Testing call.
Tim Rice
tim at multitalents.net
Sun Jun 23 10:00:13 EST 2002
On Sat, 22 Jun 2002, Peter Stuge wrote:
> On Fri, Jun 21, 2002 at 11:44:14AM -0500, Ben Lindstrom wrote:
> >
> > Look at the 3.3 release instead of the snapshot.
>
> On an old libc5 Linux system of mine, privsep doesn't work. Kernel 2.4.18.
> 3.3p1 client on more modern Linux system (where privsep'd sshd works fine)
>
[snip]
> debug3: mm_request_receive entering
> debug3: privsep user:group 53:53
> initgroups: No such file or directory
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Apply the attached patch. It's part of a privdsep patch I was working
on that hasn't made it in yet.
> my_extra_debug: getuid=0 geteuid=0 getgid=53 getegid=53
> my_extra_debug: pw->pw_name='sshd' pw->pw_gid=53
> debug1: Calling cleanup 0x806aa88(0x0)
--
Tim Rice Multitalents (707) 887-1469
tim at multitalents.net
-------------- next part --------------
--- openssh/session.c.old Sun May 12 20:25:02 2002
+++ openssh/session.c Wed May 29 07:39:22 2002
@@ -1089,10 +1089,11 @@
exit(1);
}
/* Initialize the group list. */
- if (initgroups(pw->pw_name, pw->pw_gid) < 0) {
- perror("initgroups");
- exit(1);
- }
+ if (strcmp(pw->pw_name, SSH_PRIVSEP_USER))
+ if (initgroups(pw->pw_name, pw->pw_gid) < 0) {
+ perror("initgroups");
+ exit(1);
+ }
endgrent();
# ifdef USE_PAM
/*
More information about the openssh-unix-dev
mailing list