Date: Mon, 22 Jan 1996 16:37:20 -0800 (PST) From: obrien@cs.ucdavis.edu (David E. O'Brien) To: ports@FreeBSD.ORG, security@FreeBSD.ORG Subject: Re: ssh /etc config files location.. Message-ID: <9601230037.AA13736@toadflax.cs.ucdavis.edu> In-Reply-To: <199601221259.UAA04035@jhome.DIALix.COM> from "Peter Wemm" at Jan 22, 96 08:59:21 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> >>I am still somewhat disturbed with the location of some rather critical
> >>"per site" info from ssh in /usr/local/etc.. Specifically the ssh host
> >>secret keys, and the per-site config files.
> >
> >>This is (IMHO) rather dangerous. If you NFS mount /usr/local, this will
> >>screw you rather badly.
> >
> >>There are precedents against this too.. gated keeps it's config files in
> >>/etc.
> >
> >There are precedent _for_ this, tcp_wrapper uses /usr/local/etc.
Just because the tcp wrapper's porter picked this location doesn't make
it correct. In fact from looking at hier(7), I'd say most ports abuse
lib (where etc should be used) and man & etc (where share/* should be
used).
> True, but in the most likely case of having /usr/local shared (ie: a small
> group of machines) tcp_wrapper configs are most likely to be the same
> for all the hosts anyway. However, tcp_wrapper does not need to constantly
Agreed, all most hosts w/in the same local net have the same tcp_wrappers
setup.
> write to any files in /usr/local/etc like sshd has been configured to do.
If files are written suggests /var is the place for them then.
> >Using NFS for /usr/local/bin/{security_binaries} is big risk too
> >because they can be changes (like config files).
> >I don't see the point to move security-related configs to /etc
> >and _not_ to move security binaries from /usr/local.
It's a pratical nature. On most my previous sites, we read-only NFS
mounted most non-OS released files. Only admins had login's on the file
servers. Mostly because of disk space and simple administrative reasons.
I don't think you can agure that right or wrong, this is a typical
practice.
> I'm not worried so much about the config files, but I am worried about the
> run-time data generated by sshd that is written to the etcdir, and I'm also
> concerned about the critical public and private host keys. sshd_config and
> ssh_config could stay in /usr/local/etc for all I care. :-)
Agreed.
-- David (obrien@cs.ucdavis.edu)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9601230037.AA13736>