2016-12-26 20:16 GMT+02:00 Adrian Sevcenco <[email protected]>:
> pe de alta parte daca ma uit la procese nu vad decat asta (EL6): > ps -C sshd --forest -o pid,ppid,user,args= > PID PPID USER > 3795 1 root /usr/sbin/sshd > 32725 3795 root \_ sshd: adrian [priv] > 32727 32725 adrian \_ sshd: adrian@pts/0 > > si ca default vad asta (EL6) : > UsePrivilegeSeparation > Specifies whether sshd(8) separates privileges by creating an unprivileged > child process to deal with incoming network traffic. After successful > authentication, another process will be created that has the privilege of > the authenticated user. The goal of privilege separation is to prevent > privilege escalation by containing any corruption within the unprivileged > processes. The default is “yes”. > > in plus EL7 si fedora au default-ul "sandbox" (incepind cu sshd-ul 5.9) > https://www.openssh.com/txt/release-5.9 > > so .. nu stiu ce sa zic... Eu zic sa faci cum stii tu mai bine. _______________________________________________ RLUG mailing list [email protected] http://lists.lug.ro/mailman/listinfo/rlug
