From owner-freebsd-bugs Wed Apr 25 2:30: 5 2001 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 845B437B424 for ; Wed, 25 Apr 2001 02:30:02 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.1/8.11.1) id f3P9U2325294; Wed, 25 Apr 2001 02:30:02 -0700 (PDT) (envelope-from gnats) Date: Wed, 25 Apr 2001 02:30:02 -0700 (PDT) Message-Id: <200104250930.f3P9U2325294@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: Masachika ISHIZUKA Subject: Re: bin/26832: ssh cannot login without password when using ~/.shosts Reply-To: Masachika ISHIZUKA Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The following reply was made to PR bin/26832; it has been noted by GNATS. From: Masachika ISHIZUKA To: roam@orbitel.bg Cc: FreeBSD-gnats-submit@freebsd.org, ishizuka@ish.org Subject: Re: bin/26832: ssh cannot login without password when using ~/.shosts Date: Wed, 25 Apr 2001 18:29:53 +0900 > On Wed, Apr 25, 2001 at 03:05:54PM +0900, Masachika ISHIZUKA wrote: > >>>Number: 26832 >>>Category: bin >>>Synopsis: ssh cannot login without password when using ~/.shosts >>>Originator: Masachika ISHIZUKA >>>Fix: >> chmod u+s /usr/bin/ssh > > Mmmm.. I would rather think the correct fix is putting: > ENABLE_SETUID_SSH=true > > in your /etc/make.conf, as documented in /etc/defaults/make.conf. Dear, Peter-san. Thank you for reply. It can be fixed to add "ENABLE_SETUID_SSH=true" in /etc/make.conf and "cd /usr/src/secure/lib/libssh && make && cd ../../usr.bin/ssh && make && make install", but do all users to use .shosts install ssh source code, and why is the suid bit of ssh removed from 4.2R to 4.3R ? Any security reasons ? -- ishizuka@ish.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message