Announce: OpenSSH 5.4 released
Corinna Vinschen
vinschen at redhat.com
Fri Mar 12 21:29:36 EST 2010
Hi Damien,
On Mar 12 10:45, Damien Miller wrote:
> On Thu, 11 Mar 2010, Corinna Vinschen wrote:
> > There appears to be a new bug in OpenSSH affecting the sshd_config
> > setting AuthorizedKeysFile.
> >
> > The default entry in sshd_config is commented out:
> >
> > #AuthorizedKeysFile .ssh/authorized_keys
> >
> > Now, if you remove the # and restart sshd, it's suddenly impossible
> > to login with public key authentication. Running sshd in debugging
> > mode shows entries like these:
> >
> > temporarily_use_uid: 500/513 (e=1105/513)
> > trying public key file //.ssh/authorized_keys
> > restore_uid: 1105/513
> > temporarily_use_uid: 500/513 (e=1105/513)
> > trying public key file //.ssh/authorized_keys
> > restore_uid: 1105/513
> > Failed publickey for some_user from 192.168.77.88 port 2864 ssh2
>
> Confirmed. Here is a patch:
Thanks for the patch, but, erm... is that really the right patch you
send me there?
The code which replaces the `goto parse_filename', is *exactly*
identical to the code running after the parse_filename label. It would
have been a surprise if that had actually changed the behaviour and, in
fact, it didn't.
I'm also a bit puizzled about the revision number of servconf.c. It's
1.204, but `cvs stat servconf.c' shows a revision number of 1.199 for
me. Do you work in a repository with changes not in the public
repository?
Corinna
--
Corinna Vinschen
Cygwin Project Co-Leader
Red Hat
More information about the openssh-unix-dev
mailing list