Date: Tue, 21 Jul 1998 13:52:52 +0200 From: sthaug@nethelp.no To: netadmin@fastnet.co.uk Cc: security@FreeBSD.ORG Subject: Re: Ssh vsprintf (was the lame whoose-language is better war) Message-ID: <14723.901021972@verdi.nethelp.no> In-Reply-To: Your message of "Tue, 21 Jul 1998 11:48:24 %2B0100 (BST)" References: <Pine.BSF.3.96.980721114309.5652l-100000@bofh.fast.net.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
> | AFAIR it is _client_ that needs root to initiate connection from a > | privileged port. Mandatory for .rhosts authentication. > > Yeh your right.. But most of the time when you use SSH you don't *need* .rhosts type "authentication" - because you're using RSA authentication or password over an encrypted channel. If you don't need .rhosts "authentication", it's a good idea to turn off setuid root for the ssh client. Steinar Haug, Nethelp consulting, sthaug@nethelp.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?14723.901021972>