[tech] morwong (inc. ssh)
Grahame Bowland
grahame at ucc.gu.uwa.edu.au
Fri Nov 1 14:22:47 WST 2002
On Fri, Nov 01, 2002 at 02:15:06PM +0800, Nick Bannon wrote:
> On Fri, Nov 01, 2002 at 01:39:12PM +0800, James Andrewartha wrote:
> > No idea, but I turned ssh X forwarding on, and updated the init.d
> > script. prngd was running from ages ago, when I last tried to install a
> > recent openssh. Do we want to bother with privsep on morwong?
>
> If it works, we may as well. Instructions are in README.privsep .
>
> A general request to anyone upgrading or reinstalling machines - please
> remember to backup and reuse the SSH host keys to minimise the
> "WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!"'s. I've mostly
> stopped saying "yes" blindly to those - you just can't trust the
> network these days.
>
> To cut down on confusion, I'm planning to run this command at 3pm ;
>
> morwong# mv /etc/ssh* /usr/local/etc/bkp20021101/_etc/
Don't bother with privilege seperation, it takes a bit of work to
make it go on the different unixes and this hasn't been done for
Tru64. I don't think it's worth the effort.
(It didn't work when I tried it)
More information about the tech
mailing list