Subject: Re: ssh
To: Michael Graff <explorer@flame.org>
From: Peter Svensson <petersv@df.lth.se>
List: current-users
Date: 08/17/1996 00:01:11
> John M Vinopal <banshee@gabriella.abattoir.com> writes:
> > Any tips on install?
>
> Yes. After you make install, make ssh non-setuid. It will still work
> just fine, and will have one less possible problem in the security
> world.
Unless you want to replace rsh/rlogin with ssh. You can only use the
one-key-per-person mode if ssh is not setuid. To allow one computer to trust
the credentials of users from another they must run ssh suid, so it can
allocate a low port (<1024) and read the ssh_host_key.
Peter