From owner-freebsd-security Mon Jan 6 13:39: 4 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5DD4E37B401 for ; Mon, 6 Jan 2003 13:39:02 -0800 (PST) Received: from aristotle.tamu.edu (Aristotle.tamu.edu [165.91.161.90]) by mx1.FreeBSD.org (Postfix) with ESMTP id CACD743F0A for ; Mon, 6 Jan 2003 13:39:01 -0800 (PST) (envelope-from rasmith@aristotle.tamu.edu) Received: from aristotle.tamu.edu (localhost [127.0.0.1]) by aristotle.tamu.edu (8.12.6/8.12.6) with ESMTP id h06Ld1Ka011779 for ; Mon, 6 Jan 2003 15:39:01 -0600 (CST) (envelope-from rasmith@aristotle.tamu.edu) Message-Id: <200301062139.h06Ld1Ka011779@aristotle.tamu.edu> To: freebsd-security@FreeBSD.ORG Subject: Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS In-Reply-To: Message from Darren Pilgrim of "Mon, 06 Jan 2003 13:27:12 PST." <3E19F4B0.3090903@pantherdragon.org> Mime-Version: 1.0 (generated by tm-edit 7.106) Content-Type: text/plain; charset=US-ASCII Date: Mon, 06 Jan 2003 15:39:01 -0600 From: Robin Smith X-Virus-Scanned: by amavisd-milter (http://amavis.org/) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >>>>> "Darren" == Darren Pilgrim writes: Darren> Mike Tancsa wrote: >> FYI, for those not on bugtraq. Darren> The "advisory" is suspect. Whatever the credibility of this advisory, it seems the issue is handled just by turning on privilege separation. (1) Is that right? (2) Can anyone tell me any reason not to turn it on (apart from a few additional entries in the process table)? It's off in the default FreeBSD 4.7 config. Robin Smith To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message