bugzilla-daemon at mindrot.org
2005-Nov-05 17:38 UTC
[Bug 1060] ~/.ssh/config check too strict on systems with per-user groups
http://bugzilla.mindrot.org/show_bug.cgi?id=1060
djm at mindrot.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |WONTFIX
------- Comment #5 from djm at mindrot.org 2005-11-06 04:38 -------
This won't be changing
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
bugzilla-daemon at mindrot.org
2005-Nov-05 19:35 UTC
[Bug 1060] ~/.ssh/config check too strict on systems with per-user groups
http://bugzilla.mindrot.org/show_bug.cgi?id=1060 ------- Comment #6 from cjwatson at debian.org 2005-11-06 06:35 ------- (In reply to comment #4)> (In reply to comment #3) > > The only reason the user name is used is because struct group only lets you > > inspect group membership by means of the user name. > > No, I was referring to: > > + else if (gr->gr_mem[0]) { > + if (strcmp(pw->pw_name, gr->gr_mem[0]) || > + gr->gr_mem[1]) > > where you make decisions on the group name being the same as the user name.For the record, gr_mem[0] is the first group member (i.e. a user name), not the group name. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
Maybe Matching Threads
- [Bug 1060] ~/.ssh/config check too strict on systems with per-user groups
- [Bug 985] scp doesn't honor local ~/.ssh/config for host2
- [Bug 742] Allow sftp to read config file to honor "Protocol 1"
- [Bug 93] Added ability for ssh-add to parse config files to retrieve a list of valid IdentityFiles.
- Security - ssh allows unintended access on AIX