3346 – Provide a system-wide kill switch for SCP protocol

Bug 3346 - Provide a system-wide kill switch for SCP protocol

Summary: Provide a system-wide kill switch for SCP protocol

Status:	NEW

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	scp (show other bugs)
Version:	8.7p1
Hardware:	Other All

Importance:	P5 enhancement
Assignee:	Assigned to nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2021-09-17 00:50 AEST by Dmitry Belyavskiy
Modified:	2021-09-17 00:50 AEST (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Dmitry Belyavskiy 2021-09-17 00:50:50 AEST

As we use SFTP by default, and SCP is considered insecure, we may want
to disable it totally. As scp utility doesn't use the system-wide
config, we suggest implementing it via the kill switch file.

https://github.com/openssh/openssh-portable/pull/271 is the PR to add this feature.

Format For Printing
- XML
- Clone This Bug
- Top of page