search for: unix_verify

...have no rights or use for it. SE/Linux is really cool in that respect: the audit process logged that this file handle was being passed over to a child process, and the policy for ssh-agent said that that wasn't allowed. cool, huh? :) [apparently, PAM has a similar bug in /sbin/unix_verify: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=248310 but the debian maintainer for pam is being a bit of idiot and won't look at it. sorry, mr hartmans, but it's bypass time, and your comments _are_ a matter of public record, after all] l.

dear openssh developers, i was wondering if you were aware of some patches for security enhancements to openssh - to support SE/Linux. www.nsa.gov/selinux. i am at present compiling a status report for debian/selinux. could someone be kind enough to provide me with some information that i can put on my report? sincerely, l.