patch for security/openssh-portable
jhell at DataIX.net
Wed Jan 13 14:14:43 UTC 2010
On Wed, 13 Jan 2010 09:03, 000.fbsd@ wrote:
> Denny Lin wrote:
>>>> Probably you want VersionAddendum option in sshd_config?
>>> To my understanding and my last tests VersionAddendum and is only a
>>> Addendum or did not work which spurred me to patch up the Makefile in the
>>> first place.
>> I put VersionAddendum into sshd_config (with nothing trailing behind it),
>> and it works as expected:
>> telnet foo 22
>> Trying 192.168.0.1...
>> Connected to foo
>> Escape character is '^]'.
>> I'm using OpenSSH from base, but it should be the same with ports.
> I am not sure, but I think VersionAddendum is option available only in base
> SSH, not in portable from ports.
That's correct as far as I have seen so far. Personally I think that since
openssh-portable is in ports why worry about a VersionAddendum at all and
just patch it with the patch I submitted. Seems like a more secure option
but that's only me.
More information about the freebsd-ports