Date: Fri, 8 Jun 2001 22:34:00 +0300 From: Peter Pentchev <roam@orbitel.bg> To: Rob Simmons <rsimmons@wlcg.com> Cc: Neil Blakey-Milner <nbm@mithrandr.moria.org>, Andreas Haugsnes <andreas@haugsnes.no>, security@FreeBSD.ORG Subject: Re: [fwd] SSH allows deletion of other users files... Message-ID: <20010608223400.C54030@ringworld.oblivion.bg> In-Reply-To: <Pine.BSF.4.21.0106081523560.57977-100000@mail.wlcg.com>; from rsimmons@wlcg.com on Fri, Jun 08, 2001 at 03:27:58PM -0400 References: <20010606125321.A56634@mithrandr.moria.org> <Pine.BSF.4.21.0106081523560.57977-100000@mail.wlcg.com>
next in thread | previous in thread | raw e-mail | index | archive | help
If you do ssh -v -v -X user@host, and you do this from within an X terminal (so there is an X session to forward to ;), is there some XAUTHORITY output at the end? If not, then: - Is X installed on the server host? - Is there a /usr/X11R6/bin/xauth on the server host, executable by your user? - Are you really sure you're running the client from within an X session? :) G'luck, Peter -- You have, of course, just begun reading the sentence that you have just finished reading. On Fri, Jun 08, 2001 at 03:27:58PM -0400, Rob Simmons wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: RIPEMD160 > > With X forwarding on in /etc/ssh/sshd_config: > X11Forwarding yes > > and using > ssh -X <user>@<host> > > I don't see any ssh files in /tmp. Does this bug apply to FreeBSD's > version of OpenSSH? > > Robert Simmons > Systems Administrator > http://www.wlcg.com/ > > On Wed, 6 Jun 2001, Neil Blakey-Milner wrote: > > > On Wed 2001-06-06 (12:48), Andreas Haugsnes wrote: > > > I've tested it with FreeBSD 4.3, and I have not found this bug > > > to apply. > > > > Are you using X forwarding? (ie, ssh -X) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010608223400.C54030>