OpenSSH Security Advisory: xauth command injection
Dag-Erling Smørgrav
des at des.no
Sat Mar 12 01:15:03 AEDT 2016
Nico Kadel-Garcia <nkadel at gmail.com> writes:
> Dag-Erling Smørgrav <des at des.no> writes:
> > Some OS distributions (FreeBSD, RHEL / CentOS, probably Fedora) have
> > X11Forwarding enabled by default.
> I'm not sure I see your point.
With X11Forwarding off by default, one would assume that it is only
enabled on a case-by-case basis for users or groups who already have the
necessary privileges to run arbitrary code on the server and therefore
have nothing to gain from exploiting this bug. With X11Forwarding on by
default, it might remain enabled for e.g. gitolite users.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the openssh-unix-dev
mailing list