Date: Sat, 02 Sep 2000 16:22:52 -0600 From: Warner Losh <imp@village.org> To: "Jacques A. Vidrine" <n@nectar.com> Cc: arch@FreeBSD.ORG Subject: Re: setuid ssh should die Message-ID: <200009022222.e82MMqG02383@billy-club.village.org> In-Reply-To: Your message of "Sat, 02 Sep 2000 16:01:56 CDT." <20000902160156.D1263@hamlet.nectar.com> References: <20000902160156.D1263@hamlet.nectar.com> <200009022015.e82KFN740808@hak.lan.Awfulhak.org> <41784.967926245@critter> <20000902223244.A39844@mithrandr.moria.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20000902160156.D1263@hamlet.nectar.com> "Jacques A. Vidrine" writes: : In addition to Neil's points, setuid executables ignore LD_LIBRARY_PATH : and such, breaking SOCKS. ssh is the type of application one would : expect to use with SOCKS, so I'd prefer not having the gratuitous setuid : bit set. I just use my socks patches to the in-tree ssh. I thought I'd committed them a while ago, but it looks like I didn't. Put me down for "turn of setuid" bit. It is needed only for rsh compatibility (yes, in the client), but we shouldn't encourage that usage of ssh. Warner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200009022222.e82MMqG02383>