sshd as non-root
djm at mindrot.org
Mon Sep 29 07:53:30 EST 2003
On Sun, 2003-09-28 at 17:36, Carson Gaspar wrote:
> --On Sunday, September 28, 2003 4:39 PM +1000 Damien Miller
> <djm at mindrot.org> wrote:
> > I think that all platforms supported by portable OpenSSH require root
> > for TTY assignment. I believe that some platforms can get away with
> > non-root, but with a sgid helper but we haven't followed that up.
> If the platform supports grantpt() (part of SUSv2), why is root needed?
We keep root anyway to update wtmp and friends. Perhaps this could be
done by keeping open fds around to these files...
More information about the openssh-unix-dev