by mail.netbsd.org with SMTP; 19 Oct 2000 05:34:05 -0000
	by noc.untraceable.net (8.11.1/8.11.1/bonk!) id e9J5XnS07846;
	Thu, 19 Oct 2000 01:33:49 -0400 (EDT)
Date: Thu, 19 Oct 2000 01:33:48 -0400
From: Andrew Brown <atatat@atatdot.net>
To: matthew green <mrg@eterna.com.au>
Cc: thorpej@zembu.com, cjs@cynic.net, tech-security@netbsd.org
Subject: Re: setuid ssh
Message-ID: <20001019013348.A7840@noc.untraceable.net>
Reply-To: Andrew Brown <atatat@atatdot.net>
References: <20001018080504.A290@dr-evil.shagadelic.org> <28588.971932756@eterna.com.au>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <28588.971932756@eterna.com.au>; from mrg@eterna.com.au on Thu, Oct 19, 2000 at 04:19:16PM +1100
Return-Receipt-To: receipts@daemon.org

>   PLEASE back out the change that de-setuid's ssh -- some people really
>   do use rhosts/rsa authentication legitimately.
>
>and some people legitimately *really* don't want ssh installed setuid.
>
>that set would include me.

just as an aside to this thread, what is the complete set of things
for which ssh needs to be suid root?

(1) privileged port for AUTH_RHOST and AUTH_RHOSTS_RSA
(2) reading /etc/ssh_host_key for AUTH_RHOSTS_RSA

anything else?

-- 
|-----< "CODE WARRIOR" >-----|
codewarrior@daemon.org             * "ah!  i see you have the internet
twofsonet@graffiti.com (Andrew Brown)                that goes *ping*!"
andrew@crossbar.com       * "information is power -- share the wealth."