Bug#211334: Option to have ssh client installed setuid root

To: submit@bugs.debian.org
Subject: Bug#211334: Option to have ssh client installed setuid root
From: Peter Harvey <pah06@uow.edu.au>
Date: Wed, 17 Sep 2003 14:22:56 +1000
Message-id: <[🔎] 1063772576.901.8.camel@localhost>
Reply-to: Peter Harvey <pah06@uow.edu.au>, 211334@bugs.debian.org

Package: ssh
Version: 3.4p1-1.1

It would be nice if there was a debconf entry for setting the ssh client
to be setuid root. This is required for hostbased authentication, and it
is annoying to remember this detail when there is an upgrade for ssh
(like the recent security patch).

>From http://www.openssh.org/faq.html#2.2 :

[For] hostbased authentication (in protocol version 2) the ssh client
needs to access the private host key in order to authenticate the client
machine to the server. So the setuid root bit is needed for these
authentication methods, too. You can safely remove the setuid bit from
the ssh executable if you don't want to use these authentication
methods.

Thanks, and great work btw,
Peter Harvey.

Reply to:

Follow-Ups:
- Bug#211334: Option to have ssh client installed setuid root
  - From: Colin Watson <cjwatson@debian.org>
- Bug#211334: marked as done (Option to have ssh client installed setuid root)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Processed: Re: Bug#211305: sshd: -7 is royally hosed
Next by Date: Processed: Re: Bug#211305: sshd: -7 is royally hosed
Previous by thread: Processed: Re: Bug#211305: sshd: -7 is royally hosed
Next by thread: Bug#211334: Option to have ssh client installed setuid root
Index(es):
- Date
- Thread