[ Date Index ][
Thread Index ]
[ <= Previous by date /
thread ]
[ Next by date /
thread => ]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Wednesday 26 June 2002 12:23 am, Simon Waters wrote:
Rats do you remember what they said about mmap? Or better still where they said it? Here is the server watching me log back in from an unpatched box, to my nice shiny new sshd.
try turning off compression, especially if you're using a 2.2 kernel. There was some stuff about it in the debian security announcement...
* compression does not work on all operating systems since the code relies on specific mmap features
however, solar designer has apparently released a patch for 2.2 kernels - dunno where though! ;)
<doh> - for those catching up privsep has it's own README in the new source tar ball, you have to make an empty chroot jail and user.....yawn.
Make sure you enable PrivelegeSeperation in sshd_config, too ;) ~ theo - -- Theo Zourzouvillys http://zozo.org.uk/ FORTUNE PROVIDES QUESTIONS FOR THE GREAT ANSWERS: #21 A: Dr. Livingston I. Presume. Q: What's Dr. Presume's full name? -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE9GRKQ448CrwpTn6YRAnQeAKCUjIS3hFh97Sp7Q5VfIU8Ae3PkYgCfRS4A elv0puUFlnmFivVrIS34b90= =y+oO -----END PGP SIGNATURE----- -- The Mailing List for the Devon & Cornwall LUG Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the message body to unsubscribe.