From owner-freebsd-security Mon Feb 19 9:39: 0 2001 Delivered-To: freebsd-security@freebsd.org Received: from d156h168.resnet.uconn.edu (d156h168.resnet.uconn.edu [137.99.156.168]) by hub.freebsd.org (Postfix) with SMTP id CD55537B491 for ; Mon, 19 Feb 2001 09:38:53 -0800 (PST) Received: (qmail 4811 invoked by alias); 19 Feb 2001 17:37:02 -0000 Received: from unknown (HELO sirmoobert) (137.99.158.30) by d156h168.resnet.uconn.edu with SMTP; 19 Feb 2001 17:37:02 -0000 Message-ID: <000501c09a9a$ffcf7140$1e9e6389@137.99.156.23> From: "Peter C. Lai" To: "Fernando Schapachnik" , References: <200102191735.OAA72628@ns1.via-net-works.net.ar> Subject: Re: Inconsistent behavior on openssh Date: Mon, 19 Feb 2001 12:40:07 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org won't this line in /etc/syslog.conf log all logins whether via password or not? I know this logs password-authenticated ssh connection attempts. I don't trust rhosts anymore than I used to (probably because I run more passwords-authentication than firewalling boxen). auth.*,authpriv.* /var/log/authlog ----- Original Message ----- From: "Fernando Schapachnik" To: Sent: Monday, February 19, 2001 12:35 PM Subject: Inconsistent behavior on openssh > After installing the latest versions of openssh I noted that ssh will > not request rhost authentication if run by an user other than root. > This is because it can't bind to a low port, as it lost the suid bit. > This wasn't like this before. > > What is supposed to be the standard way of remote ssh logging > without password? > > TIA! > > Fernando P. Schapachnik > Administración de la red > VIA NET.WORKS ARGENTINA S.A. > fschapachnik@vianetworks.com.ar > Conmutador: (54-11) 4323-3333 - Soporte: 0810-333-AYUDA > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message