OpenSSH questions (a port alongside Apple's install of OpenSSH)

Tabitha McNerney tabithamc at gmail.com
Tue Jul 8 10:05:41 PDT 2008 

On Mon, Jul 7, 2008 at 10:47 AM, Daniel J. Luke <dluke at geeklair.net> wrote:

> On Jul 7, 2008, at 4:06 PM, Rainer Müller wrote:
>
>> Tabitha McNerney wrote:
>>
>>> Daniel, thank you. That's great advice and am glad to know others have
>>> done this. Doesn't look to complicated but as always, its great to have
>>> community discussion about these things (especially since security is
>>> such an important topic).
>>>
>>
>> I have openssh installed, but I only use the client from it. I am still
>> using /usr/bin/sshd. This way I can be sure it is configured correctly
>> and I don't see a great advantage from using a newer server version.
>>
>
>
> I used to run a self-built (and then later MacPorts built) sshd on my
> server simply because it would get updated more frequently than the
> Apple-supplied one (since I could re-build with any security patches as soon
> as they were available).
>
> It's a bit scary to do on a machine that doesn't have serial console
> available in case there's a problem with the new sshd and/or one forgets to
> do things in the right order.


That brings up a great point. At our work, we have never used the DB9 RS-232
serial port on our Xserve. This is a great reason to figure out how to do so
and what steps would be required to restore an Xserve if we somehow screwed
up OpenSSH on a machine. Thanks for triggering such an idea! For Macs that
don't have DB9 RS-232 ports, I assume its possible to establish a serial
console connection over a USB port, true?

T.M.

P.S. Daniel, sorry for sending this email to you twice, I forgot the first
time to select "Reply All" to include the entire mailing list and Rainer


>
>
> --
> Daniel J. Luke
> +========================================================+
> | *---------------- dluke at geeklair.net ----------------* |
> | *-------------- http://www.geeklair.net -------------* |
> +========================================================+
> |   Opinions expressed are mine and do not necessarily   |
> |          reflect the opinions of my employer.          |
> +========================================================+
>
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.macosforge.org/pipermail/macports-users/attachments/20080708/114d03b0/attachment.html

More information about the macports-users mailing list