:I guess in general, that may be correct. But wouldn't you want some
:reassurance that your only "secure" connection to the machine is not
:tamered with? That is, if your machine is compromised, and the only
:way you can connect to it is via a trojaned service, then you're
:really hosed. I think ssh should be protected from this type of
:attack.
Well, lets see... what if someone modified /etc/ssh/config ? Or
what if someone added a command= directive to your public key in
~/.ssh/authorized_keys ? Or what if someone modified pam (which ssh
uses) ? Or what if someone changed the ldconfig path? etc etc etc.
So the answer is no.
:In any case, what about my other question? If I "schg" the ssh
:related executables and libs, will installworld croak or does it know
:to noschg all files first? I can't see that it does it even for the
:binaries that are schg in the system already (like rsh).
I've no idea on that one.
-Matt
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-stable" in the body of the message
