From 3b68bdbc5f38de96fa27fcca31b62caa487ed31f Mon Sep 17 00:00:00 2001
From: Colin Watson <cjwatson@debian.org>
Date: Fri, 5 Mar 2004 16:37:25 +0000
Subject: Remove README.Debian warnings about privsep not working properly with
 PAM.

---
 debian/README.Debian | 10 +++-------
 1 file changed, 3 insertions(+), 7 deletions(-)

diff --git a/debian/README.Debian b/debian/README.Debian
index bb1f7cf48..cb1444a47 100644
--- a/debian/README.Debian
+++ b/debian/README.Debian
@@ -33,15 +33,11 @@ Privilege Separation
 
 As of 3.3, openssh has employed privilege separation to reduce the
 quantity of code that runs as root, thereby reducing the impact of
-some security holes in sshd.
+some security holes in sshd. This now also works properly with PAM.
 
-Unfortunately, privilege separation interacts badly with PAM. Any PAM
-session modules that need to run as root (pam_mkhomedir, for example)
-will fail, and PAM keyboard-interactive authentication won't work.
-
-Privilege separation is turned on by default, so if you decide you
+Privilege separation is turned on by default, so, if you decide you
 want it turned off, you need to add "UsePrivilegeSeparation no" to
-/etc/ssh/sshd_config
+/etc/ssh/sshd_config.
 
 PermitRootLogin set to yes
 --------------------------
-- 
cgit v1.2.3