FreeBSD Security Advisory FreeBSD-SA-03:12.openssh
Chuck Swiger
cswiger at mac.com
Wed Sep 17 12:55:59 PDT 2003
Matthew Dillon wrote:
[ ... ]
> :This can be dangerous if you are ssh'ed in, and the restart kills your
> :connection rather than the daemon.
>
> All the restart target does is basically kill the pid using the pid file
> and then restart the daemon, so it is no more dangerous then the below.
It's good that the FreeBSD script does not use 'killall' (for instance), but not
every SysV sshd script is as sensible. Of course, if you argued that a NG sshd
RC script might involve dependencies which affected other processes, you'd have
a point. :-)
--
-Chuck
More information about the freebsd-security
mailing list