From de6f2de8ad528cd8cdfb4b4dc5de9e7ba086c957 Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@mindrot.org>
Date: Wed, 4 Sep 2002 16:37:26 +1000
Subject:    - markus@cvs.openbsd.org 2002/08/22 21:33:58      [auth1.c
 auth2.c]      auth_root_allowed() is handled by the monitor in the privsep
 case,      so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325

---
 auth2.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'auth2.c')

diff --git a/auth2.c b/auth2.c
index 3b47a6d0a..1cb9769ff 100644
--- a/auth2.c
+++ b/auth2.c
@@ -23,7 +23,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: auth2.c,v 1.94 2002/06/30 21:54:16 deraadt Exp $");
+RCSID("$OpenBSD: auth2.c,v 1.95 2002/08/22 21:33:58 markus Exp $");
 
 #include "ssh2.h"
 #include "xmalloc.h"
@@ -205,7 +205,8 @@ userauth_finish(Authctxt *authctxt, int authenticated, char *method)
 		    authctxt->user);
 
 	/* Special handling for root */
-	if (authenticated && authctxt->pw->pw_uid == 0 &&
+	if (!use_privsep &&
+	    authenticated && authctxt->pw->pw_uid == 0 &&
 	    !auth_root_allowed(method))
 		authenticated = 0;
 
-- 
cgit v1.2.3