tyler.durden/openssh-portable
1
0
Fork 0
mirror of https://github.com/PowerShell/openssh-portable.git synced 2025-07-30 01:05:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

- deraadt@cvs.openbsd.org 2002/05/04 02:39:35

Browse Source 
[servconf.c sshd.8 sshd_config]
     enable privsep by default; provos ok
(historical)
This commit is contained in:
Ben Lindstrom 2002-05-15 21:35:43 +00:00
parent 2b70e5603f
commit bb2ce36d4d
4 changed files with 11 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
ChangeLog
View File

@ -32,6 +32,9 @@
[kex.c monitor.c monitor_wrap.c sshd.c] [kex.c monitor.c monitor_wrap.c sshd.c]
'monitor' variable clashes with at least one lame platform (NeXT). i 'monitor' variable clashes with at least one lame platform (NeXT). i
Renamed to 'pmonitor'. provos@ Renamed to 'pmonitor'. provos@
- deraadt@cvs.openbsd.org 2002/05/04 02:39:35
[servconf.c sshd.8 sshd_config]
enable privsep by default; provos ok
- (bal) Fixed up PAM case. I think. - (bal) Fixed up PAM case. I think.
- (bal) Clarified openbsd-compat/*-cray.* Licence provided by Wendy - (bal) Clarified openbsd-compat/*-cray.* Licence provided by Wendy
@ -638,4 +641,4 @@
- (stevesk) entropy.c: typo in debug message - (stevesk) entropy.c: typo in debug message
- (djm) ssh-keygen -i needs seeded RNG; report from markus@ - (djm) ssh-keygen -i needs seeded RNG; report from markus@
$Id: ChangeLog,v 1.2130 2002/05/15 16:39:51 mouring Exp $ $Id: ChangeLog,v 1.2131 2002/05/15 21:35:43 mouring Exp $

6
servconf.c
View File

@ -10,7 +10,7 @@
*/ */
#include "includes.h" #include "includes.h"
RCSID("$OpenBSD: servconf.c,v 1.107 2002/04/22 16:16:53 markus Exp $"); RCSID("$OpenBSD: servconf.c,v 1.108 2002/05/04 02:39:35 deraadt Exp $");
#if defined(KRB4) #if defined(KRB4)
#include <krb.h> #include <krb.h>
@ -250,9 +250,9 @@ fill_default_server_options(ServerOptions *options)
if (options->authorized_keys_file == NULL) if (options->authorized_keys_file == NULL)
options->authorized_keys_file = _PATH_SSH_USER_PERMITTED_KEYS; options->authorized_keys_file = _PATH_SSH_USER_PERMITTED_KEYS;
/* Turn privilege separation _off_ by default */ /* Turn privilege separation on by default */
if (use_privsep == -1) if (use_privsep == -1)
use_privsep = 0; use_privsep = 1;
} }
/* Keyword tokens. */ /* Keyword tokens. */

4
sshd.8
View File

@ -34,7 +34,7 @@
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\" .\"
.\" $OpenBSD: sshd.8,v 1.178 2002/04/22 16:16:53 markus Exp $ .\" $OpenBSD: sshd.8,v 1.179 2002/05/04 02:39:35 deraadt Exp $
.Dd September 25, 1999 .Dd September 25, 1999
.Dt SSHD 8 .Dt SSHD 8
.Os .Os
@ -852,7 +852,7 @@ another process will be created that has the privilege of the authenticated
user. The goal of privilege separation is to prevent privilege user. The goal of privilege separation is to prevent privilege
escalation by containing any corruption within the unprivileged processes. escalation by containing any corruption within the unprivileged processes.
The default is The default is
.Dq no . .Dq yes .
.It Cm VerifyReverseMapping .It Cm VerifyReverseMapping
Specifies whether Specifies whether
.Nm .Nm

4
sshd_config
View File

@ -1,4 +1,4 @@
# $OpenBSD: sshd_config,v 1.51 2002/04/22 16:16:53 markus Exp $ # $OpenBSD: sshd_config,v 1.52 2002/05/04 02:39:35 deraadt Exp $
# This is the sshd server system-wide configuration file. See sshd(8) # This is the sshd server system-wide configuration file. See sshd(8)
# for more information. # for more information.
@ -80,7 +80,7 @@
#PrintLastLog yes #PrintLastLog yes
#KeepAlive yes #KeepAlive yes
#UseLogin no #UseLogin no
#UsePrivilegeSeparation no #UsePrivilegeSeparation yes
#MaxStartups 10 #MaxStartups 10
# no default banner path # no default banner path