Date: Fri, 07 Feb 2003 15:49:24 +0100 From: Dag-Erling Smorgrav <des@ofug.org> To: stable@freebsd.org Subject: Re: Problems with pam_ssh(8) and ssh-agent(1) after the OpenSSH upgrade Message-ID: <xzpk7gcno23.fsf@flood.ping.uio.no> In-Reply-To: <xzpk7gcplrh.fsf@flood.ping.uio.no> (Dag-Erling Smorgrav's message of "Fri, 07 Feb 2003 08:56:02 %2B0100") References: <xzpk7gcplrh.fsf@flood.ping.uio.no>
next in thread | previous in thread | raw e-mail | index | archive | help
Dag-Erling Smorgrav <des@ofug.org> writes:
> As some of you have already noticed and reported, ssh-agent doesn't
> work quite right when spawned by pam_ssh after the OpenSSH upgrade
> earlier this week.
Could somebody experiencing this problem please test the following
patch:
Index: ssh-agent.c
===================================================================
RCS file: /home/ncvs/src/crypto/openssh/ssh-agent.c,v
retrieving revision 1.16
diff -u -u -r1.16 ssh-agent.c
--- ssh-agent.c 29 Oct 2002 10:16:02 -0000 1.16
+++ ssh-agent.c 7 Feb 2003 07:09:47 -0000
@@ -955,6 +955,7 @@
/* drop */
setegid(getgid());
setgid(getgid());
+ setuid(geteuid());
SSLeay_add_all_algorithms();
After applying it, rebuild and reinstall ssh-agent as follows:
# cd /usr/src/secure/usr.bin/ssh-agent
# make && make install
DES
--
Dag-Erling Smorgrav - des@ofug.org
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xzpk7gcno23.fsf>