[Bug 2625] Support Capabilities for ssh client port forwarding
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Mon Oct 24 17:02:42 AEDT 2016
https://bugzilla.mindrot.org/show_bug.cgi?id=2625
--- Comment #4 from Alexey Mochkin <alukardd+openssh_mindrot at alukardd.org> ---
Your bind_permitted() function should have fallback to check for uid ==
0 if no capabilities were presented.
+#ifdef LINUX_CAPABILITIES
+ if (linux_capability_bind_permitted()) {
+ return 1;
+ } else {
+#else
if (port < IPPORT_RESERVED && uid != 0)
return 0;
return 1;
+#endif
+#ifdef LINUX_CAPABILITIES
+ }
+#endif
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list