From owner-freebsd-bugs Wed May 2 15:40:10 2001 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 3A4B237B43C for ; Wed, 2 May 2001 15:40:05 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.1/8.11.1) id f42Me5L96431; Wed, 2 May 2001 15:40:05 -0700 (PDT) (envelope-from gnats) Date: Wed, 2 May 2001 15:40:05 -0700 (PDT) Message-Id: <200105022240.f42Me5L96431@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: Archie Cobbs Subject: Re: bin/26996: sshd fails when / mounted read-only Reply-To: Archie Cobbs Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The following reply was made to PR bin/26996; it has been noted by GNATS. From: Archie Cobbs To: Kris Kennaway Cc: FreeBSD-gnats-submit@FreeBSD.ORG Subject: Re: bin/26996: sshd fails when / mounted read-only Date: Wed, 02 May 2001 15:38:07 -0700 Kris Kennaway wrote: > > This patch fixes the problem, but may cause other > > security problems (or may not, I'm not sure): > > In fact it does; if the ownership and permissions of pty devices isn't > changed it allows any other users on the system to read and write to > that pty, snooping passwords and the like. The real solution would be > to use devfs or mount your /dev on a MFS or something (with a minimal > static /dev on / to handle bootstrapping). So, how about a flag to sshd to make it allow this behavior with suitably strong warnings in the man page? Also, how come e.g. telnetd doesn't have the same problem? If telnetd can work why can't sshd? -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message