]> git.pld-linux.org Git - packages/openssh.git/commit
projects / packages / openssh.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9e3a949) | patch
do not lower ssh client security by default
authorTomasz Pala <gotar@pld-linux.org>
Tue, 23 Aug 2016 05:59:32 +0000 (07:59 +0200)
committerTomasz Pala <gotar@pld-linux.org>
Tue, 23 Aug 2016 05:59:32 +0000 (07:59 +0200)
commitae957f1bc3196e53edce28c17e1f35232638e733
treeee2683cff5f830522d0847c23b8604152eb60501tree | snapshot
parent9e3a949b2d71468ab2445931b407ec0d6f7a8a24commit | diff
do not lower ssh client security by default

ForwardX11Trusted might be enabled on command line by using -Y instead
of -X, so there's no real need for doing it system-wide(!) default.
Moreover, the rationale behind trusting remote party might be obsolete:
http://dailypackage.fedorabook.com/index.php?/archives/48-Wednesday-Why-Trusted-and-Untrusted-X11-Forwarding-with-SSH.html
Either way, trusting some potentially malicious (especially without
StrictHostKeyChecking) )remote side MUST be conscious decision.
openssh-config.patch diff | blob | blame | history
OpenSSH free Secure Shell (SSH) implementation
This page took 0.231893 seconds and 4 git commands to generate.