sshd as non-root
Carson Gaspar
carson at taltos.org
Mon Sep 29 04:19:52 EST 2003
--On Sunday, September 28, 2003 12:59 PM -0500 Ben Lindstrom
<mouring at etoh.eviladmin.org> wrote:
>
>
> On Sun, 28 Sep 2003, Carson Gaspar wrote:
>
>> If the platform supports grantpt() (part of SUSv2), why is root needed?
>
> I don't see how grantpt() solves anything unless your implying that by
> default every tty is 777 so anything can grab and modify the permissions.
On most systems, grantpt() uses a setuid helper program. That's the whole
_point_ of grantpt(). Take a look at a Solaris box, and note the caution
about SIGCHLD.
--
Carson
More information about the openssh-unix-dev
mailing list