- Allow root access to any key. Patch from
markus.friedl@informatik.uni-erlangen.de
This commit is contained in:
Damien Miller
parent
204ad074e5
commit
2453d01611
|
|
@ -10,6 +10,8 @@
|
||||||
- Warning was valid - possible race condition on PTYs. Avoided using
|
- Warning was valid - possible race condition on PTYs. Avoided using
|
||||||
platform-specific code.
|
platform-specific code.
|
||||||
- Document some common problems
|
- Document some common problems
|
||||||
|
- Allow root access to any key. Patch from
|
||||||
|
markus.friedl@informatik.uni-erlangen.de
|
||||||
|
|
||||||
20000207
|
20000207
|
||||||
- Removed SOCKS code. Will support through a ProxyCommand.
|
- Removed SOCKS code. Will support through a ProxyCommand.
|
||||||
|
|
|
||||||
|
|
@ -15,7 +15,7 @@
|
||||||
*/
|
*/
|
||||||
|
|
||||||
#include "includes.h"
|
#include "includes.h"
|
||||||
RCSID("$Id: authfile.c,v 1.6 1999/12/07 04:38:32 damien Exp $");
|
RCSID("$Id: authfile.c,v 1.7 2000/03/02 12:57:18 damien Exp $");
|
||||||
|
|
||||||
#ifdef HAVE_OPENSSL
|
#ifdef HAVE_OPENSSL
|
||||||
#include <openssl/bn.h>
|
#include <openssl/bn.h>
|
||||||
|
|
@ -228,7 +228,7 @@ load_private_key(const char *filename, const char *passphrase,
|
||||||
|
|
||||||
/* check owner and modes */
|
/* check owner and modes */
|
||||||
if (fstat(fd, &st) < 0 ||
|
if (fstat(fd, &st) < 0 ||
|
||||||
(st.st_uid != 0 && st.st_uid != getuid()) ||
|
(st.st_uid != 0 && getuid() != 0 && st.st_uid != getuid()) ||
|
||||||
(st.st_mode & 077) != 0) {
|
(st.st_mode & 077) != 0) {
|
||||||
close(fd);
|
close(fd);
|
||||||
error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@");
|
error("@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@");
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue