summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--ssh-agent.115
1 files changed, 15 insertions, 0 deletions
diff --git a/ssh-agent.1 b/ssh-agent.1
index a1e634fe0..f2c408070 100644
--- a/ssh-agent.1
+++ b/ssh-agent.1
@@ -172,6 +172,21 @@ environment variable holds the agent's process ID.
172.Pp 172.Pp
173The agent exits automatically when the command given on the command 173The agent exits automatically when the command given on the command
174line terminates. 174line terminates.
175.Pp
176In Debian,
177.Nm
178is installed with the set-group-id bit set, to prevent
179.Xr ptrace 2
180attacks retrieving private key material.
181This has the side-effect of causing the run-time linker to remove certain
182environment variables which might have security implications for set-id
183programs, including
184.Ev LD_PRELOAD ,
185.Ev LD_LIBRARY_PATH ,
186and
187.Ev TMPDIR .
188If you need to set any of these environment variables, you will need to do
189so in the program executed by ssh-agent.
175.Sh FILES 190.Sh FILES
176.Bl -tag -width Ds 191.Bl -tag -width Ds
177.It Pa $TMPDIR/ssh-XXXXXXXXXX/agent.\*(Ltppid\*(Gt 192.It Pa $TMPDIR/ssh-XXXXXXXXXX/agent.\*(Ltppid\*(Gt