From a871a49684c3906412b353952df078fda5b50cda Mon Sep 17 00:00:00 2001
From: wiz <wiz@pkgsrc.org>
Date: Thu, 14 Dec 2000 11:55:03 +0000
Subject: Update to 1.1 because of a possible security problem:  The socket
 creation code in fshd was not paranoid enough.  There  were are at least two
 possible attacks:  - If a malicious user has symlinked /tmp/fshd-<UID> to
 another    file, fshd will chmod 0700 that file.  - A race condition made it
 possible for an attacker to create an    unsafe socket directory, so that the
 attacker can access an    fshd tunnel.  The attacker must alread have a local
 shell on the computer where  fsh or fshd is invoked. Other changes: New
 timeout option, fixed to work with openssh2, now also usable if you have to
 enter a password to connect, and some others.

---
 security/fsh/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'security/fsh/Makefile')

diff --git a/security/fsh/Makefile b/security/fsh/Makefile
index 26cccc7f1b5..1f023b3691e 100644
--- a/security/fsh/Makefile
+++ b/security/fsh/Makefile
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.1.1.1 2000/01/14 15:37:48 fredb Exp $
+# $NetBSD: Makefile,v 1.2 2000/12/14 11:55:03 wiz Exp $
 #
 
-DISTNAME=	fsh-1.0
+DISTNAME=	fsh-1.1
 CATEGORIES=	security net
 MASTER_SITES=	ftp://ftp.lysator.liu.se/pub/unix/fsh/ \
 		http://www.lysator.liu.se/fsh/
-- 
cgit v1.2.3