From owner-freebsd-questions@FreeBSD.ORG Tue Sep 16 12:26:17 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5AD5B16A4B3 for ; Tue, 16 Sep 2003 12:26:17 -0700 (PDT) Received: from rwcrmhc13.comcast.net (rwcrmhc13.comcast.net [204.127.198.39]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5382743F75 for ; Tue, 16 Sep 2003 12:26:14 -0700 (PDT) (envelope-from freebsd-questions-local@be-well.no-ip.com) Received: from be-well.ilk.org (be-well.no-ip.com[66.30.200.37]) by comcast.net (rwcrmhc13) with ESMTP id <2003091619261301500eisb5e>; Tue, 16 Sep 2003 19:26:13 +0000 Received: from be-well.ilk.org (lowellg.ne.client2.attbi.com [66.30.200.37] (may be forged)) by be-well.ilk.org (8.12.9/8.12.9) with ESMTP id h8GJQCCo040246; Tue, 16 Sep 2003 15:26:12 -0400 (EDT) (envelope-from freebsd-questions-local@be-well.no-ip.com) Received: (from lowell@localhost) by be-well.ilk.org (8.12.9/8.12.6/Submit) id h8GJQ8e5040031; Tue, 16 Sep 2003 15:26:08 -0400 (EDT) X-Authentication-Warning: be-well.ilk.org: lowell set sender to freebsd-questions-local@be-well.ilk.org using -f Sender: lowell@be-well.no-ip.com To: Johan Paul References: <3F67392B.5010200@johanpaul.com> From: Lowell Gilbert Date: 16 Sep 2003 15:26:08 -0400 In-Reply-To: <3F67392B.5010200@johanpaul.com> Message-ID: <44u17cr0vj.fsf@be-well.ilk.org> Lines: 17 User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.3 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii cc: freebsd-questions@freebsd.org Subject: Re: Upgrading sshd? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Sep 2003 19:26:17 -0000 Johan Paul writes: > Refering to the latest sshd vurnability > (http://slashdot.org/articles/03/09/16/1327248.shtml?tid=126&tid=172) > I was thinking of upgradeing my sshd as well. So I cvsup'ed my system > (FBSD 4.8) and there seems to be a updated file for sshd. But how do I > upgrade sshd safly since when I type 'pkg_info |grep ssh' it return no > packages. I guess sshd is included somehow by the default install (??) > but how can I now upgrade it? I was thinking of portupgrade, but it > needs a package to upgrade... Right. openssh is part of the base system, and not normally installed as a package. There is a security advisory newly out on the usual FreeBSD mailing lists, and it gives instructions on fixing just this one problem, but it's probably better to update the whole system when you get a chance. [Note that this vulnerability does *not* give attackers an opportunity to run their code on your system.]