diff options
Diffstat (limited to 'regress/connect-privsep.sh')
| -rw-r--r-- | regress/connect-privsep.sh | 14 |
1 files changed, 13 insertions, 1 deletions
diff --git a/regress/connect-privsep.sh b/regress/connect-privsep.sh index d23cadba5..11fb9aef9 100644 --- a/regress/connect-privsep.sh +++ b/regress/connect-privsep.sh | |||
| @@ -1,8 +1,9 @@ | |||
| 1 | # $OpenBSD: connect-privsep.sh,v 1.1 2002/03/21 21:45:07 markus Exp $ | 1 | # $OpenBSD: connect-privsep.sh,v 1.2 2011/06/30 22:44:43 markus Exp $ |
| 2 | # Placed in the Public Domain. | 2 | # Placed in the Public Domain. |
| 3 | 3 | ||
| 4 | tid="proxy connect with privsep" | 4 | tid="proxy connect with privsep" |
| 5 | 5 | ||
| 6 | cp $OBJ/sshd_proxy $OBJ/sshd_proxy.orig | ||
| 6 | echo 'UsePrivilegeSeparation yes' >> $OBJ/sshd_proxy | 7 | echo 'UsePrivilegeSeparation yes' >> $OBJ/sshd_proxy |
| 7 | 8 | ||
| 8 | for p in 1 2; do | 9 | for p in 1 2; do |
| @@ -11,3 +12,14 @@ for p in 1 2; do | |||
| 11 | fail "ssh privsep+proxyconnect protocol $p failed" | 12 | fail "ssh privsep+proxyconnect protocol $p failed" |
| 12 | fi | 13 | fi |
| 13 | done | 14 | done |
| 15 | |||
| 16 | cp $OBJ/sshd_proxy.orig $OBJ/sshd_proxy | ||
| 17 | echo 'UsePrivilegeSeparation sandbox' >> $OBJ/sshd_proxy | ||
| 18 | |||
| 19 | for p in 1 2; do | ||
| 20 | ${SSH} -$p -F $OBJ/ssh_proxy 999.999.999.999 true | ||
| 21 | if [ $? -ne 0 ]; then | ||
| 22 | # XXX replace this with fail once sandbox has stabilised | ||
| 23 | warn "ssh privsep/sandbox+proxyconnect protocol $p failed" | ||
| 24 | fi | ||
| 25 | done | ||