AIX remote root logins
Darren Tucker
dtucker at zip.com.au
Sun Oct 13 13:44:48 EST 2002
Ben Lindstrom wrote:
> You're better off using the patch by Dr Jorg Petersen on:
>
> http://bugzilla.mindrot.org/show_bug.cgi?id=383
>
> The more I think about it..The more I agree with it, but I've not had the
> time to look into it.
On the subject of that line of code: loginrestrictions will always fail
when run as a non-root user (unless the user is member of group
"security"). This also means the regression tests won't work without
sudo.
If I post a patch that does something like
if (pw->pw_uid != 0) && (geteuid() == 0) && loginrestrictions....
is it likely to be accepted?
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list