[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] openssh-3.5p1-107 tunneling problems



On Wednesday 24 September 2003 04:00, Armin Schoech wrote:
> But the default with the new rpm is that priviledge separation is
> disabled, i.d. the process handling the socket and taking care of the
> tunneling is running as root.

Was this designed this way? and Is there a reason for it?
It looks like a major security screw-up to me...
-- 
_____________________________________
John Andersen

-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here