Do you mean that the SSH client program should set those? It'd be trivial
to cause the client to transmit whatever was desired for those variables,
so they couldn't be used for security checks by the server.
But the SSH server setting those variables when it fires up the user's
shell, that could have some interesting applications where security isn't
a major deal.
--
Gregor Mosheh
[EMAIL PROTECTED]
Systems Admin, Humboldt Internet
707.825.4638
On Fri, 7 Jul 2000, Noel L Yap wrote:
> IMHO, SSH should set certain environment variables (ie REMOTE_USER, REMOTE_HOST,
> etc) so the server (the machine you're SSH'ing to) can perform whatever checks
> it wishes. Would such an enhancement adversely affect security (other than the
> standard "It'll make the software more complicated" response)?
>
> Noel
>
>
>
>
> [EMAIL PROTECTED] on 2000.06.20 20:16:49
>
> To: [EMAIL PROTECTED]
> cc: [EMAIL PROTECTED] (bcc: Noel L Yap)
> Subject: permitting root logins by net/mask pairs?
>
>
>
>
>
> Hi,
>
> I know this feature hasn't been implemented in any ssh version so far. Does
> anyone else think it is useful enough to make it into a future release? If so,
> can it? It still seems like a very useful feature to me.
>
> Thanks,
> -chris
>
> I once wrote:
> > Does a feature exist in ssh1 or ssh2 that enable specification of net/mask
> > pairs for permitting root logins?
>
>
>
>
>
>
>
> This communication is for informational purposes only. It is not intended as
> an offer or solicitation for the purchase or sale of any financial instrument
> or as an official confirmation of any transaction. All market prices, data
> and other information are not warranted as to completeness or accuracy and
> are subject to change without notice. Any comments or statements made herein
> do not necessarily reflect those of J.P. Morgan & Co. Incorporated, its
> subsidiaries and affiliates.
>
>
