[ot] openssh.html

[stayler]

On Sun, 29 Sep 2002 19:55:53 -0700, Net Llama! wrote:

>i'm pretty sure that you have to use the sshd user for PrivSep. anything 
>else and you're just running it with a user other than r00t.

True,

But I believe that as long as the user is chroot'd into /var/empty and
openssh is configured with that user. things are allright.

The big security problem right now is openssl.  One needs 0.9.6e or
better.

stayler