===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata43.html,v
retrieving revision 1.1
retrieving revision 1.2
diff -c -r1.1 -r1.2
*** www/errata43.html 2008/03/09 21:05:00 1.1
--- www/errata43.html 2008/03/31 01:40:47 1.2
***************
*** 83,89 ****
--- 83,97 ----
! -
! 001: SECURITY FIX: March 30, 2008 All architectures
! sshd(8) would execute ~/.ssh/rc even when a sshd_config(5) ForceCommand
! directive was in effect, allowing users with write access to this file to
! execute arbitrary commands. This behaviour was documented, but was an unsafe
! default and an extra hassle for administrators.
!
! A source code patch exists which remedies this problem.
!
***************
*** 119,125 ****
www@openbsd.org
!
$OpenBSD: errata43.html,v 1.1 2008/03/09 21:05:00 deraadt Exp $