In regard to: New releases of ssh2 and ssh1, Sami Lehtinen said (at 4:14pm...:
>ChangeLog for ssh-1.2.27:
>
>--begin--
>Thu Apr 29 10:46:21 1999 Timo J. Rinne <[EMAIL PROTECTED]>
>
> * Replaced OSF1/C2 security support with more complete SIA
> (Security Integration Architecture).
Excellent.
> * Fixed potential buffer overflows.
Good.
> * Kerberos authentication disabled, if client is suid-root.
> This is the only way to avoid security problems that are
> in Kerberos rather than in ssh.
Ok, I'll bite. What's this all about? Does this apply to the recently
released Kerberos V 1.0.6 too, or is it previous versions of Kerberos V, or
are you talking about Kerberos 4?
> * sshd.c (login_permitted): Added support for locked accounts on
> AIX. Thanks to "Delius, Felix von"
> <[EMAIL PROTECTED]>.
Excellent.
Tim
--
Tim Mooney [EMAIL PROTECTED]
Information Technology Services (701) 231-1076 (Voice)
Room 242-J1, IACC Building (701) 231-8541 (Fax)
North Dakota State University, Fargo, ND 58105-5164
