[prev in list] [next in list] [prev in thread] [next in thread]
List: openssh-unix-dev
Subject: Re: Announce: OpenSSH 5.4 released
From: Corinna Vinschen <vinschen () redhat ! com>
Date: 2010-03-12 10:29:36
Message-ID: 20100312102936.GA23426 () calimero ! vinschen ! de
[Download RAW message or body]
Hi Damien,
On Mar 12 10:45, Damien Miller wrote:
> On Thu, 11 Mar 2010, Corinna Vinschen wrote:
> > There appears to be a new bug in OpenSSH affecting the sshd_config
> > setting AuthorizedKeysFile.
> >
> > The default entry in sshd_config is commented out:
> >
> > #AuthorizedKeysFile .ssh/authorized_keys
> >
> > Now, if you remove the # and restart sshd, it's suddenly impossible
> > to login with public key authentication. Running sshd in debugging
> > mode shows entries like these:
> >
> > temporarily_use_uid: 500/513 (e=1105/513)
> > trying public key file //.ssh/authorized_keys
> > restore_uid: 1105/513
> > temporarily_use_uid: 500/513 (e=1105/513)
> > trying public key file //.ssh/authorized_keys
> > restore_uid: 1105/513
> > Failed publickey for some_user from 192.168.77.88 port 2864 ssh2
>
> Confirmed. Here is a patch:
Thanks for the patch, but, erm... is that really the right patch you
send me there?
The code which replaces the `goto parse_filename', is *exactly*
identical to the code running after the parse_filename label. It would
have been a surprise if that had actually changed the behaviour and, in
fact, it didn't.
I'm also a bit puizzled about the revision number of servconf.c. It's
1.204, but `cvs stat servconf.c' shows a revision number of 1.199 for
me. Do you work in a repository with changes not in the public
repository?
Corinna
--
Corinna Vinschen
Cygwin Project Co-Leader
Red Hat
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic