Patch: Solaris packages don't create privsep user or group

Darren Moffat Darren.Moffat at Sun.COM
Tue Jul 16 12:02:51 EST 2002


>Should we:
>(a) move them to the /etc/init.d/openssh script same as the keygens
>(b) attempt to hand-hack $PKG_INSTALL_ROOT/etc/passwd
>(c) chroot tricks?
>(d) ?
>
>I prefer (a).

(b) is what would be done by a Solaris shipped package.  Given that the
format of /etc/passwd and /etc/shadow are stable interfaces there is
no problem doing that.

The more you add to the openssh init.d script the longer it takes to
startup that Solaris instance - this is an issue for some people.

--
Darren J Moffat




More information about the openssh-unix-dev mailing list