Bug#211334: Option to have ssh client installed setuid root
On Thu, 2003-09-18 at 09:25, Colin Watson wrote:
> If you make ssh-keysign SUID, you will be able to use SSH's Protocol 2
> host-based authentication.
>
> > >From http://www.openssh.org/faq.html#2.2 :
>
> I think that's out of date. Note that ssh-keysign was broken in
> 1:3.4p1-1.1, but this is fixed in 1:3.4p1-1.woody.2.
>
All I can say is that hostbased authentication refused to work for me
with fairly recent packages, even with ssh-keysign suid. If I set ssh to
suid root it immediately started working.
You are right though: the latest packages (1:3.4p1-1.woody.2) work
properly without having ssh suid. So this bug is now dead.
Thanks,
Peter Harvey.
Reply to: