From sec@ice.42.org  Wed Jul 17 02:40:04 2002
Return-Path: <sec@ice.42.org>
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id CB24537B400
	for <FreeBSD-gnats-submit@freebsd.org>; Wed, 17 Jul 2002 02:40:04 -0700 (PDT)
Received: from ice.42.org (ice.42.org [194.246.250.222])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 291A043E58
	for <FreeBSD-gnats-submit@freebsd.org>; Wed, 17 Jul 2002 02:40:04 -0700 (PDT)
	(envelope-from sec@ice.42.org)
Received: by ice.42.org (Postfix, from userid 1000)
	id 47CBA59A; Wed, 17 Jul 2002 11:40:02 +0200 (CEST)
Message-Id: <20020717094002.47CBA59A@ice.42.org>
Date: Wed, 17 Jul 2002 11:40:02 +0200 (CEST)
From: Stefan `Sec` Zehl <sec@ice.42.org>
Reply-To: Stefan `Sec` Zehl <sec@ice.42.org>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: ENDABLE_SUID_SSH no longer works
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         40683
>Category:       bin
>Synopsis:       ENDABLE_SUID_SSH no longer works
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    des
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Jul 17 02:50:01 PDT 2002
>Closed-Date:    Wed Jul 17 10:21:27 PDT 2002
>Last-Modified:  Wed Jul 17 10:21:27 PDT 2002
>Originator:     Stefan `Sec` Zehl
>Release:        FreeBSD 4.6-STABLE i386
>Organization:
>Environment:
System: FreeBSD ice 4.6-STABLE FreeBSD 4.6-STABLE #14: Sat Jun 22 20:31:41 CEST 2002 root@ice:/usr/export/obj/usr/export/src/sys/ICE i386

4-STABLE cvsupped and built yesterday

	
>Description:

/etc/defaults/make.conf contains the following line:

# To enable installing ssh(1) with the setuid bit turned on
#ENABLE_SUID_SSH=	true

this option no longer works.

This is needed for example for RHostsRSAAuthentication.

>How-To-Repeat:

echo "ENABLE_SUID_SSH=   true" >>/etc/make.conf
cd /usr/src;make world
ls -l /usr/bin/ssh

see that there is no suid bit set.

	
>Fix:

should be a one-liner in /usr/src/usr.bin/ssh/Makefile
	


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->des 
Responsible-Changed-By: dwmalone 
Responsible-Changed-When: Wed Jul 17 09:23:40 PDT 2002 
Responsible-Changed-Why:  
DES is looking after OpenSSH. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=40683 

From: Dag-Erling Smorgrav <des@ofug.org>
To: freebsd-gnats-submit@freebsd.org
Cc:  
Subject: Re: bin/40683: ENDABLE_SUID_SSH no longer works
Date: 17 Jul 2002 19:15:33 +0200

 man ssh-keysign
 
 DES
 -- 
 Dag-Erling Smorgrav - des@ofug.org
State-Changed-From-To: open->closed 
State-Changed-By: des 
State-Changed-When: Wed Jul 17 10:21:25 PDT 2002 
State-Changed-Why:  
Not a bug. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=40683 
>Unformatted:
