Bug in all versions of OpenSSH
Markus Friedl
markus at openbsd.org
Mon Apr 8 21:27:26 EST 2002
On Mon, Apr 08, 2002 at 04:23:31AM -0700, Dan Kaminsky wrote:
> Maybe we can unify last in some manner. Hmm.
In openssh sshd's we try to print one line per
authetication (not multiple, as early versions did),
so it's easy to use this information)
> Is the ten session limit related to the protocol or the implementation?
random implementation/compite time limit.
> For that matter, is there anything that will prevent arbitrary processes
> from contacting the privsep'd process and accessing it as they see fit?
hm, how can arbitrary user processes access a socketpair?
More information about the openssh-unix-dev
mailing list