Bugzilla – Attachment 1200 Details for
Bug 1249
pam_open_session called with dropped privs
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
move setpcred() to just before permanently_set_uid()
p (text/plain), 901 bytes, created by
David Leonard
on 2006-10-09 13:00:59 AEST
(
hide
)
Description:
move setpcred() to just before permanently_set_uid()
Filename:
MIME Type:
Creator:
David Leonard
Created:
2006-10-09 13:00:59 AEST
Size:
901 bytes
patch
obsolete
>Index: session.c >=================================================================== >--- session.c (revision 77) >+++ session.c (working copy) >@@ -58,6 +58,9 @@ > #include <stdlib.h> > #include <string.h> > #include <unistd.h> >+#ifdef HAVE_USERSEC_H >+# include <usersec.h> >+#endif > > #include "xmalloc.h" > #include "ssh.h" >@@ -1292,10 +1295,6 @@ > #endif /* HAVE_CYGWIN */ > { > >-#ifdef HAVE_SETPCRED >- if (setpcred(pw->pw_name, (char **)NULL) == -1) >- fatal("Failed to set process credentials"); >-#endif /* HAVE_SETPCRED */ > #ifdef HAVE_LOGIN_CAP > # ifdef __bsdi__ > setpgid(0, 0); >@@ -1367,6 +1366,10 @@ > exit(1); > } > #endif /* HAVE_LIBIAF && !BROKEN_LIBIAF */ >+#ifdef HAVE_SETPCRED >+ if (setpcred(pw->pw_name, (char **)NULL) == -1) >+ fatal("Failed to set process credentials"); >+#endif /* HAVE_SETPCRED */ > /* Permanently switch to the desired uid. */ > permanently_set_uid(pw); > #endif
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1200">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 1249
: 1200