[Bug 2050] Support XDG basedir specification

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Dec 15 00:34:16 AEDT 2020


https://bugzilla.mindrot.org/show_bug.cgi?id=2050

--- Comment #16 from Drew DeVault <sir at cmpwn.com> ---
(In reply to Dmitry V. Levin from comment #15)
> Adding support for an extra place where to look for security
> sensitive information would introduce a major security risk,
> therefore openssh should not change its default behavior in this
> respect.  If it ever changed, we downstream maintainers would
> certainly patch it out.

And how exactly does it pose a major security risk? Can you be more
specific than these sweeping generalizations? The key files are still
mode 600 regardless of where they're put.

We can't go outside, because of the bears. What bears? Don't ask, just
lock the door.

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list