > > > > I assume I can find the PID by running ps -x as well, > > > correct? It would be the process ID for /usr/sbin/sshd... > > > > Well, there will be more than one instance of sshd: the master, plus > > one for every active SSH connection. You don't want to shoot the > > wrong process, especially if SSH is your primary or only means of > > accessing the box. :-) >=20 > In which case you might be well advised to have a cron job which checks on > it every so often and attempts to restart if it dies. No help if the > server won't start though Or (dons asbestos suit) daemontools's supervise(1) in combination with the sshd(8)'s -D flag. G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 This sentence is false. --XMCwj5IQnwKtuyBG Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjyz4qsACgkQ7Ri2jRYZRVO1jwCbB6imVEtKlAS680Zin4S17MH4 z1wAmwQ9LRLhwQEyUlKBUnW2P7191rMF =sXsI -----END PGP SIGNATURE----- --XMCwj5IQnwKtuyBG-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message