Updated: OpenSSH-3.4p1-1
Corinna Vinschen
vinschen@redhat.com
Thu Jun 27 09:35:00 GMT 2002
On Wed, Jun 26, 2002 at 06:50:10PM +0200, Corinna Vinschen wrote:
> I've updated the version of OpenSSH to 3.4p1-1.
>
> This is a official bug fix release.
>
> Note that the Cygwin source differs in one file from the official
> source since a last minute patch of the official OpenSSH maintainers
> did break privilege separation for Cygwin again :-( So the Cygwin
> source archive contains a patched sshd.c.
Since that message wasn't as clear as I hoped, I have to add the
following text:
The code added by the OpenSSH maintainers checked the /var/empty
directory for ownership 'root'. This is obviously not useful on
Cygwin.
The Cygwin version modifies that test so that if /var/empty resides
on a FAT or FAT32 filesystem, or if ntsec is not activated, the
ownership isn't tested at all. If /var/empty is on a NTFS filesystem
and ntsec is switched on, the ownership is checked against the user
running sshd. Hint: If sshd is started as service under SYSTEM
account, the ownership is checked to be SYSTEM...
Any further question as usual to cygwin@cygwin.com. Please don't
send private email.
--
Corinna Vinschen Please, send mails regarding Cygwin to
Cygwin Developer mailto:cygwin@cygwin.com
Red Hat, Inc.
More information about the Cygwin-announce
mailing list