Privilege separation
Dan Yefimov
dan at D00M.integrate.com.ru
Thu Oct 30 01:28:45 EST 2003
On Wed, 29 Oct 2003, Markus Friedl wrote:
> On Wed, Oct 29, 2003 at 09:01:14PM +1100, Darren Tucker wrote:
> > Logu wrote:
> > > I do not understand why there is a runtime option not to use privilege
> > > separation. What if the previlege separation is made compulsary.
> >
> > Not all platforms and configurations work with privsep. (Example:
> > *really* early Linuxes have a broken mmap(), so Compression isn't usable
> > with privilege separation.)
> >
> > It also increases the memory footprint (2 sshd's per connection rather
> > than 1), this may make a difference on heavily-loaded or memory-starved
> > machines.
>
> I'd rather make compression a compile time options. that's trivial...
>
And what about privilege separation? ;-) My patch proves that making it a
compile time option is trivial too. And I completely agree with Darren's view
point. Again, everyone must have an option.
--
Sincerely Your, Dan.
More information about the openssh-unix-dev
mailing list