[Bug 325] PermitRootLogin forced-commands-only & privsep - not working together
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Sat Jul 13 06:14:32 EST 2002
http://bugzilla.mindrot.org/show_bug.cgi?id=325
------- Additional Comments From hlein at progressive-comp.com 2002-07-13 06:14 -------
Seeing this here too; it appears that when auth2.c:userauth_finish is called,
forced_command has been cleared (or perhaps, never set in that forked sshd) so
the call to auth_root_allowed(method) returns 0. The following patch makes
forced-command logins as root work again, but I doubt this is the right fix. In
fact the below may have serious problems; no warranties.
Looking at (but not testing) today's snapshot, this appears to still be a
problem. If so I'm surpised more people haven't run into this...?
--- openssh-3.4p1/auth2.c Fri Jun 21 02:21:11 2002
+++ openssh-3.4p1-hap-2/auth2.c Fri Jul 12 15:35:52 2002
@@ -206,6 +206,7 @@
/* Special handling for root */
if (authenticated && authctxt->pw->pw_uid == 0 &&
+ !options.permit_root_login == PERMIT_FORCED_ONLY &&
!auth_root_allowed(method))
authenticated = 0;
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the openssh-unix-dev
mailing list