[Bug 2813] sshd fails to start in user namespaces when the gid for tty is not mapped

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Sat Dec 1 12:58:01 AEDT 2018


https://bugzilla.mindrot.org/show_bug.cgi?id=2813

--- Comment #5 from Oliver Freyermuth <o.freyermuth at googlemail.com> ---
This does indeed sound like a valid dirty hack that could be used for
all self-made containers! I'll give it a spin in the next days. 

It does not scale, though: This would mean all containers out there
(for example the hundreds of thousands on DockerHub) would need that
hack to the group-file. 

This fallback, in my opinion, makes things even more strange: Why only
fallback when tty is not in the groups file, and not fallback always?
Is there any reason to care if the pty belongs to a group named "tty"
explicitly (and only if that exists) instead of just caring for the
actual permissions?

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list