Date: Mon, 24 Jun 2002 23:34:51 -0600 From: Brett Glass <brett@lariat.org> To: security@freeBSD.ORG Subject: Workarounds for OpenSSH problems Message-ID: <4.3.2.7.2.20020624231924.00db8360@localhost>
next in thread | raw e-mail | index | archive | help
A few quick questions. Has anyone on the list successfully used privilege separation on the OpenSSH 3.3p that's now in the ports tree? Does it work? Does privilege separation have any negative side effects, such as disabling compression or some forms of authentication? Since I have a lot of systems to cover, is it possible to copy just the SSHD binary of the later version over the one that's installed by default when one installs FreeBSD? (I'd rather do this than mess with installing a port -- especially since many of my production machines don't have the ports collection. It's a disk hog.) If there's a problem with privilege separation or authentication on the 3.3p port, I'd be tempted to use the commercial SSH for awhile. SSH, Inc. allows unlimited non-commercial use or a 30 day free evaluation period for commercial use; by the time it expires, the dust will probably have settled and I can switch back. Or I always have the option of paying SSH, Inc. for a license for the commercial uses and continuing to use the code for non-commercial uses. --Brett Glass To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.7.2.20020624231924.00db8360>