[Bug 1679] New: chroot and shell check ambiguity

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Wed Dec 2 16:03:40 EST 2009


https://bugzilla.mindrot.org/show_bug.cgi?id=1679

           Summary: chroot and shell check ambiguity
           Product: Portable OpenSSH
           Version: 5.3p1
          Platform: Other
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: sshd
        AssignedTo: unassigned-bugs at mindrot.org
        ReportedBy: alex at rtfs.hu


Created an attachment (id=1737)
 --> (https://bugzilla.mindrot.org/attachment.cgi?id=1737)
Initial patch

OpenSSH will fail in a scenario where the server is configured with
chroot and a shell used by a user is not available outside, just inside
the chroot.

The reason behind this is that ssh checks whether the given shell is a
file and is executable, but this check doesn't takes the chroot path
into account.

I also attach an initial patch diffed against CVS (checked out few
minutes ago), which I am not happy with but it can stand here as a
record. I copied the chroot part from session.c

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list