[Bug 1646] Match directive does not override default settings
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Thu Sep 3 02:50:41 EST 2009
https://bugzilla.mindrot.org/show_bug.cgi?id=1646
--- Comment #1 from David Alves <alves at montecristogames.com> 2009-09-03 02:50:40 EST ---
(In reply to comment #0)
> Hello,
>
> I found this strange behaviour
>
> When setting a user in the DenyUsers directive and then Matching it on
> a Match directive it does not work. I read the man 5 sshd-config :
>
> "If all of the criteria on the Match line are satisfied, the keywords
> on the following lines override those set in the global section of the
> config file, until either another Match line or the end of the file"
>
> So the Match Directive have to override the global settings (or the
> manual is incomplete).
>
> Consider the following in sshd_config:
>
> DenyUsers test
>
> Match User test
> ForceCommand /home/test/test.sh
>
> This Match block, according to the docs must override the global
> settings, but it doesn't.
>
> Is this a normal Behaviour ?
>
> David.
Some more stuff in logs :
debian sshd[7580]: User test from localhost not allowed because listed
in DenyUsers
I'm running Debian GNU/Linux squeeze/sid and OpenSSH_5.1p1 Debian-6,
OpenSSL 0.9.8k 25 Mar 2009
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list