Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 02 Sep 2000 16:22:52 -0600
From:      Warner Losh <imp@village.org>
To:        "Jacques A. Vidrine" <n@nectar.com>
Cc:        arch@FreeBSD.ORG
Subject:   Re: setuid ssh should die 
Message-ID:  <200009022222.e82MMqG02383@billy-club.village.org>
In-Reply-To: Your message of "Sat, 02 Sep 2000 16:01:56 CDT." <20000902160156.D1263@hamlet.nectar.com> 
References:  <20000902160156.D1263@hamlet.nectar.com>  <200009022015.e82KFN740808@hak.lan.Awfulhak.org> <41784.967926245@critter> <20000902223244.A39844@mithrandr.moria.org> 

next in thread | previous in thread | raw e-mail | index | archive | help
In message <20000902160156.D1263@hamlet.nectar.com> "Jacques A. Vidrine" writes:
: In addition to Neil's points, setuid executables ignore LD_LIBRARY_PATH
: and such, breaking SOCKS.  ssh is the type of application one would
: expect to use with SOCKS, so I'd prefer not having the gratuitous setuid
: bit set.

I just use my socks patches to the in-tree ssh.  I thought I'd
committed them a while ago, but it looks like I didn't.

Put me down for "turn of setuid" bit.  It is needed only for rsh
compatibility (yes, in the client), but we shouldn't encourage that
usage of ssh.

Warner


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-arch" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200009022222.e82MMqG02383>