Bugzilla – Attachment 1429 Details for
Bug 440
Protocol 1 server key generated at start up even when P1 not used
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Generate ephemeral key in inetd mode only for protocol 1 connections
openssh-inetd-ephemeralkey.patch (text/plain), 971 bytes, created by
Darren Tucker
on 2008-01-01 01:37:15 AEDT
(
hide
)
Description:
Generate ephemeral key in inetd mode only for protocol 1 connections
Filename:
MIME Type:
Creator:
Darren Tucker
Created:
2008-01-01 01:37:15 AEDT
Size:
971 bytes
patch
obsolete
>Index: sshd.c >=================================================================== >RCS file: /usr/local/src/security/openssh/cvs/openssh/sshd.c,v >retrieving revision 1.365 >diff -u -p -r1.365 sshd.c >--- sshd.c 28 Dec 2007 15:43:51 -0000 1.365 >+++ sshd.c 31 Dec 2007 14:07:25 -0000 >@@ -1599,10 +1599,6 @@ main(int ac, char **av) > /* Get a connection, either from inetd or a listening TCP socket */ > if (inetd_flag) { > server_accept_inetd(&sock_in, &sock_out); >- >- if ((options.protocol & SSH_PROTO_1) && >- sensitive_data.server_key == NULL) >- generate_ephemeral_server_key(); > } else { > server_listen(); > >@@ -1772,6 +1768,10 @@ main(int ac, char **av) > > sshd_exchange_identification(sock_in, sock_out); > >+ /* In inetd mode, generate ephemeral key only for proto 1 connections */ >+ if (!compat20 && inetd_flag && sensitive_data.server_key == NULL) >+ generate_ephemeral_server_key(); >+ > packet_set_nonblocking(); > > /* allocate authentication context */
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1429">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Flags:
dtucker
:
ok?
Actions:
View
|
Diff
Attachments on
bug 440
: 1429