From owner-freebsd-security  Sun Jul  7 18: 6:16 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 494B337B400
	for <security@freebsd.org>; Sun,  7 Jul 2002 18:06:10 -0700 (PDT)
Received: from smtp.pekinnet.net (64-40-75-24.dsl.peknil.grics.net [64.40.75.24])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8CF0043E09
	for <security@freebsd.org>; Sun,  7 Jul 2002 18:06:09 -0700 (PDT)
	(envelope-from freebsdlists@elitists.org)
Received: from [192.168.1.100] (unknown [64.40.88.202])
	by smtp.pekinnet.net (Postfix) with ESMTP id 1DA2E6A2BF
	for <security@freebsd.org>; Sun,  7 Jul 2002 20:56:44 -0400 (EDT)
User-Agent: Microsoft-Entourage/10.0.0.1331
Date: Sun, 07 Jul 2002 20:06:15 -0500
Subject: Re: Default ssh protocol in -STABLE [was:
From: "F. Even" <freebsdlists@elitists.org>
To: <security@FreeBSD.ORG>
Message-ID: <B94E4FB7.1055E%freebsdlists@elitists.org>
In-Reply-To: <bulk.44049.20020707115036@hub.freebsd.org>
Mime-version: 1.0
Content-type: text/plain; charset="US-ASCII"
Content-transfer-encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Really?  I seem to have noticed the introduction of a "periodic.conf"
between 4.0 and 4.4.  While it was pleasant to see it, it was still a
change.  This seems about the same....a small config change, except the
default is a little different...and if people are blindly upgrading entire
systems following the STABLE branch...well....

If I'm understanding right, this change is not going to be introduced into
"RELENG_4_ver," just the STABLE branch.  It would seem to me that you would
know if you are upgrading your version of OpenSSH, the main way to connect
to your machine remotely, and you should be familiar enough to know the
defaults is different, and to either change it back or not.  I mean....if
you are taking the time to upgrade, a config file setting shouldn't be that
big of a deal.

Frank

On 7/7/02 1:50 PM, "security-digest"
<owner-freebsd-security-digest@FreeBSD.ORG> wrote:

> Date: Sat, 06 Jul 2002 22:42:29 -0700
> From: Doug Barton <DougB@FreeBSD.org>
> Subject: Re: Default ssh protocol in -STABLE [was: HEADS UP:
> FreeBSD-STABLEnowhas  OpenSSH 3.4p1]
> 
> Anthony Rubin wrote:
>> 
>> In order for this change to affect a user they would have to run
>> mergemaster, see the change, and tell mergemaster to go ahead and merge
>> or overwrite their config file.
> 
> Or, install a new box after wiping the old layout, or any number of
> scenarios. The point remains, we don't do changes like this within a
> - -stable branch.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message