OpenSSH/scp ->> F-Secure SSH server Problems
mouring at etoh.eviladmin.org
mouring at etoh.eviladmin.org
Thu Mar 15 11:41:39 EST 2001
On Wed, 14 Mar 2001, Greg A. Woods wrote:
[..]
> > Or are you suggesting that if OpenBSD connects to Solaris that I should
> > run a different sftp-server then if Linux connects to Solaris?
>
> IMNSHO that should be up to the client, but restricted by the server
> administrator.
>
IMNSHO it's up to the administrator and not the connecting client. But
this is local policy. OpenSSH's subsystems honor $PATH. So you can have
it your way, and I can have it my way. If others don't honor it then
complain to them.
> > I don't get your arguments. I personally would rather state where system
> > services are instead of sshd randomly guessing where thing
> > are.
>
> I agree, but you've missed the fact that the client hard-codes the
> service name, leading to either total chaos, or at best IANA mediated
> chaos.
>
By the fact no one is requiring you to register your program name with
an IANA type group you can still have pure chaos. I write a program call
'Foo' that uses SSH to call 'Bar'. You write a program call 'Bar' and
install it and it happens to fall before my program in the path. Thus,
chaos.
So this is kinda a strawman argument.
- Ben
More information about the openssh-unix-dev
mailing list