[scponly] scponly 4.2 released (IMPORTANT SECURITY FIXES)
user
user at dhp.com
Thu Dec 22 10:51:52 EST 2005
On Wed, 21 Dec 2005, wby oblyr wrote:
> Problem Description:
> If ANY the following conditions are true, administrators using scponly-4.1 or older may be at risk of a local
> privilege escalation exploit:
>
> - scp compatibility is enabled
> - rsync compatibility is enabled
Ok, at first I thought this was a typo, and you really meant "WinSCP" for
that first one, not "scp".
> Fix:
> The new release of scponly-4.2:
> - uses getopt to process the arguments to scp and rsync.
> - does not support rsync or scp by default
So ... do I understand correctly - the scponly shell does not support scp
by default anymore ?
If the default does not support scp and rsync, does that mean 0% of all
scponly admins will ever install the default ? What would you do with the
default install ?
More information about the scponly
mailing list