[Bug 3515] PermitRemoteOpen not behaving as expected
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Sat Dec 31 11:17:51 AEDT 2022
https://bugzilla.mindrot.org/show_bug.cgi?id=3515
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Assignee|unassigned-bugs at mindrot.org |djm at mindrot.org
Status|NEW |ASSIGNED
CC| |djm at mindrot.org,
| |dtucker at dtucker.net
Attachment #3647| |ok?(dtucker at dtucker.net)
Flags| |
--- Comment #1 from Damien Miller <djm at mindrot.org> ---
Created attachment 3647
--> https://bugzilla.mindrot.org/attachment.cgi?id=3647&action=edit
don't consume first PermitRemoteOpen argument
It's a bug. The parsing code for PermitRemoteOpen erroneously consumes
its first argument to look for the special "any/none" keywords and
doesn't record it if it isn't one of those.
We will be flagging this as a security bug in the next release.
Workaround: specify the first PermitRemoteOpen argument twice.
A separate problem is that we don't current have regression tests for
PermitRemoteOpen
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list