From: John Madden (maddenj at domain skynet.ie)
Date: Tue 25 Jun 2002 - 12:19:19 IST
On (25/06/02 12:01), Anders Holm didst pronounce:
>
> [snip]
> >
> > It's not a work-around if you're running 2.2 kernels, as many people
> > still are. I'm running a pair of heavily modded RH 6.2 machines, with
> > upgraded kernels and all public services upgraded to latest.
>
> Apparently John Madden was successful in this. Maybe one would ask him how
> he did this? Might even be worth the effort, who knows?
>
I followed the steps someone else posted this morning:
add deb http://security.debian.org/ testing/updates main contrib non-free
to /etc/apt/sources.list. apt-get install ssh then added:
UsePrivilegeSeparation yes
Compression no
to /etc/ssh/sshd_config
Only problem I've come across so far is that most of the users have ssh1
keys generated for accessing mail on another server in the network and
3.3 doesn't seem to support it (at least that's what I think the problem
is, not having looked too deeply into it yet). Other than that, no
upsets yet.
-- Chat ya later, John. -- BOFH excuse #78: Yes, yes, its called a desgin limitation
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:17:30 GMT