Bugzilla – Attachment 1522 Details for
Bug 1433
sshd.pid has permissions of 666
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
Ensure sshd's umaske disallows at least group and world write.
openbsd-sshd-umask.patch (text/plain), 813 bytes, created by
Darren Tucker
on 2008-06-15 03:34:35 AEST
(
hide
)
Description:
Ensure sshd's umaske disallows at least group and world write.
Filename:
MIME Type:
Creator:
Darren Tucker
Created:
2008-06-15 03:34:35 AEST
Size:
813 bytes
patch
obsolete
>Index: sshd.c >=================================================================== >RCS file: /cvs/src/usr.bin/ssh/sshd.c,v >retrieving revision 1.361 >diff -u -p -r1.361 sshd.c >--- sshd.c 14 Jun 2008 15:49:48 -0000 1.361 >+++ sshd.c 14 Jun 2008 16:29:16 -0000 >@@ -1205,6 +1205,7 @@ main(int ac, char **av) > int remote_port; > char *line, *p, *cp; > int config_s[2] = { -1 , -1 }; >+ mode_t new_umask; > Key *key; > Authctxt *authctxt; > >@@ -1507,6 +1508,11 @@ main(int ac, char **av) > rexec_argv[rexec_argc] = "-R"; > rexec_argv[rexec_argc + 1] = NULL; > } >+ >+ /* Ensure that umask disallows at least group and world write */ >+ new_umask = umask(0077) | 0022; >+ (void) umask(new_umask); > > /* Initialize the log (it is reinitialized below in case we forked). */ > if (debug_flag && (!inetd_flag || rexeced_flag))
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1522">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 1433
:
1448
|
1449
| 1522