Patch: Solaris packages don't create privsep user or group
Jim Knoble
jmknoble at pobox.com
Wed Jul 17 07:07:45 EST 2002
Circa 2002-Jul-16 15:20:17 -0500 dixit Ben Lindstrom:
: On Tue, 16 Jul 2002, Jim Knoble wrote:
: > (d) Move them to an 'openssh-setup' script that does the following:
:
: Admin required to manually run it, or a form of SysV 'first time' startup
: script?
Whichever. I have no problem with the admin running it, even the
following in /etc/init.d/openssh (or whatever it's called) seems fine
to me:
<look-for-privsep-user> || <call-openssh-setup-script>
or even:
<look-for-flag-file> || <call-openssh-setup-script>
The benefit of the admin running it manually is that s/he can choose
privsep or whatever at that time (e.g., via command-line options or
envariables). A well-written script would be able to run in both
contexts....
For what it's worth....
--
jim knoble | jmknoble at pobox.com | http://www.pobox.com/~jmknoble/
(GnuPG fingerprint: 31C4:8AAC:F24E:A70C:4000::BBF4:289F:EAA8:1381:1491)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 262 bytes
Desc: not available
Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20020716/34715175/attachment.bin
More information about the openssh-unix-dev
mailing list