OpenSSH_4.3p1 configure patch

Tim Rice tim at multitalents.net
Wed Feb 8 13:37:46 EST 2006


On Wed, 8 Feb 2006, Darren Tucker wrote:

> On Tue, Feb 07, 2006 at 05:18:42PM -0800, Tim Rice wrote:
> > I don't like the monitor.c patch. The loggong will dissapear without
> > jumping through chroot logging hoops.
> > 
> > How about this instead?
> > Skip the monitor.c patch and use this.
> > 
> > --- auth2.c.old	2005-09-29 16:59:21.603708001 -0700
> > +++ auth2.c	2006-02-07 17:09:36.211231000 -0800
> > @@ -243,7 +243,9 @@
> >  #endif /* _UNICOS */
> >  
> >  	/* Log before sending the reply */
> > +#ifndef DISABLE_FD_PASSING
> >  	auth_log(authctxt, authenticated, method, " ssh2");
> > +#endif
> >  
> >  	if (authctxt->postponed)
> >  		return;
> 
> Won't that not log at all when DISABLE_FD_PASSING is defined and
> privsep=no?  Maybe:

Hmm, I hadn't considered privsep=no. After all, with DISABLE_FD_PASSING,
it's only preauth privsep.
> 
> #ifndef DISABLE_FD_PASSING
> 	if (!use_privsep)
> #endif

s/#ifndef/#ifdef/ Yes, that works.

> 		auth_log(authctxt, authenticated, method, " ssh2");
> 
> It still looks like there's got to be a nicer solution in there somewhere
> rather than something that's composed almost entirely of corner cases :-)

I'm happy to leave this one until after p2.

> 

-- 
Tim Rice				Multitalents	(707) 887-1469
tim at multitalents.net





More information about the openssh-unix-dev mailing list