[Bug 2625] Support Capabilities for ssh client port forwarding

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Mon Oct 24 17:02:42 AEDT 2016


https://bugzilla.mindrot.org/show_bug.cgi?id=2625

--- Comment #4 from Alexey Mochkin <alukardd+openssh_mindrot at alukardd.org> ---
Your bind_permitted() function should have fallback to check for uid ==
0 if no capabilities were presented.


+#ifdef LINUX_CAPABILITIES
+       if (linux_capability_bind_permitted()) {
+               return 1;
+       } else {
+#else
        if (port < IPPORT_RESERVED && uid != 0)
                return 0;
        return 1;
+#endif
+#ifdef LINUX_CAPABILITIES
+       }
+#endif

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list