diff options
author | Ben Lindstrom <mouring@eviladmin.org> | 2002-11-09 15:52:31 +0000 |
---|---|---|
committer | Ben Lindstrom <mouring@eviladmin.org> | 2002-11-09 15:52:31 +0000 |
commit | b6df73b06abb12772d816e64f210ad30ebaf54cb (patch) | |
tree | b3a9026cac5d7f9213ef0685c70ef02b584d4971 /ssh-keysign.c | |
parent | c2faa4a504188d8fdf27467fca136f69e451fc27 (diff) |
- markus@cvs.openbsd.org 2002/11/07 22:08:07
[readconf.c readconf.h ssh-keysign.8 ssh-keysign.c]
we cannot use HostbasedAuthentication for enabling ssh-keysign(8),
because HostbasedAuthentication might be enabled based on the
target host and ssh-keysign(8) does not know the remote hostname
and not trust ssh(1) about the hostname, so we add a new option
EnableSSHKeysign; ok djm@, report from zierke@informatik.uni-hamburg.de
Diffstat (limited to 'ssh-keysign.c')
-rw-r--r-- | ssh-keysign.c | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/ssh-keysign.c b/ssh-keysign.c index 79aee17c0..3288eb182 100644 --- a/ssh-keysign.c +++ b/ssh-keysign.c | |||
@@ -22,7 +22,7 @@ | |||
22 | * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 22 | * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
23 | */ | 23 | */ |
24 | #include "includes.h" | 24 | #include "includes.h" |
25 | RCSID("$OpenBSD: ssh-keysign.c,v 1.7 2002/07/03 14:21:05 markus Exp $"); | 25 | RCSID("$OpenBSD: ssh-keysign.c,v 1.8 2002/11/07 22:08:07 markus Exp $"); |
26 | 26 | ||
27 | #include <openssl/evp.h> | 27 | #include <openssl/evp.h> |
28 | #include <openssl/rand.h> | 28 | #include <openssl/rand.h> |
@@ -168,8 +168,8 @@ main(int argc, char **argv) | |||
168 | initialize_options(&options); | 168 | initialize_options(&options); |
169 | (void)read_config_file(_PATH_HOST_CONFIG_FILE, "", &options); | 169 | (void)read_config_file(_PATH_HOST_CONFIG_FILE, "", &options); |
170 | fill_default_options(&options); | 170 | fill_default_options(&options); |
171 | if (options.hostbased_authentication != 1) | 171 | if (options.enable_ssh_keysign != 1) |
172 | fatal("Hostbased authentication not enabled in %s", | 172 | fatal("ssh-keysign not enabled in %s", |
173 | _PATH_HOST_CONFIG_FILE); | 173 | _PATH_HOST_CONFIG_FILE); |
174 | 174 | ||
175 | if (key_fd[0] == -1 && key_fd[1] == -1) | 175 | if (key_fd[0] == -1 && key_fd[1] == -1) |