Strange interaction of sftp and protocol version 1
mouring at etoh.eviladmin.org
mouring at etoh.eviladmin.org
Tue May 22 02:59:15 EST 2001
On Mon, 21 May 2001, Gordon Rowell wrote:
> On Mon, May 21, 2001 at 10:27:36PM +1000, Damien Miller <djm at mindrot.org> wrote:
> > [...]
> > If your goal is to prevent sftp access, then delete or rename the
> > sftp binary.
>
> No such goal, just a surprising result (to me) that allowing protocol
> version 1 enabled sftp regardless of the configuration.
>
> Which raises the issue that the default path to subsystems is
> /usr/libexec, whereas they are installed in (under Linux at least) in
> /usr/libexec/openssh
>
I'm not following. Doing:
./configure --prefix=/opt/openssh --with-pam
sftp-server is put into /opt/openssh/libexec/ and sftp client points
there also. If your upgrading from an older version your sshd_config may
slighly out of date.
- Ben
More information about the openssh-unix-dev
mailing list