Date: Wed, 13 Mar 2002 23:05:36 -0800 From: "Crist J. Clark" <cjc@FreeBSD.ORG> To: Dag-Erling Smorgrav <des@ofug.org> Cc: security@FreeBSD.ORG Subject: Re: sshd UseLogin option Message-ID: <20020313230536.B29705@blossom.cjclark.org> In-Reply-To: <xzpg034a843.fsf@flood.ping.uio.no>; from des@ofug.org on Wed, Mar 13, 2002 at 02:51:40PM %2B0100 References: <xzpg034a843.fsf@flood.ping.uio.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Mar 13, 2002 at 02:51:40PM +0100, Dag-Erling Smorgrav wrote:
> Could someone please explain to me why we don't use sshd's UseLogin
> option by default? I know that there was a security hole related to
> that option recently, but that's not a real reason - security holes
> can show up anywhere - so is there anything that makes UseLogin a
> particularly bad idea?
Who uses system passwords with ssh(1)?
--
Crist J. Clark | cjclark@alum.mit.edu
| cjclark@jhu.edu
http://people.freebsd.org/~cjc/ | cjc@freebsd.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020313230536.B29705>