From owner-freebsd-security Tue Jun 25 18:45: 3 2002 Delivered-To: freebsd-security@freebsd.org Received: from lariat.org (lariat.org [63.229.157.2]) by hub.freebsd.org (Postfix) with ESMTP id 253A237B400 for ; Tue, 25 Jun 2002 18:44:59 -0700 (PDT) Received: from mustang.lariat.org (IDENT:ppp1000.lariat.org@lariat.org [63.229.157.2]) by lariat.org (8.9.3/8.9.3) with ESMTP id TAA03603 for ; Tue, 25 Jun 2002 19:44:52 -0600 (MDT) X-message-flag: Warning! Use of Microsoft Outlook is dangerous and makes your system susceptible to Internet worms. Message-Id: <4.3.2.7.2.20020625194026.03128420@localhost> X-Sender: brett@localhost X-Mailer: QUALCOMM Windows Eudora Version 4.3.2 Date: Tue, 25 Jun 2002 19:44:43 -0600 To: security@FreeBSD.ORG From: Brett Glass Subject: Binary upgrade available Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thanks to Jeroen, a binary package that updates the OpenSSH in the base FreeBSD install to 3.3p1 is available at http://bob.cryptohill.net/~gelderen/openssh-overwrite-base-3.3p1_1.tgz This package will install right over the base install in FreeBSD 4.4, 4.5, and 4.6, and will create the necessary pseudo-user, group, and chroot directory for privilege separation. It won't touch your existing sshd_config, so you'll need to add UsePrivilegeSeparation yes Compression yes to that file and remove any obsolete directives that this new version complains about. Hopefully, this will speed administrators' jobs as they try to plug the OpenSSH hole before next week. --Brett Glass To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message