FreeBSD source tree https://cgit-dev.freebsd.org/src/atom?h=releng%2F4.5 2002-07-31T14:05:34Z 2002-07-31T14:05:34Z Jacques Vidrine nectar@FreeBSD.org 2002-07-31T14:05:34Z urn:sha1:4fe386b7feefe15cb4a8ab6f99551c119e397175 2001-12-14T15:23:50Z Ruslan Ermilov ru@FreeBSD.org 2001-12-14T15:23:50Z urn:sha1:ee7fd94b0a264adf078c34f8065f31a1608cccf1 2001-10-08T14:11:00Z Brian Feldman green@FreeBSD.org 2001-10-08T14:11:00Z urn:sha1:4f182b7dec33cde3624a74891c180c6e019ca385 2001-09-30T23:04:35Z Kris Kennaway kris@FreeBSD.org 2001-09-30T23:04:35Z urn:sha1:97b539880798c5941a8fec5467531533b105dd9a 2001-09-28T01:33:53Z Brian Feldman green@FreeBSD.org 2001-09-28T01:33:53Z urn:sha1:7b974c5b2f8afd9b94cc4e81337b3a596d1c485d The only difference between this and what's in -CURRENT is that the default /etc/ssh/ssh_config sets "Protocol 1,2" for all hosts. This can be overrided entirely in user ~/.ssh/config files, as always. 2001-08-16T10:34:30Z Ruslan Ermilov ru@FreeBSD.org 2001-08-16T10:34:30Z urn:sha1:259a82f06c8937460572692919493d85d66c60a7 Approved by: re 2001-07-16T03:30:08Z Peter Wemm peter@FreeBSD.org 2001-07-16T03:30:08Z urn:sha1:785940074db347bfe6d0b4c31a74f2c1188c0ac6 2001-07-04T23:24:42Z Kris Kennaway kris@FreeBSD.org 2001-07-04T23:24:42Z urn:sha1:2d9194bc64db3221589398c7c3d3224140636069 2001-05-30T20:46:48Z Nick Sayer nsayer@FreeBSD.org 2001-05-30T20:46:48Z urn:sha1:9c903a8b764a8b16c4208020b6ae98bff6d35e7e 1. Add PAM support to SRA. Includes adding telnetd to /etc/pam.conf and -lpam to the secure telnetd/telnet Makefiles. 2. Insist on secure tty before allowing root login. This should be replaced with a suitable PAM module at some point. 3. Make sure not to overflow the xuser/xpass buffers. Since they were malloc()ed (check for malloc failure and abort, too, btw) this was likely not exploitable, but it is best to be safe. Submitted by: kris Review timeout: security-officer 2001-05-24T12:20:03Z Mark Murray markm@FreeBSD.org 2001-05-24T12:20:03Z urn:sha1:16063c03bdb0a0c190841aadae10a6b874f44a42 hack.