[ale] ssh remote root exploit :-(

David Bronson dbron at roman.net
Tue Jun 25 18:04:08 EDT 2002


That is my understanding - But only briefly during logins. I don't think
you will typically see this user running processes.

David

-----Original Message-----
From: John [mailto:jcouncilman at knology.net] 
To: ale at ale.org
Sent: Tuesday, June 25, 2002 5:58 PM
To: 'John Mills'; 'Stuffed Crust'
Cc: ale at ale.org
Subject: RE: [ale] ssh remote root exploit :-(

Sorry, but Is the UsePrivilegeSeparation option supposed to spawn SSH as
a lower provileged user such as the way apache does, or not?


John

-----Original Message-----
From: John Mills [mailto:jmmills at telocity.com] 
To: ale at ale.org
Sent: Tuesday, June 25, 2002 4:34 PM
To: Stuffed Crust
Cc: ale at ale.org
Subject: Re: [ale] ssh remote root exploit :-(


Pizza -

On Tue, 25 Jun 2002, Stuffed Crust wrote:

> It is worth mentioning that as it stands, 2.2 kernels will not work 
> with openssh 3.3 unless you disable compression.
                                 ???????????
How do I do that?

TIA

 - John Mills


---
This message has been sent through the ALE general discussion list. See
http://www.ale.org/mailing-lists.shtml for more info. Problems should be

sent to listmaster at ale dot org.



---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems
should be 
sent to listmaster at ale dot org.




---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.






More information about the Ale mailing list