OpenSSH 3.5p1
I'm currently putting together packages for 3.5p1. The Debian patches
forward-port without too much trouble, etc. However, is anyone in a
position to explain briefly what this "install ssh-agent setgid to avoid
ptrace attacks" thing is about?
Also, although it appears to drop privileges immediately and not regain
them, will it provide additional security to use a special-purpose
group? The Red Hat packages in OpenSSH CVS use group nobody.
Thanks,
--
Colin Watson [cjwatson@flatline.org.uk]
Reply to: