[Bug 787] Minor security problem due to use of deprecated NGROUPS_MAX in uidswap.c (sshd)
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Tue Feb 24 12:12:29 EST 2004
http://bugzilla.mindrot.org/show_bug.cgi?id=787
------- Additional Comments From djm at mindrot.org 2004-02-24 12:12 -------
All the manpages that I see state that sysconf(SC_NGROUPS_MAX) is the canonical
place to determine the maximum number of groups that an account can be a member
of. Furthermore, the Linux 2.6.1 and glibc -current headers define NGROUPS_MAX
as 32.
Why would anyone set a *runtime* limit higher than the actual max number of
groups in use for a single account?
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the openssh-bugs
mailing list