From owner-freebsd-security  Sat Sep 12 18:01:59 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id SAA02499
          for freebsd-security-outgoing; Sat, 12 Sep 1998 18:01:59 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from ifi.uio.no (ifi.uio.no [129.240.64.2])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id SAA02485
          for <freebsd-security@FreeBSD.ORG>; Sat, 12 Sep 1998 18:01:52 -0700 (PDT)
          (envelope-from dag-erli@ifi.uio.no)
Received: from hvergelmir.ifi.uio.no (2602@hvergelmir.ifi.uio.no [129.240.64.129])
	by ifi.uio.no (8.8.8/8.8.7/ifi0.2) with ESMTP id DAA15207;
	Sun, 13 Sep 1998 03:01:35 +0200 (MET DST)
Received: (from dag-erli@localhost) by hvergelmir.ifi.uio.no ; Sun, 13 Sep 1998 03:01:35 +0200 (MET DST)
Mime-Version: 1.0
To: Roger Marquis <marquis@roble.com>
Cc: freebsd-security@FreeBSD.ORG
Subject: Re: sshd
References: <Pine.SUN.3.96.980911195617.10501D-100000@roble.com>
Organization: University of Oslo, Department of Informatics
X-url: http://www.stud.ifi.uio.no/~dag-erli/
X-other-addresses: 'finger dag-erli@ifi.uio.no' for a list
X-disclaimer-1: The views expressed in this article are mine alone, and do
X-disclaimer-2: not necessarily coincide with those of any organisation or
X-disclaimer-3: company with which I am or have been affiliated.
X-Stop-Spam: http://www.cauce.org/
From: dag-erli@ifi.uio.no (Dag-Erling =?iso-8859-1?Q?Co=EFdan?=  =?iso-8859-1?Q?Sm=F8rgrav?= )
Date: 13 Sep 1998 03:01:34 +0200
In-Reply-To: Roger Marquis's message of "Fri, 11 Sep 1998 20:16:08 -0700 (PDT)"
Message-ID: <xzpbtokesgh.fsf@hvergelmir.ifi.uio.no>
Lines: 15
X-Mailer: Gnus v5.5/Emacs 19.34
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by hub.freebsd.org id SAA02495
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Roger Marquis <marquis@roble.com> writes:
> The recommended sshd startup method used to be /etc/rc*(/*), probably
> for historical reasons.  It may still be a good idea on slow CPUs,
> where it can take a while to generate a session key, or where
> inetd.conf isn't running, however, in my experience, sshd is much more
> reliably run from inetd.

"Much more reliable"? What's more reliable than 100%? Have you ever
experienced any problems running sshd from /usr/local/etc/rc.d/? I
haven't, and *all* boxes I control rely entirely on ssh for remote
access, and have inetd disabled.

DES
-- 
Dag-Erling Smørgrav - dag-erli@ifi.uio.no

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message