Date: Thu, 3 Jun 1999 11:09:57 -0700 From: Matthew Hunt <mph@astro.caltech.edu> To: "Jan B. Koum " <jkb@best.com> Cc: Bill Fumerola <billf@jade.chc-chimes.com>, Unknow User <kernel@tdnet.com.br>, freebsd-security@freebsd.org Subject: Re: SSH2 (in FreeBSD-Questions) Message-ID: <19990603110957.C59847@wopr.caltech.edu> In-Reply-To: <19990603110213.B19566@best.com>; from Jan B. Koum on Thu, Jun 03, 1999 at 11:02:14AM -0700 References: <375690E3.4BC9BB94@tdnet.com.br> <Pine.BSF.3.96.990603133742.8776C-100000@jade.chc-chimes.com> <19990603110213.B19566@best.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Jun 03, 1999 at 11:02:14AM -0700, Jan B. Koum wrote: > Ports will install ssh client suid, where I am 99% sure you don't > need the client to be suid. I always do '--disable-suid-ssh' when rolling > out new ssh. Why does it build SUID as shipped? What are the implications of installing it otherwise? The port can certainly be changed, if the Right Way is with --disable-suid-ssh. In any case, anyone can add --disable-suid-ssh to the CONFIGURE_ARGS line of the port Makefile, and still derive the benefit of the login.conf patches, pkg_delete, and so forth. It seems that the original poster isn't even willing to just apply the appropriate patch from the port to solve his problem. I really do not understand the confusion that is at work here. Matt -- Matthew Hunt <mph@astro.caltech.edu> * Inertia is a property http://www.pobox.com/~mph/ * of matter. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990603110957.C59847>