diff options
Diffstat (limited to 'servconf.c')
| -rw-r--r-- | servconf.c | 16 |
1 files changed, 12 insertions, 4 deletions
diff --git a/servconf.c b/servconf.c index f311ae48d..e3939df40 100644 --- a/servconf.c +++ b/servconf.c | |||
| @@ -10,7 +10,7 @@ | |||
| 10 | */ | 10 | */ |
| 11 | 11 | ||
| 12 | #include "includes.h" | 12 | #include "includes.h" |
| 13 | RCSID("$OpenBSD: servconf.c,v 1.112 2002/06/23 09:46:51 deraadt Exp $"); | 13 | RCSID("$OpenBSD: servconf.c,v 1.115 2002/09/04 18:52:42 stevesk Exp $"); |
| 14 | 14 | ||
| 15 | #if defined(KRB4) | 15 | #if defined(KRB4) |
| 16 | #include <krb.h> | 16 | #include <krb.h> |
| @@ -101,6 +101,7 @@ initialize_server_options(ServerOptions *options) | |||
| 101 | options->kbd_interactive_authentication = -1; | 101 | options->kbd_interactive_authentication = -1; |
| 102 | options->challenge_response_authentication = -1; | 102 | options->challenge_response_authentication = -1; |
| 103 | options->permit_empty_passwd = -1; | 103 | options->permit_empty_passwd = -1; |
| 104 | options->permit_user_env = -1; | ||
| 104 | options->use_login = -1; | 105 | options->use_login = -1; |
| 105 | options->compression = -1; | 106 | options->compression = -1; |
| 106 | options->allow_tcp_forwarding = -1; | 107 | options->allow_tcp_forwarding = -1; |
| @@ -158,7 +159,7 @@ fill_default_server_options(ServerOptions *options) | |||
| 158 | if (options->server_key_bits == -1) | 159 | if (options->server_key_bits == -1) |
| 159 | options->server_key_bits = 768; | 160 | options->server_key_bits = 768; |
| 160 | if (options->login_grace_time == -1) | 161 | if (options->login_grace_time == -1) |
| 161 | options->login_grace_time = 600; | 162 | options->login_grace_time = 120; |
| 162 | if (options->key_regeneration_time == -1) | 163 | if (options->key_regeneration_time == -1) |
| 163 | options->key_regeneration_time = 3600; | 164 | options->key_regeneration_time = 3600; |
| 164 | if (options->permit_root_login == PERMIT_NOT_SET) | 165 | if (options->permit_root_login == PERMIT_NOT_SET) |
| @@ -223,6 +224,8 @@ fill_default_server_options(ServerOptions *options) | |||
| 223 | options->challenge_response_authentication = 1; | 224 | options->challenge_response_authentication = 1; |
| 224 | if (options->permit_empty_passwd == -1) | 225 | if (options->permit_empty_passwd == -1) |
| 225 | options->permit_empty_passwd = 0; | 226 | options->permit_empty_passwd = 0; |
| 227 | if (options->permit_user_env == -1) | ||
| 228 | options->permit_user_env = 0; | ||
| 226 | if (options->use_login == -1) | 229 | if (options->use_login == -1) |
| 227 | options->use_login = 0; | 230 | options->use_login = 0; |
| 228 | if (options->compression == -1) | 231 | if (options->compression == -1) |
| @@ -257,7 +260,7 @@ fill_default_server_options(ServerOptions *options) | |||
| 257 | if (use_privsep == -1) | 260 | if (use_privsep == -1) |
| 258 | use_privsep = 1; | 261 | use_privsep = 1; |
| 259 | 262 | ||
| 260 | #if !defined(HAVE_MMAP_ANON_SHARED) | 263 | #ifndef HAVE_MMAP |
| 261 | if (use_privsep && options->compression == 1) { | 264 | if (use_privsep && options->compression == 1) { |
| 262 | error("This platform does not support both privilege " | 265 | error("This platform does not support both privilege " |
| 263 | "separation and compression"); | 266 | "separation and compression"); |
| @@ -291,7 +294,7 @@ typedef enum { | |||
| 291 | sPrintMotd, sPrintLastLog, sIgnoreRhosts, | 294 | sPrintMotd, sPrintLastLog, sIgnoreRhosts, |
| 292 | sX11Forwarding, sX11DisplayOffset, sX11UseLocalhost, | 295 | sX11Forwarding, sX11DisplayOffset, sX11UseLocalhost, |
| 293 | sStrictModes, sEmptyPasswd, sKeepAlives, | 296 | sStrictModes, sEmptyPasswd, sKeepAlives, |
| 294 | sUseLogin, sAllowTcpForwarding, sCompression, | 297 | sPermitUserEnvironment, sUseLogin, sAllowTcpForwarding, sCompression, |
| 295 | sAllowUsers, sDenyUsers, sAllowGroups, sDenyGroups, | 298 | sAllowUsers, sDenyUsers, sAllowGroups, sDenyGroups, |
| 296 | sIgnoreUserKnownHosts, sCiphers, sMacs, sProtocol, sPidFile, | 299 | sIgnoreUserKnownHosts, sCiphers, sMacs, sProtocol, sPidFile, |
| 297 | sGatewayPorts, sPubkeyAuthentication, sXAuthLocation, sSubsystem, sMaxStartups, | 300 | sGatewayPorts, sPubkeyAuthentication, sXAuthLocation, sSubsystem, sMaxStartups, |
| @@ -354,6 +357,7 @@ static struct { | |||
| 354 | { "xauthlocation", sXAuthLocation }, | 357 | { "xauthlocation", sXAuthLocation }, |
| 355 | { "strictmodes", sStrictModes }, | 358 | { "strictmodes", sStrictModes }, |
| 356 | { "permitemptypasswords", sEmptyPasswd }, | 359 | { "permitemptypasswords", sEmptyPasswd }, |
| 360 | { "permituserenvironment", sPermitUserEnvironment }, | ||
| 357 | { "uselogin", sUseLogin }, | 361 | { "uselogin", sUseLogin }, |
| 358 | { "compression", sCompression }, | 362 | { "compression", sCompression }, |
| 359 | { "keepalive", sKeepAlives }, | 363 | { "keepalive", sKeepAlives }, |
| @@ -713,6 +717,10 @@ parse_flag: | |||
| 713 | intptr = &options->permit_empty_passwd; | 717 | intptr = &options->permit_empty_passwd; |
| 714 | goto parse_flag; | 718 | goto parse_flag; |
| 715 | 719 | ||
| 720 | case sPermitUserEnvironment: | ||
| 721 | intptr = &options->permit_user_env; | ||
| 722 | goto parse_flag; | ||
| 723 | |||
| 716 | case sUseLogin: | 724 | case sUseLogin: |
| 717 | intptr = &options->use_login; | 725 | intptr = &options->use_login; |
| 718 | goto parse_flag; | 726 | goto parse_flag; |