From owner-freebsd-arch Wed Apr 19 5:40: 0 2000 Delivered-To: freebsd-arch@freebsd.org Received: from ns1.yes.no (ns1.yes.no [195.204.136.10]) by hub.freebsd.org (Postfix) with ESMTP id 9268437BC97 for ; Wed, 19 Apr 2000 05:39:55 -0700 (PDT) (envelope-from eivind@bitbox.follo.net) Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218]) by ns1.yes.no (8.9.3/8.9.3) with ESMTP id OAA01020 for ; Wed, 19 Apr 2000 14:39:53 +0200 (CEST) Received: (from eivind@localhost) by bitbox.follo.net (8.8.8/8.8.6) id OAA00616 for freebsd-arch@freebsd.org; Wed, 19 Apr 2000 14:39:51 +0200 (CEST) Received: from awfulhak.org (tun.AwfulHak.org [194.242.139.173]) by hub.freebsd.org (Postfix) with ESMTP id 7406637BB87 for ; Tue, 18 Apr 2000 15:38:44 -0700 (PDT) (envelope-from brian@Awfulhak.org) Received: from hak.lan.Awfulhak.org (root@hak.lan.awfulhak.org [172.16.0.12]) by awfulhak.org (8.9.3/8.9.3) with ESMTP id XAA24436; Tue, 18 Apr 2000 23:37:42 +0100 (BST) (envelope-from brian@hak.lan.Awfulhak.org) Received: from hak.lan.Awfulhak.org (localhost [127.0.0.1]) by hak.lan.Awfulhak.org (8.9.3/8.9.3) with ESMTP id WAA00579; Tue, 18 Apr 2000 22:46:32 +0100 (BST) (envelope-from brian@hak.lan.Awfulhak.org) Message-Id: <200004182146.WAA00579@hak.lan.Awfulhak.org> X-Mailer: exmh version 2.1.1 10/15/1999 To: csg@waterspout.com (C. Stephen Gunn) Cc: Warner Losh , freebsd-arch@freebsd.org, brian@hak.lan.Awfulhak.org Subject: Re: Outdated rdist in FreeBSD Base In-Reply-To: Message from csg@waterspout.com (C. Stephen Gunn) of "Tue, 18 Apr 2000 11:22:27 CDT." <200004181622.LAA02964@dustdevil.waterspout.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Tue, 18 Apr 2000 22:46:32 +0100 From: Brian Somers Sender: owner-freebsd-arch@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > On Tue, 18 Apr 2000 10:07:39 CST, Warner Losh wrote: > > > In message <20000418092044.A2172@waterspout.com> "C. Stephen Gunn" writes: > > : > Agreed. And I think there are still some security concerns with > > : > rdist. > > : > > : Can you provide us with some specifics? > > > > Beyond the big, huge gaping one of using the woefully insecure rcmd > > port, none come to mind at the moment. > > Oh yeah.. That. > > We run rdist over ssh, so we're not as worried about the rcmd > stuff after you add two key exchanges (one for the hosts, and > one for the user). It's been a while, but AFAIR I needed to install rdist6 because I *couldn't* run rdist over ssh ! I think that big gaping hole is an anti-hole ! > - Steve -- Brian Don't _EVER_ lose your sense of humour ! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message