Hi, Attached is a new patch, which introduces an option(SockUmask) for sshd and
ssh and a command line argument(-m) for ssh-agent. Those options are used to
specify the umask for the AF_UNIX socket. Currently, ssh-agent, ssh and sshd use
the system umask for the AF_UNIX socket, however, this is lack of flexibility in
some cases for security considerations, that's why I provide the patch.
Would you please take a look and see if it could be used in the next openssh
release? Thanks Xiao
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: openssh4.5_sock_umask.patch
Url:
http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20070719/5d9a67b1/attachment.ksh