sshd audit not happy with ssh1 and scp

John Baldwin jhb at freebsd.org
Sun Sep 17 12:45:27 EST 2006


On Saturday 16 September 2006 22:02, Darren Tucker wrote:
> On Sat, Sep 16, 2006 at 09:31:37AM -0400, John Baldwin wrote:
> > On Saturday 16 September 2006 05:23, Darren Tucker wrote:
> > > Thanks for the report.  FreeBSD is using audit support now?  Is it the
> > > debug driver, or are you using OpenBSM or something?
> > 
> > OpenBSM.  It's now in FreeBSD 6.x and BSM_AUDIT is enabled by default.
> 
> Cool.  Out of curiousity, did you have to modify the audit support in
> sshd, or did it work out of the box?

I have no idea.  I just upgraded to newer FreeBSD 6.x and started
getting the error messages in my logs. :)   Probably a better person
to ask about anything OpenBSM related in FreeBSD is rwatson at FreeBSD.org
or csjp at FreeBSD.org.
 
> > > You're right.  I think that should be probably be removed.
> > > 
> > > Does the following patch also resolve the problem for you?
> > 
> > Yes, the patch works great.  Thanks!  I assume you are going to commit
> > that to OpenSSH?  DES, can you import this as a vendor fix on the
> > vendor branch?
> 
> Yes, it has been committed and will be in 4.4p1.
> 
> Thanks again.

Thanks for the review and fix.

-- 
John Baldwin



More information about the openssh-unix-dev mailing list