Date: Tue, 11 Feb 2003 19:44:57 -0800 From: BSD baby <bsd@hitmedia.com> To: freebsd-questions@freebsd.org Subject: OpenSSH security hole on FreeBSD? Message-ID: <20030211194457.A22618@mail.hitmedia.com>
next in thread | raw e-mail | index | archive | help
I install OpenSSH like this:
cd /usr/ports/security/openssh-portable
make -DOPENSSH_OVERWRITE_BASE install
That puts things here:
/usr/bin/ssh
/usr/sbin/sshd
/etc/ssh/sshd_config
BUT... it seems to be IGNORING the sshd_config!
TWO major security holes:
#1 - It won't let me turn off passwords
(PasswordAuthentication no)
#2 - It only requires I type the first 8 characters
of my password! (I use 16-character password.)
I don't have these problems on OpenBSD.
Any idea why they would be on FreeBSD?
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030211194457.A22618>