OpenSSH questions (a port alongside Apple's install of OpenSSH)
Daniel J. Luke
dluke at geeklair.net
Mon Jul 7 13:47:31 PDT 2008
On Jul 7, 2008, at 4:06 PM, Rainer Müller wrote:
> Tabitha McNerney wrote:
>> Daniel, thank you. That's great advice and am glad to know others
>> have
>> done this. Doesn't look to complicated but as always, its great to
>> have
>> community discussion about these things (especially since security is
>> such an important topic).
>
> I have openssh installed, but I only use the client from it. I am
> still
> using /usr/bin/sshd. This way I can be sure it is configured correctly
> and I don't see a great advantage from using a newer server version.
I used to run a self-built (and then later MacPorts built) sshd on my
server simply because it would get updated more frequently than the
Apple-supplied one (since I could re-build with any security patches
as soon as they were available).
It's a bit scary to do on a machine that doesn't have serial console
available in case there's a problem with the new sshd and/or one
forgets to do things in the right order.
--
Daniel J. Luke
+========================================================+
| *---------------- dluke at geeklair.net ----------------* |
| *-------------- http://www.geeklair.net -------------* |
+========================================================+
| Opinions expressed are mine and do not necessarily |
| reflect the opinions of my employer. |
+========================================================+
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 194 bytes
Desc: This is a digitally signed message part
Url : http://lists.macosforge.org/pipermail/macports-users/attachments/20080707/052966e1/attachment.bin
More information about the macports-users
mailing list