From owner-freebsd-hackers  Sat Aug 18  3:23: 7 2001
Delivered-To: freebsd-hackers@freebsd.org
Received: from segfault.kiev.ua (segfault.kiev.ua [193.193.193.4])
	by hub.freebsd.org (Postfix) with ESMTP id A035E37B405
	for <freebsd-hackers@FreeBSD.ORG>; Sat, 18 Aug 2001 03:23:01 -0700 (PDT)
	(envelope-from netch@iv.nn.kiev.ua)
Received: (from uucp@localhost)
	by segfault.kiev.ua (8) with UUCP id NIU37112;
	Sat, 18 Aug 2001 13:22:49 +0300 (EEST)
	(envelope-from netch@iv.nn.kiev.ua)
Received: (from netch@localhost)
	by iv.nn.kiev.ua (8.11.5/8.11.5) id f7IAJQf01613;
	Sat, 18 Aug 2001 13:19:26 +0300 (EEST)
	(envelope-from netch)
Date: Sat, 18 Aug 2001 13:19:26 +0300
From: Valentin Nechayev <netch@iv.nn.kiev.ua>
To: Olafur Osvaldsson <oli@isnic.is>
Cc: freebsd-hackers@FreeBSD.ORG
Subject: Re: ssh and setuid
Message-ID: <20010818131925.A1393@iv.nn.kiev.ua>
References: <20010815162132.J70497@isnic.is>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20010815162132.J70497@isnic.is>; from oli@isnic.is on Wed, Aug 15, 2001 at 04:21:32PM +0000
X-42: On
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

 Wed, Aug 15, 2001 at 16:21:32, oli (Olafur Osvaldsson) wrote about "ssh and setuid": 

[...]

> As the ssh in FreeBSD is by default not setuid it uses a higher than privileged
> port for connecting so obviously that is the reason for my troubles.
> 
> Wouldn't it be better to only disable rhosts_authentication instead of disabling
> both when the port is not privileged or atleast have this as an option in
> make.conf for those that want this option without setting the setuid bit on ssh?

RhostsRSAAuthentication needs private key of client host. Private key should
be readable only for root, i.e. non-setuid ssh cannot read it.
Hence, I can try to determine logic of disabling RhostsRSAAuthentication
when connect was from non-privileged port: it quickly disables faked host
key checking without semi-expensive RSA/DSA computations.

But, there is another problem here: can client host create more than 512
outgoing ssh connections? In such case port range 512...1023 will be
exhausted, and RhostsRSAAuthentication will fail insuspectively.


/netch

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message