diff options
author | Damien Miller <djm@mindrot.org> | 2011-08-17 12:09:19 +1000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2011-08-17 12:09:19 +1000 |
commit | faf4d80420af1eb5074a1ae2ce9fc3e1bf9850c0 (patch) | |
tree | ef7af9804638d529aa8471bc985151be430d165b /regress | |
parent | 9231c8bde4169895243a9f3e2dff09ae795c0d21 (diff) |
- markus@cvs.openbsd.org 2011/06/30 22:44:43
[connect-privsep.sh]
test with sandbox enabled; ok djm@
Diffstat (limited to 'regress')
-rw-r--r-- | regress/connect-privsep.sh | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/regress/connect-privsep.sh b/regress/connect-privsep.sh index d23cadba5..e7f938981 100644 --- a/regress/connect-privsep.sh +++ b/regress/connect-privsep.sh | |||
@@ -1,8 +1,9 @@ | |||
1 | # $OpenBSD: connect-privsep.sh,v 1.1 2002/03/21 21:45:07 markus Exp $ | 1 | # $OpenBSD: connect-privsep.sh,v 1.2 2011/06/30 22:44:43 markus Exp $ |
2 | # Placed in the Public Domain. | 2 | # Placed in the Public Domain. |
3 | 3 | ||
4 | tid="proxy connect with privsep" | 4 | tid="proxy connect with privsep" |
5 | 5 | ||
6 | cp $OBJ/sshd_proxy $OBJ/sshd_proxy.orig | ||
6 | echo 'UsePrivilegeSeparation yes' >> $OBJ/sshd_proxy | 7 | echo 'UsePrivilegeSeparation yes' >> $OBJ/sshd_proxy |
7 | 8 | ||
8 | for p in 1 2; do | 9 | for p in 1 2; do |
@@ -11,3 +12,13 @@ for p in 1 2; do | |||
11 | fail "ssh privsep+proxyconnect protocol $p failed" | 12 | fail "ssh privsep+proxyconnect protocol $p failed" |
12 | fi | 13 | fi |
13 | done | 14 | done |
15 | |||
16 | cp $OBJ/sshd_proxy.orig $OBJ/sshd_proxy | ||
17 | echo 'UsePrivilegeSeparation sandbox' >> $OBJ/sshd_proxy | ||
18 | |||
19 | for p in 1 2; do | ||
20 | ${SSH} -$p -F $OBJ/ssh_proxy 999.999.999.999 true | ||
21 | if [ $? -ne 0 ]; then | ||
22 | fail "ssh privsep/sandbox+proxyconnect protocol $p failed" | ||
23 | fi | ||
24 | done | ||