Date: Tue, 17 Oct 2006 20:03:52 +0400 From: Ruslan Ermilov <ru@FreeBSD.org> To: Dag-Erling Smorgrav <des@FreeBSD.org> Cc: freebsd-stable@FreeBSD.org Subject: Re: ENABLE_SUID_SSH in make.conf Message-ID: <20061017160351.GA72123@rambler-co.ru> In-Reply-To: <20061017074639.GB11838@mail1.thewrittenword.com> References: <20061017074639.GB11838@mail1.thewrittenword.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--gKMricLos+KVdGMg Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Oct 17, 2006 at 02:46:39AM -0500, Albert Chin wrote: > According to make.conf(5): > ENABLE_SUID_SSH > (bool) Set this to install ssh(1) with the set-user-ID= bit > turned on. >=20 > However, I think ENABLE_SUID_SSH only sets the suid bit for > /usr/libexec/ssh-keysign. >=20 > Why isn't /usr/libexec/ssh-keysign suid by default anyway? It's > pointless without it. >=20 Good question. Let's see what our maintainer has to say about it. My feeling as well is that the option should just be removed. Cheers, --=20 Ruslan Ermilov ru@FreeBSD.org FreeBSD committer --gKMricLos+KVdGMg Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) iD8DBQFFNP7nqRfpzJluFF4RAj9OAKCRhdPdpt1ItDRiLGbHT+g7DRUS6QCgjsbI YTZV6+vzDdcqTmd9R+x4Fa0= =laAb -----END PGP SIGNATURE----- --gKMricLos+KVdGMg--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061017160351.GA72123>