sshd as non-root
carson at taltos.org
Mon Sep 29 04:19:52 EST 2003
--On Sunday, September 28, 2003 12:59 PM -0500 Ben Lindstrom
<mouring at etoh.eviladmin.org> wrote:
> On Sun, 28 Sep 2003, Carson Gaspar wrote:
>> If the platform supports grantpt() (part of SUSv2), why is root needed?
> I don't see how grantpt() solves anything unless your implying that by
> default every tty is 777 so anything can grab and modify the permissions.
On most systems, grantpt() uses a setuid helper program. That's the whole
_point_ of grantpt(). Take a look at a Solaris box, and note the caution
More information about the openssh-unix-dev