On Wed, 2003-07-23 at 17:03, Brian K. Jones wrote:
> Hi all.
>
> Hope someone can help me figure this out, as I'm kinda new at reading
> SPEC files and such.
>
> I'm simply wondering if privelege separation is actually enabled in the
> Redhat-supplied openssh-server package by default, or if there's a way
> to enable it otherwise. I thought this had to be enabled at build time,
> but I could certainly be wrong.
>
> Thanks for any insight.
> brian.
>
Looking at the specfile gives only a vague hint to priviledge
separation: a user and group id for sshd to run under.
In the SRPM/openssh.tar.gz file there's a README.privsep file which
contains info about privilege separation stating:
Privilege separation is now enabled by default; see the
UsePrivilegeSeparation option in sshd_config(5).
The option is not turned off in my sshd_config file and the non-root
user and group were created by the rpm, so I'd say it's enabled.
Klaasjan
--
Shrike-list mailing list
Shrike-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/shrike-list
