/etc/nologin must be world-readable which is not totally clear
Darren Tucker
dtucker at zip.com.au
Wed Jan 13 10:01:34 EST 2010
Joachim Schipper wrote:
[...]
> This should work, but have you considered access(2)?
I did, but I think it has the same potential for false positives under
unusual conditions that just checking the errno of the open() did.
Basically I didn't want to lock people out unless we're 100% sure that
the nologin file is there, hence the stat().
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list