From owner-freebsd-security@FreeBSD.ORG  Fri Sep 24 21:54:16 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 17F7B16A4CE
	for <freebsd-security@freebsd.org>;
	Fri, 24 Sep 2004 21:54:16 +0000 (GMT)
Received: from smtp16.wxs.nl (smtp16.wxs.nl [195.121.6.39])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D0B2243D48
	for <freebsd-security@freebsd.org>;
	Fri, 24 Sep 2004 21:54:15 +0000 (GMT)
	(envelope-from freebsd@akruijff.dds.nl)
Received: from kruij557.speed.planet.nl
 (ipd50a97ba.speed.planet.nl [213.10.151.186])
 by smtp16.wxs.nl (iPlanet Messaging Server 5.2 HotFix 1.25 (built Mar  3
 2004)) with ESMTP id <0I4K001FBFIC8K@smtp16.wxs.nl> for
 freebsd-security@freebsd.org; Fri, 24 Sep 2004 23:54:15 +0200 (CEST)
Received: from alex.lan (localhost [127.0.0.1])	by kruij557.speed.planet.nl
	(8.12.10/8.12.10) with ESMTP id i8OLs71F040335;
	Fri, 24 Sep 2004 23:54:07 +0200
Received: (from akruijff@localhost)	by alex.lan (8.12.10/8.12.10/Submit)
	id i8OLs6u9040334; Fri, 24 Sep 2004 23:54:06 +0200
Content-return: prohibited
Date: Fri, 24 Sep 2004 23:54:06 +0200
From: Alex de Kruijff <freebsd@akruijff.dds.nl>
In-reply-to: <20040924160019.K77746@manual-override.net>
To: Chris Orr <chris@manual-override.net>
Message-id: <20040924215406.GB784@alex.lan>
MIME-version: 1.0
Content-type: text/plain; charset=us-ascii
Content-transfer-encoding: 7BIT
Content-disposition: inline
User-Agent: Mutt/1.4.2.1i
References: <20040923120103.5DD3116A517@hub.freebsd.org>
 <415488AB.2060803@mrtux.co.uk> <20040924160019.K77746@manual-override.net>
X-Authentication-warning: alex.lan: akruijff set sender to
 freebsd@akruijff.dds.nl using -f
cc: freebsd-security@freebsd.org
Subject: Re: ssh security
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Sep 2004 21:54:16 -0000

On Fri, Sep 24, 2004 at 04:03:04PM -0500, Chris Orr wrote:
> When you build openssh, you need to be sure to add the --with-tcp-wrappers
> argument when you run the configure script.
> 
> ex: ./configure --with-ssl-dir=../openssl --with-pam --with-tcp-wrappers
> 
> Hopefully this points you in the right direction.
> 
> -chris

This is a bit unsual for FreeBSD. If the default with the base system
doesn't fith you, the you can use the port system to comile a newer
version. cd /usr/porst/.../ssh && make install && make clean

-- 
Alex

Articles based on solutions that I use:
http://www.kruijff.org/alex/FreeBSD/