From owner-freebsd-security Mon Feb 19 10:35:46 2001 Delivered-To: freebsd-security@freebsd.org Received: from earth.backplane.com (earth-nat-cw.backplane.com [208.161.114.67]) by hub.freebsd.org (Postfix) with ESMTP id 4D46A37B401 for ; Mon, 19 Feb 2001 10:35:40 -0800 (PST) Received: (from dillon@localhost) by earth.backplane.com (8.11.2/8.9.3) id f1JIYl937444; Mon, 19 Feb 2001 10:34:47 -0800 (PST) (envelope-from dillon) Date: Mon, 19 Feb 2001 10:34:47 -0800 (PST) From: Matt Dillon Message-Id: <200102191834.f1JIYl937444@earth.backplane.com> To: Fernando Schapachnik Cc: security@FreeBSD.ORG Subject: Re: Inconsistent behavior on openssh References: <200102191735.OAA72628@ns1.via-net-works.net.ar> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org :After installing the latest versions of openssh I noted that ssh will :not request rhost authentication if run by an user other than root. :This is because it can't bind to a low port, as it lost the suid bit. :This wasn't like this before. : :What is supposed to be the standard way of remote ssh logging :without password? : :TIA! : :Fernando P. Schapachnik :Administración de la red :VIA NET.WORKS ARGENTINA S.A. :fschapachnik@vianetworks.com.ar :Conmutador: (54-11) 4323-3333 - Soporte: 0810-333-AYUDA Simply install your ~/.ssh/identity.pub in your remote account's ~/.ssh/authorized_keys file. That's why I use. I've never in my life used .rhosts or .shosts with ssh. -Matt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message