ssh and lastlog

To: debian-security@lists.debian.org
Subject: ssh and lastlog
From: "Thomas Gebhardt" <gebhardt@HRZ.Uni-Marburg.DE>
Date: Tue, 07 Jan 2003 16:23:25 +0100
Message-id: <[🔎] 200301071523.h07FNPt3012048@pcrz175.hrz.uni-marburg.de>

Hi,

as far as I can see, one can get at least 2 out of the following 3 items:

* sshd Privilege Separation

* /var/log/wtmp not world readable

* users get a lastlog message at ssh login

Am I right here?

One could also enable the sshd UseLogin option to get the login
lastlog message, but I'm not shure about the security implications.
This would also break X11 forwarding.

Thanks for any comment.

Cheers, Thomas

Reply to:

Follow-Ups:
- Re: ssh and lastlog
  - From: Johannes Franken <jfranken@jfranken.de>

Prev by Date: FW: Updated OPENSSL package for Debian?
Next by Date: Re: FW: Updated OPENSSL package for Debian?
Previous by thread: Re: Can this be considered a DoS-attack?
Next by thread: Re: ssh and lastlog
Index(es):
- Date
- Thread