https://bugzilla.mindrot.org/show_bug.cgi?id=2755
Erik Sjölund <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[email protected] --- Comment #8 from Erik Sjölund <[email protected]> --- Comment on attachment 3028 --> https://bugzilla.mindrot.org/attachment.cgi?id=3028 sshd_config: allow directories in AuthorizedKeysFile= Comments about the patch authorized-keys-d.patch It seems all file operations are done as the priviledged user. It would be more secure to change identity to the login user before doing this. An example of changing identity can be seen in the function user_key_allowed2() in the file ssh/auth2-pubkey.c at the line: temporarily_use_uid(pw); -- You are receiving this mail because: You are watching the assignee of the bug. You are watching someone on the CC list of the bug. _______________________________________________ openssh-bugs mailing list [email protected] https://lists.mindrot.org/mailman/listinfo/openssh-bugs
