Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS
From: Robin Smith (rasmith@aristotle.tamu.edu)
Date: 01/06/03
- Next message: Christoph Moench-Tegeder: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Previous message: Mike Tancsa: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Maybe in reply to: Mike Tancsa: "Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Next in thread: Christoph Moench-Tegeder: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Reply: Christoph Moench-Tegeder: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: freebsd-security@FreeBSD.ORG Date: Mon, 06 Jan 2003 15:39:01 -0600 From: Robin Smith <rasmith@aristotle.tamu.edu>
>>>>> "Darren" == Darren Pilgrim <dmp@pantherdragon.org> writes:
Darren> Mike Tancsa wrote:
>> FYI, for those not on bugtraq.
Darren> The "advisory" is suspect.
Whatever the credibility of this advisory, it seems the issue is handled
just by turning on privilege separation.
(1) Is that right?
(2) Can anyone tell me any reason not to turn it on (apart from a few
additional entries in the process table)? It's off in the default FreeBSD
4.7 config.
Robin Smith
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Christoph Moench-Tegeder: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Previous message: Mike Tancsa: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Maybe in reply to: Mike Tancsa: "Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Next in thread: Christoph Moench-Tegeder: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Reply: Christoph Moench-Tegeder: "Re: Fwd: OPENSSH REMOTE ROOT COMPROMISE ALL VERSIONS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
