You're right...it did come off a little bit vague.

Either way, though, I'm not aware of any buffer overflows or exploits
that could cause the current version of OpenSSh to grant a rootshell,
so the individual SSH sessions being owned by root shouldn't be a
problem, at this point.

On Tue, 5 Dec 2000 14:51:27 -0600 (CST), Nitebirdz wrote:

>On Tue, 5 Dec 2000, Mike Burger wrote:
>
>> The SSH daemon needs to run as root, in order to bind itself to the port
>> (any port below 1000 needs to be accessed as root).
>> 
>> The initial SSHD will spawn sshd sessions as needed...upon connection.
>> 
>
>However, those other spawned processes are also owned by root.  I just 
>needed to point that out, because your message sort of gives the impression
>that it would work like Apache and the spawned processes would be owned
>by user nobody, wchich is not the case.
>
>Anyway, Mike is right though.  In order for the daemon to bind to port 22
>it needs to have root access to it.
>
>
>
>------------------------------------------------------
>Nitebirdz
>------------------------------------------------------
>Thus spake the master programmer:
>"You can demonstrate a program for a corporate
>executive, but you can't make him computer literate." 
>
>
>
>_______________________________________________
>Redhat-list mailing list
>[EMAIL PROTECTED]
>https://listman.redhat.com/mailman/listinfo/redhat-list
>





_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list

Reply via email to