diff options
author | djm@openbsd.org <djm@openbsd.org> | 2018-05-25 07:11:01 +0000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2018-05-25 17:12:04 +1000 |
commit | fbb4b5fd4f8e0bb89732670a01954e18b69e15ba (patch) | |
tree | 6eca538c4f77ab046f2a8482b6cd7e2a6068ebef | |
parent | f6a59a22b0c157c4c4e5fd7232f868138223be64 (diff) |
upstream: Do not ban PTY allocation when a sshd session is restricted
because the user password is expired as it breaks password change dialog.
regression in openssh-7.7 reported by Daniel Wagner
OpenBSD-Commit-ID: 9fc09c584c6f1964b00595e3abe7f83db4d90d73
-rw-r--r-- | auth.c | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: auth.c,v 1.127 2018/03/12 00:52:01 djm Exp $ */ | 1 | /* $OpenBSD: auth.c,v 1.128 2018/05/25 07:11:01 djm Exp $ */ |
2 | /* | 2 | /* |
3 | * Copyright (c) 2000 Markus Friedl. All rights reserved. | 3 | * Copyright (c) 2000 Markus Friedl. All rights reserved. |
4 | * | 4 | * |
@@ -1080,6 +1080,7 @@ auth_restrict_session(struct ssh *ssh) | |||
1080 | 1080 | ||
1081 | /* A blank sshauthopt defaults to permitting nothing */ | 1081 | /* A blank sshauthopt defaults to permitting nothing */ |
1082 | restricted = sshauthopt_new(); | 1082 | restricted = sshauthopt_new(); |
1083 | restricted->permit_pty_flag = 1; | ||
1083 | restricted->restricted = 1; | 1084 | restricted->restricted = 1; |
1084 | 1085 | ||
1085 | if (auth_activate_options(ssh, restricted) != 0) | 1086 | if (auth_activate_options(ssh, restricted) != 0) |