From owner-freebsd-security  Wed Jun  6  4:11:30 2001
Delivered-To: freebsd-security@freebsd.org
Received: from consistent.unicore.no (transmogrify.unicore.no [194.19.38.10])
	by hub.freebsd.org (Postfix) with ESMTP id ED01B37B403
	for <security@freebsd.org>; Wed,  6 Jun 2001 04:11:27 -0700 (PDT)
	(envelope-from andreas@consistent.unicore.no)
Received: (from andreas@localhost)
	by consistent.unicore.no (8.11.1/8.11.1) id f56BBUm26648
	for security@freebsd.org; Wed, 6 Jun 2001 13:11:30 +0200 (CEST)
	(envelope-from andreas)
Date: Wed, 6 Jun 2001 13:11:30 +0200
From: Andreas Haugsnes <andreas@haugsnes.no>
To: security@freebsd.org
Subject: Re: [fwd] SSH allows deletion of other users files...
Message-ID: <20010606131130.A26605@consistent.unicore.no>
References: <20010606124702.A30808@lucky.net> <20010606124822.A26583@consistent.unicore.no> <20010606125321.A56634@mithrandr.moria.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20010606125321.A56634@mithrandr.moria.org>; from nbm@mithrandr.moria.org on Wed, Jun 06, 2001 at 12:53:21PM +0200
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Ahh, tested it now, yes, it is vulnerable.
But wouldn't an easy workaround be too disable all X11-forwarding in sshd?
I had it to 'no' here, but that was not per default.


- Andreas Haugsnes

On Wed, Jun 06, 2001 at 12:53:21PM +0200, Neil Blakey-Milner wrote:
> 
> Are you using X forwarding? (ie, ssh -X)
> 

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message