> the exploit for ssh1 was trivial - point the KRB5CCNAME environment
> variable to someone else's ticket file, and the setuid root ssh1 would
> happily use those credentials for authentication.
And if you don't install ssh1 setuid root since you don't need the
r-stuff that was the only thing that required it...?
--
Atro Tossavainen (Mr.), Systems Analyst - email at URL - +358-9-850-111-86
Institute of Biotechnology, University of Helsinki, Finland
My opinions may freely be shared by my employers if they want to.
< URL : http : / / www . iki . fi / atro . tossavainen / >
