hackers celebrate this day: openssh drops security! was: Re: heads up: tcpwrappers support going away

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On 23 April 2014 21:43, mancha <mancha1@xxxxxxxx> wrote:
> On Wed, Apr 23, 2014 at 12:26:58PM -0700, Iain Morgan wrote:
>> A slightly better solution would be a PAM module that uses the same
>> syntax as libwrap. Possibly someone has already written such a module.
>
> Possibly, but only for platforms which use for PAM.

Pam is executed so late in the chain that any possible security issue
has long been exposed to half of China and the KGB.

Hackers will celebrate this day - openssh drops security.
Time to move on to ssh.com's ssh variant.

Seriously - the discussion is stupid: If tcpwrappers support gets
removed than a replacement is required which is executed at the same
location and not much later in the code.

Ced
-- 
Cedric Blancher <cedric.blancher@xxxxxxxxx>
Institute Pasteur
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev




[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux