PermitUserEnvironment in sshd match block?

Daniel Allen drallen at
Wed Aug 26 05:08:22 EST 2009


Our campus environment would find it very useful to pass user- 
environment variables for certain login ssh connections, but of course  
want to avoid the security problems with LD_PRELOAD and  
PermitUserEnvironment as described in sshd_config manpages.

Would the best answer be a patch that adds PermitUserEnvironment  
support inside match blocks? Are there technical or other reasons this  
has already been considered and rejected?

Daniel Allen

Computing Technology Specialist
Computer Science Computing Facility (CSCF)
David R. Cheriton School of Computer Science
University of Waterloo
(519) 888-4567 ext. 35448
drallen at

More information about the openssh-unix-dev mailing list