search for: login_program

...sendbug' facility; it seems to be an OpenBSD-only facility, and I didn't see a bug-tracking interface on the web site. I know the "UseLogin" feature is deprecated (to some degree, at any rate), however, on a Red Hat 6.2-based system, it is broken, because ssh.h statically defines LOGIN_PROGRAM as /usr/bin/login, whereas here it is /bin/login. Attached is a patch which corrects this by adding a check in configure.in and adding LOGIN_PROGRAM to PATHS in Makefile.in. Of course you need to re-run autoconf to pick up the new changes. (Please CC: me as I'm not on this list) Wil -- W....

https://bugzilla.mindrot.org/show_bug.cgi?id=2665 Bug ID: 2665 Summary: Remove vestige of LOGIN_PROGRAM Product: Portable OpenSSH Version: 7.4p1 Hardware: Other OS: Linux Status: NEW Severity: enhancement Priority: P5 Component: sshd Assignee: unassigned-bugs at mindrot.org Reporter: cjwatson...

...*pw, const char *hostname) { char *env_init[] = {"MYENV=null", NULL}; /* Launch login(1). */ fprintf(stderr, "X11 forwarding not supported with IRIX login.\n"); fprintf(stderr, "Must enter password again to get AFS token,\n"); /* execl(LOGIN_PROGRAM, "login", "-h", hostname, */ execl(LOGIN_PROGRAM, "login", #ifdef xxxLOGIN_NEEDS_TERM (s->term ? s->term : "unknown"), #endif /* LOGIN_NEEDS_TERM */ #ifdef LOGIN_NO_ENDOPT /* "-p", "-f", pw-&gt...

...Sat Feb 10 19:39:35 2001 +++ openssh_cvs/pathnames.h Mon Feb 26 19:08:19 2001 @@ -120,7 +120,9 @@ #ifndef _PATH_SFTP_SERVER #define _PATH_SFTP_SERVER "/usr/libexec/sftp-server" #endif +#ifndef _PATH_LS #define _PATH_LS "ls" +#endif /* path to login program */ #ifndef LOGIN_PROGRAM

...my testing. When I >do use Solaris login (UseLogin yes), a ton of the important environment >variables (like TERM, etc) don't get passed. Is that normal behavior? Looking at the source os session.c it is obvious that when you use login the environment is not passed: execl(LOGIN_PROGRAM, "login", "-h", get_remote_ipaddr(), "-p", "-f", "--", pw->pw_name, NULL); But when the shell is exec'd directly it is: execve(shell, argv, env); Login can accept a list of environment variables in the format V...

...set_env (which > in OpenSSH 3.7.1p1 is called in another routine, by env = > do_setup_env - is this the problem??) > 4. "environ = env", which I assume will set the external > environment to the newly defined environment stored in "env". > 5. Call "execl(LOGIN_PROGRAM, "login", "-h", hostname, "-p" ,"-f", "--", pw-<pw_name, (char *) NULL)" to exec the login > process. The "-p" flag is supposed to get login to read the > current environment. > > Hints / Help / Suggestions all welc...

...; by various calls to child_set_env (which in OpenSSH 3.7.1p1 is called in another routine, by env = do_setup_env - is this the problem??) 4. "environ = env", which I assume will set the external environment to the newly defined environment stored in "env". 5. Call "execl(LOGIN_PROGRAM, "login", "-h", hostname, "-p" ,"-f", "--", pw-<pw_name, (char *) NULL)" to exec the login process. The "-p" flag is supposed to get login to read the current environment. Hints / Help / Suggestions all welcome. Solutions are pr...

...s a login on that tty from the remote host. */ - record_login(pid, s->tty, pw->pw_name, pw->pw_uid, - get_remote_name_or_ip(), (struct sockaddr *)&from); - #ifdef USE_PAM /* * If password change is needed, do it now. @@ -1466,6 +1479,9 @@ /* Launch login(1). */ execl(LOGIN_PROGRAM, "login", "-h", hostname, +#ifdef LOGIN_NEEDS_TERM + s->term? s->term : "unknown", +#endif "-p", "-f", "--", pw->pw_name, NULL); /* Login couldn't be executed, die. */ ---8<------8<------8<------8...

...be opened; bz#2653 * sshd(8): Make sshd set GSSAPIStrictAcceptorCheck=yes as the manual page (previously incorrectly) advertised. bz#2637 * sshd_config(5): Repair accidentally-deleted mention of %k token in AuthorizedKeysCommand; bz#2656 * sshd(8): Remove vestiges of previously removed LOGIN_PROGRAM; bzbz#2665 * ssh-agent(1): Relax PKCS#11 whitelist to include libexec and common 32-bit compatibility library directories. * sftp-client(1): fix non-exploitable integer overflow in SSH2_FXP_NAME response handling. Portability ----------- * sshd(8): Avoid sandbox errors for Linux S390 s...

...;tty, s->pw->pw_name, + get_remote_name_or_ip(utmp_len, options.reverse_mapping_check), + (struct sockaddr *)&from); +} +#endif + /* administrative, login(1)-like work */ void do_login(Session *s, const char *command) @@ -1511,6 +1546,9 @@ /* Launch login(1). */ execl(LOGIN_PROGRAM, "login", "-h", hostname, +#ifdef LOGIN_NEEDS_TERM + s->term? s->term : "unknown", +#endif "-p", "-f", "--", pw->pw_name, NULL); /* Login couldn't be executed, die. */ Index: sshlogin.c --- sshlogin.c 200...

...be opened; bz#2653 * sshd(8): Make sshd set GSSAPIStrictAcceptorCheck=yes as the manual page (previously incorrectly) advertised. bz#2637 * sshd_config(5): Repair accidentally-deleted mention of %k token in AuthorizedKeysCommand; bz#2656 * sshd(8): Remove vestiges of previously removed LOGIN_PROGRAM; bz#2665 * ssh-agent(1): Relax PKCS#11 whitelist to include libexec and common 32-bit compatibility library directories. * sftp-client(1): Fix non-exploitable integer overflow in SSH2_FXP_NAME response handling. * ssh-agent(1): Fix regression in 7.4 of deleting PKCS#11-hosted keys. I...

...log: 20000823 - (djm) Define USE_PIPES to avoid socketpair problems on HPUX 10 and SunOS 4 Avoids "scp never exits" problem. Reports from Lutz Jaenicke <Lutz.Jaenicke at aet.TU-Cottbus.DE> and Tamito KAJIYAMA <kajiyama at grad.sccs.chukyo-u.ac.jp> - (djm) Pick up LOGIN_PROGRAM from environment or PATH if not set by headers - (djm) Add local version to version.h - (djm) OpenBSD CVS updates: - deraadt at cvs.openbsd.org 2000/08/18 20:07:23 [ssh.c] accept remsh as a valid name as well; roman at buildpoint.com - deraadt at cvs.openbsd.org 2000/08/18 20:17:1...

https://bugzilla.mindrot.org/show_bug.cgi?id=2647 Bug ID: 2647 Summary: Tracking bug for OpenSSH 7.5 release Product: Portable OpenSSH Version: -current Hardware: Other OS: Linux Status: NEW Keywords: meta Severity: enhancement Priority: P5 Component: Miscellaneous

...be opened; bz#2653 * sshd(8): Make sshd set GSSAPIStrictAcceptorCheck=yes as the manual page (previously incorrectly) advertised. bz#2637 * sshd_config(5): Repair accidentally-deleted mention of %k token in AuthorizedKeysCommand; bz#2656 * sshd(8): Remove vestiges of previously removed LOGIN_PROGRAM; bz#2665 * ssh-agent(1): Relax PKCS#11 whitelist to include libexec and common 32-bit compatibility library directories. * sftp-client(1): Fix non-exploitable integer overflow in SSH2_FXP_NAME response handling. * ssh-agent(1): Fix regression in 7.4 of deleting PKCS#11-hosted keys. I...