[Bug 1646] New: Match directive does not override default settings

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Thu Sep 3 01:55:20 EST 2009


https://bugzilla.mindrot.org/show_bug.cgi?id=1646

           Summary: Match directive does not override default settings
           Product: Portable OpenSSH
           Version: 5.1p1
          Platform: ix86
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: sshd
        AssignedTo: unassigned-bugs at mindrot.org
        ReportedBy: alves at montecristogames.com


--- Comment #0 from David Alves <alves at montecristogames.com> 2009-09-03 01:55:19 EST ---
Hello,

I found this strange behaviour 

When setting a user in the DenyUsers directive and then Matching it on
a Match directive it does not work. I read the man 5 sshd-config :

"If all of the criteria on the Match line are satisfied, the keywords
on the following lines override those set in the global section of the
config file, until either another Match line or the end of the file"

So the Match Directive have to override the global settings (or the
manual is incomplete).

Consider the following in sshd_config:

DenyUsers test

Match User test
ForceCommand /home/test/test.sh

This Match block, according to the docs must override the global
settings, but it doesn't.

Is this a normal Behaviour ?

David.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list