bugzilla-daemon at mindrot.org
2002-Jul-12 20:14 UTC
[Bug 325] PermitRootLogin forced-commands-only & privsep - not working together
http://bugzilla.mindrot.org/show_bug.cgi?id=325 ------- Additional Comments From hlein at progressive-comp.com 2002-07-13 06:14 ------- Seeing this here too; it appears that when auth2.c:userauth_finish is called, forced_command has been cleared (or perhaps, never set in that forked sshd) so the call to auth_root_allowed(method) returns 0. The following patch makes forced-command logins as root work again, but I doubt this is the right fix. In fact the below may have serious problems; no warranties. Looking at (but not testing) today's snapshot, this appears to still be a problem. If so I'm surpised more people haven't run into this...? --- openssh-3.4p1/auth2.c Fri Jun 21 02:21:11 2002 +++ openssh-3.4p1-hap-2/auth2.c Fri Jul 12 15:35:52 2002 @@ -206,6 +206,7 @@ /* Special handling for root */ if (authenticated && authctxt->pw->pw_uid == 0 && + !options.permit_root_login == PERMIT_FORCED_ONLY && !auth_root_allowed(method)) authenticated = 0; ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
Possibly Parallel Threads
- PermitRootLogin and Tru64 SIA
- [Bug 325] New: PermitRootLogin forced-commands-only & privsep - not working together
- [Bug 325] PermitRootLogin forced-commands-only & privsep - not working together
- 3.7.1P2, PermitRootLogin and PAM with hidden NISplus passwor ds
- [Bug 2061] New: Request for PermitRootLogin to be enforced prior to credential check