From owner-freebsd-stable Tue Aug 13 23:16:11 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 36E7537B400 for ; Tue, 13 Aug 2002 23:16:09 -0700 (PDT) Received: from rshb.com.ru (rshb.com.ru [195.162.58.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8B80443E6E for ; Tue, 13 Aug 2002 23:16:08 -0700 (PDT) (envelope-from admin@rshb.com.ru) Received: by rshb.com.ru (Sendmail for UK-NC RT11-SJ, from userid 426) id F1AAB21144; Wed, 14 Aug 2002 13:16:06 +0700 (OMSST) Received: from rshb.com.ru (vampiro.rsb.local [192.168.1.111]) (using TLSv1 with cipher RC4-MD5 (128/128 bits)) (Client CN "Evgueni V. Gavrilov", Issuer "RSHB Omsk branch CA" (verified OK)) by rshb.com.ru (Sendmail for UK-NC RT11-SJ) with ESMTP id C582720F0B for ; Wed, 14 Aug 2002 13:16:06 +0700 (OMSST) Message-ID: <3D59F5A7.70607@rshb.com.ru> Date: Wed, 14 Aug 2002 13:16:07 +0700 From: "Evgueni V. Gavrilov" User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.0.0) Gecko/20020813 X-Accept-Language: ru, en MIME-Version: 1.0 To: freebsd-stable@freebsd.org Subject: gotcha with OpenSSH 3.4 and PrivilegeSeparation Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG hi I noticed a gotcha in OpenSSH 3.4 with privilege separation turned on. Upon loosing of remote client unprivileged process of sshd doesn't die. I tried to vary KeepAlive and/or ClientAlive* settings but nothing changed. The only way to manage the gotcha is to send -HUP to master of unprivileged process. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message