Dear SSH-ers I loaded a test setup on 2 solaris 2.6 machines with openssh-2.2.0p1 and openssl-0.9.5a When I try to connect I get: % ssh remotemachine Couldn't stat random seed file "/home/ian/.ssh/prng_seed": Permission denied % ls -l /home/ian/.ssh/prng_seed -rw------- 1 ian staff 1024 Sep 19 12:03 /home/ian/.ssh/prng_seed Although ssh is suid to root, this file is still readable. I notice in the source code, around line 526 of entropy.c is says: /* FIXME raceable: eg replace seed between this stat and subsequent open */ Am I seeing this race or is it something more obvious that I'm missing? Many thanks Ian -- Ian Thurlbeck http://www.stams.strath.ac.uk/ Statistics and Modelling Science, University of Strathclyde Livingstone Tower, 26 Richmond Street, Glasgow, UK, G1 1XH Tel: +44 (0)141 548 3667 Fax: +44 (0)141 552 2079
