1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-11-14 23:46:10 +00:00
freebsd-ports/security/ssh2/files/patch-ai
Andrey A. Chernov 7a7ea0c942 Use setusercontext() now to set all sort of login things including env.
variables and priority!
Enable light debugging for compatibility with -v option
Don't print "No mail." - not in BSD login style.
1999-02-06 01:40:35 +00:00

47 lines
1.3 KiB
Plaintext

--- lib/sshsession/sshunixuser.c.orig Fri Jan 29 12:06:07 1999
+++ lib/sshsession/sshunixuser.c Sat Feb 6 03:00:28 1999
@@ -55,6 +55,10 @@
#include "tcbc2.h"
#endif /* HAVE_OSF1_C2_SECURITY */
+#ifdef HAVE_LOGIN_CAP_H
+#include <login_cap.h>
+#endif /* HAVE_LOGIN_CAP_H */
+
extern char *crypt(const char *key, const char *salt);
/* Data type to hold machine-specific user data. */
@@ -713,6 +717,24 @@
/* Set uid, gid, and groups. */
if (getuid() == UID_ROOT || geteuid() == UID_ROOT)
{
+#ifdef HAVE_LOGIN_CAP_H
+ struct passwd *pwd;
+
+ pwd = getpwnam(ssh_user_name(uc));
+ if (!pwd)
+ {
+ ssh_debug("ssh_user_become: getpwnam: %s", strerror(errno));
+ return FALSE;
+ }
+ if (setusercontext(NULL, pwd, ssh_user_uid(uc),
+ LOGIN_SETALL & ~(LOGIN_SETLOGIN|LOGIN_SETPATH|LOGIN_SETENV)) != 0)
+ {
+ ssh_debug("ssh_user_become: setusercontext: %s", strerror(errno));
+ return FALSE;
+ }
+ endpwent();
+ endgrent();
+#else
if (setgid(ssh_user_gid(uc)) < 0)
{
ssh_debug("ssh_user_become: setgid: %s", strerror(errno));
@@ -745,6 +767,7 @@
(int)ssh_user_uid(uc), strerror(errno));
return FALSE;
}
+#endif /* HAVE_LOGIN_CAP_H */
}
if (getuid() != ssh_user_uid(uc) || geteuid() != ssh_user_uid(uc))