Mailinglist Archive: opensuse-security (334 mails)

< Previous Next >
Re: [suse-security] Portable OpenSSH Security Advisory: sshpam.adv
  • From: Simon Oliver <simon.oliver@xxxxxxxxxxx>
  • Date: Wed, 24 Sep 2003 12:50:59 +0100
  • Message-id: <3F718523.30400@xxxxxxxxxxx>

Calling PAM routines is not suitable if not running as root. It just doesn't work.
So the PAMAuthenticationViaKbdInt will not work?

Independently from hosts.allow, access can be restricted in sshd_config,
Is that via the AllowUsers option? Would this help protect against the current security vulnerabilities? I ask, because I have some machines that are running an older sshd that does not have privsep and is not compiled with libwrap support.

Thanks for your advice

--
Simon Oliver


< Previous Next >
Follow Ups