Vulnerability Development mailing list archives

Re: OpenSSh 3.4p1 PrivilegeSerparation experiment

From: Philipp Buehler <lists () fips de>
Date: Sat, 29 Jun 2002 10:55:42 +0200

On 29/06/2002, HAYDEN  AARON N. <Aaron.Hayden () Colorado EDU> wrote To vuln-dev () securityfocus com:

    o   you expect disconnection from an ssh'd tty when root sends sshd the
        signal to hangup.


Wrong.

A bug?:
       No, I do not think so.   
       But is this the behavior you would expect?


Yes, the spinoffs are not LISTENing (as you stated), so what's the
point in rereading a config being used for LISTEN sshds?

See the same behaviour in Apache privilege seperation about
graceful restarts. The spinoff httpds do not care for the
new configuration aswell.

Altogether I don't see where this is a vuln-dev?

ciao
-- 
Philipp Buehler, aka fips | sysfive.com GmbH | BOfH | NUCH | <double-p> 

#1: Break the clue barrier!
#2: Already had buzzword confuseritis ?

Current thread:

OpenSSh 3.4p1 PrivilegeSerparation experiment HAYDEN AARON N. (Jun 28)
- Re: OpenSSh 3.4p1 PrivilegeSerparation experiment Brian Hatch (Jun 28)
- Re: OpenSSh 3.4p1 PrivilegeSerparation experiment Philipp Buehler (Jun 29)
- Re: OpenSSh 3.4p1 PrivilegeSerparation experiment Aaron . Hayden (Jun 29)
  - Re: OpenSSh 3.4p1 PrivilegeSerparation experiment strange (Jun 29)