From 5a5c2b9063fc3d7315424702b01527ccb0d4c0c9 Mon Sep 17 00:00:00 2001
From: Damien Miller <djm@mindrot.org>
Date: Tue, 31 Jul 2012 12:21:34 +1000
Subject:    - djm@cvs.openbsd.org 2012/07/10 02:19:15      [servconf.c
 servconf.h sshd.c sshd_config]      Turn on systrace sandboxing of pre-auth
 sshd by default for new installs      by shipping a config that overrides the
 current UsePrivilegeSeparation=yes      default. Make it easier to flip the
 default in the future by adding too.

---
 servconf.h | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'servconf.h')

diff --git a/servconf.h b/servconf.h
index c2eeed665..096d596d7 100644
--- a/servconf.h
+++ b/servconf.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: servconf.h,v 1.102 2012/06/19 18:25:28 markus Exp $ */
+/* $OpenBSD: servconf.h,v 1.103 2012/07/10 02:19:15 djm Exp $ */
 
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -39,7 +39,7 @@
 /* use_privsep */
 #define PRIVSEP_OFF		0
 #define PRIVSEP_ON		1
-#define PRIVSEP_SANDBOX		2
+#define PRIVSEP_NOSANDBOX	2
 
 #define DEFAULT_AUTH_FAIL_MAX	6	/* Default for MaxAuthTries */
 #define DEFAULT_SESSIONS_MAX	10	/* Default for MaxSessions */
-- 
cgit v1.2.3