On Sun, 27 Feb 2000, Theo de Raadt wrote: > > alias ssh="ssh -x" > > Earlier, bugtraq was told that all ssh versions including openssh > automatically tunnel X. > > This is not correct. openssh has that turned off by default. Theo, I suspect that some clarification on your point is required, as it is accurate only as of a recent commit to the OpenBSD CVS source repository (Mon, 28 Feb 2000 12:52:01 -0700 (MST)). For reference, I have attached the cvs repo commit message. Users of OpenBSD may want to update to the latest version of these files to avoid the security risks associated with the poor OpenSSH default setting. Of course, this applies to all other consumers of OpenSSH who have not updated their configurations. Date: Mon, 28 Feb 2000 12:52:01 -0700 (MST) From: Markus Friedl <markusat_private> To: source-changesat_private Subject: CVS: cvs.openbsd.org: src Reply-To: Markus Friedl <markusat_private> CVSROOT: /cvs Module name: src Changes by: markusat_private 2000/02/28 12:51:59 Modified files: usr.bin/ssh : ssh.1 ssh.c readconf.c Log message: turn off x11-fwd for the client, too.
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:38:23 PDT