diff options
| author | Damien Miller <djm@mindrot.org> | 2002-09-04 16:37:26 +1000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2002-09-04 16:37:26 +1000 |
| commit | de6f2de8ad528cd8cdfb4b4dc5de9e7ba086c957 (patch) | |
| tree | b5665b1ac83d5ec745dba26cb6d000b5686d402f | |
| parent | 061d5b144f7aaa9ce86838d437790b8e3a46050c (diff) | |
- markus@cvs.openbsd.org 2002/08/22 21:33:58
[auth1.c auth2.c]
auth_root_allowed() is handled by the monitor in the privsep case,
so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325
| -rw-r--r-- | ChangeLog | 6 | ||||
| -rw-r--r-- | auth1.c | 5 | ||||
| -rw-r--r-- | auth2.c | 5 |
3 files changed, 11 insertions, 5 deletions
| @@ -23,6 +23,10 @@ | |||
| 23 | - stevesk@cvs.openbsd.org 2002/08/22 20:57:19 | 23 | - stevesk@cvs.openbsd.org 2002/08/22 20:57:19 |
| 24 | [ssh-agent.c] | 24 | [ssh-agent.c] |
| 25 | shutdown(SHUT_RDWR) not needed before close here; ok markus@ | 25 | shutdown(SHUT_RDWR) not needed before close here; ok markus@ |
| 26 | - markus@cvs.openbsd.org 2002/08/22 21:33:58 | ||
| 27 | [auth1.c auth2.c] | ||
| 28 | auth_root_allowed() is handled by the monitor in the privsep case, | ||
| 29 | so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325 | ||
| 26 | 30 | ||
| 27 | 20020820 | 31 | 20020820 |
| 28 | - OpenBSD CVS Sync | 32 | - OpenBSD CVS Sync |
| @@ -1564,4 +1568,4 @@ | |||
| 1564 | - (stevesk) entropy.c: typo in debug message | 1568 | - (stevesk) entropy.c: typo in debug message |
| 1565 | - (djm) ssh-keygen -i needs seeded RNG; report from markus@ | 1569 | - (djm) ssh-keygen -i needs seeded RNG; report from markus@ |
| 1566 | 1570 | ||
| 1567 | $Id: ChangeLog,v 1.2433 2002/09/04 06:33:31 djm Exp $ | 1571 | $Id: ChangeLog,v 1.2434 2002/09/04 06:37:26 djm Exp $ |
| @@ -10,7 +10,7 @@ | |||
| 10 | */ | 10 | */ |
| 11 | 11 | ||
| 12 | #include "includes.h" | 12 | #include "includes.h" |
| 13 | RCSID("$OpenBSD: auth1.c,v 1.41 2002/06/19 00:27:55 deraadt Exp $"); | 13 | RCSID("$OpenBSD: auth1.c,v 1.42 2002/08/22 21:33:58 markus Exp $"); |
| 14 | 14 | ||
| 15 | #include "xmalloc.h" | 15 | #include "xmalloc.h" |
| 16 | #include "rsa.h" | 16 | #include "rsa.h" |
| @@ -301,7 +301,8 @@ do_authloop(Authctxt *authctxt) | |||
| 301 | } | 301 | } |
| 302 | #else | 302 | #else |
| 303 | /* Special handling for root */ | 303 | /* Special handling for root */ |
| 304 | if (authenticated && authctxt->pw->pw_uid == 0 && | 304 | if (!use_privsep && |
| 305 | authenticated && authctxt->pw->pw_uid == 0 && | ||
| 305 | !auth_root_allowed(get_authname(type))) | 306 | !auth_root_allowed(get_authname(type))) |
| 306 | authenticated = 0; | 307 | authenticated = 0; |
| 307 | #endif | 308 | #endif |
| @@ -23,7 +23,7 @@ | |||
| 23 | */ | 23 | */ |
| 24 | 24 | ||
| 25 | #include "includes.h" | 25 | #include "includes.h" |
| 26 | RCSID("$OpenBSD: auth2.c,v 1.94 2002/06/30 21:54:16 deraadt Exp $"); | 26 | RCSID("$OpenBSD: auth2.c,v 1.95 2002/08/22 21:33:58 markus Exp $"); |
| 27 | 27 | ||
| 28 | #include "ssh2.h" | 28 | #include "ssh2.h" |
| 29 | #include "xmalloc.h" | 29 | #include "xmalloc.h" |
| @@ -205,7 +205,8 @@ userauth_finish(Authctxt *authctxt, int authenticated, char *method) | |||
| 205 | authctxt->user); | 205 | authctxt->user); |
| 206 | 206 | ||
| 207 | /* Special handling for root */ | 207 | /* Special handling for root */ |
| 208 | if (authenticated && authctxt->pw->pw_uid == 0 && | 208 | if (!use_privsep && |
| 209 | authenticated && authctxt->pw->pw_uid == 0 && | ||
| 209 | !auth_root_allowed(method)) | 210 | !auth_root_allowed(method)) |
| 210 | authenticated = 0; | 211 | authenticated = 0; |
| 211 | 212 | ||