From owner-freebsd-security  Mon Apr  1  0:57:35 2002
Delivered-To: freebsd-security@freebsd.org
Received: from smtp.sambolian.net.nz (203-79-83-205.cable.paradise.net.nz [203.79.83.205])
	by hub.freebsd.org (Postfix) with ESMTP id B5A7237B41F
	for <security@freebsd.org>; Mon,  1 Apr 2002 00:57:24 -0800 (PST)
Received: by smtp.sambolian.net.nz (Postfix, from userid 80)
	id 11BAD102D8; Mon,  1 Apr 2002 21:45:27 +1200 (NZST)
Received: from 192.168.0.81 ( [192.168.0.81])
	as user andy@imap.sambolian.net.nz by webmail.sambolian.net.nz with HTTP;
	Mon,  1 Apr 2002 21:45:26 +1200
Message-ID: <1017654326.3ca82c36df0d2@webmail.sambolian.net.nz>
Date: Mon,  1 Apr 2002 21:45:26 +1200
From: andy@sambolian.net.nz
To: security@freebsd.org
Subject: Re: Why update the world because of OpenSSH?
References: <B8CCE575.F15A%patpro@patpro.net>
In-Reply-To: <B8CCE575.F15A%patpro@patpro.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
User-Agent: Internet Messaging Program (IMP) 3.0
X-Originating-IP: 192.168.0.81
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hi,


What you can do is this. It will overwrite ssh that comes with the base so 
there is no need to change rc.conf or anything.


cd /usr/ports/security/openssh-portable 
make clean 
make -DOPENSSH_OVERWRITE_BASE 
make -DOPENSSH_OVERWRITE_BASE install 




Quoting patpro <patpro@patpro.net>:

> le 31/03/02 16:00, Jesper Wallin à z3l3zt@phucking.kicks-ass.org a écrit :
> 
> > Once again I make me look like a fool..
> > 
> > I'm quite new to both mailinglists and FreeBSD so I'm not sure IF i
> should
> > post this or where I should post if.. sorry for pissing you off..
> > 
> > Well, for some month ago I saw the warnings about the root exploit for
> > OpenSSH here. What I never understood what, why should I update my world
> > because of an OpenSSH exploit? Isn't it enought to just cvsup the ports
> and
> > re-install OpenSSH from the ports?
> 
> 
> it appears to me that you just have to remove the openssh that comes with
> the base system and to install the openssh-portable port (and tune rc.conf
> accordingly).
> 
> patpro
> -- 
> "Rien ne se perd, rien ne se crée, tout s'empile"
>                              - Mon Bureau -
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
> 
> 




-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message