Re: [ILUG] openssh vulnerability

From: Rick Moen (rick at domain linuxmafia.com)
Date: Wed 26 Jun 2002 - 02:59:27 IST

• Next message: Niall O Broin: "[ILUG] Showmount "completeness and accurary""
• Previous message: John Madden: "Re: [ILUG] openssh vulnerability"
• In reply to: John Madden: "Re: [ILUG] openssh vulnerability"
• Next in thread: John Madden: "Re: [ILUG] openssh vulnerability"
• Reply: John Madden: "Re: [ILUG] openssh vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

[Replying to John Madden's recent post, which unfortunately I've
already deleted locally.]

John, the bulleted notes in the most recent Debian security advisory
on this matter cast some light on your experiences, and clear up the
/etc/ssh/sshd_config default-settings matter:

http://www.debian.org/security/2002/dsa-134

I notice that, contrary to what the advisory says, installing the Debian
Security Team's update package did _not_ create group sshd on my
systems, so I did so myself. Priv sep does appear to work as described.
(The advisory further confirms what you said about priv sep being the
default even without the keyword.)

• Next message: Niall O Broin: "[ILUG] Showmount "completeness and accurary""
• Previous message: John Madden: "Re: [ILUG] openssh vulnerability"
• In reply to: John Madden: "Re: [ILUG] openssh vulnerability"
• Next in thread: John Madden: "Re: [ILUG] openssh vulnerability"
• Reply: John Madden: "Re: [ILUG] openssh vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:17:32 GMT