OpenUsePrivilegeSeparation on Compaq V5.1A with C2/SIA Security
Ben Lindstrom
mouring at etoh.eviladmin.org
Fri Dec 20 01:02:26 EST 2002
No one has successfully show SIA + Privsep in any configuration.
- Ben
On Thu, 19 Dec 2002 Clarkin.Michael at ic.gc.ca wrote:
> I'm using OpenSSH_3.5p1 (server protocol 2.0 ) on a Compaq device V5.1A with
> C2 Security (SIA)
> configured.
>
> I must set UsePrivilegeSeparation to no to get this working.
>
> Does anyone have PrivilegeSeparation working on a Compaq device with C2
> Security configured?
>
> Source device:
>
> ssh user at destination ( produces these errors)
>
> sshd: /var/tcb/files/__db_lock.share: Permission denied
> sshd: /var/tcb/files/__db_lock.share: Permission denied
> sshd: /var/tcb/files/__db_lock.share: Permission denied
> sshd: /var/tcb/files/__db_lock.share: Permission denied
> sshd: /var/tcb/files/__db_lock.share: Permission denied
> Cannot obtain database information on this terminal
>
> Connection to xxx closed.
>
> Destination device:
>
> auth log produces these errors:
>
> Dec 19 06:24:02 compaqC2 sshd[60103]: audgen(LOGIN): Permission denied
> Dec 19 06:24:02 compaqC2 sshd[60103]: fatal: Couldn't establish session for
> clarkinm from xxx
>
>
> Mike Clarkin
> mailto:clarkin.michael at ic.gc.ca
> Unix Server Support
> Telecommunications, Network Development & Operations
> (613)954-2837
>
> _______________________________________________
> openssh-unix-dev at mindrot.org mailing list
> http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>
More information about the openssh-unix-dev
mailing list