Theo de Raadt wrote on Mon, Jul 28, 2014 at 09:20:36AM -0600: > The mention of sendsyslog is not acceptable. When this man page shows up > on some other system, it will be an Xr pointing to nowhere. > > The information is too specific. Frankly, noone will care. Old systems > will continue doing what they have, which is the provided advice to have > /dev/log in the chroot space. In attempting to remove this advice for > OpenBSD-only, you are just plain being too specific. > > Meaning if someone leaves /dev/log in an OpenBSD chroot space, nothing at > all is harmed.
Fair enough, that makes the patch even simpler. OK? Ingo Index: sftp-server.8 =================================================================== RCS file: /cvs/src/usr.bin/ssh/sftp-server.8,v retrieving revision 1.25 diff -u -r1.25 sftp-server.8 --- sftp-server.8 14 Oct 2013 14:18:56 -0000 1.25 +++ sftp-server.8 28 Jul 2014 15:24:16 -0000 @@ -140,11 +140,11 @@ user's default mask. .El .Pp -For logging to work, +On some systems, .Nm must be able to access -.Pa /dev/log . -Use of +.Pa /dev/log +for logging to work, and use of .Nm in a chroot configuration therefore requires that .Xr syslogd 8 Index: sshd_config.5 =================================================================== RCS file: /cvs/src/usr.bin/ssh/sshd_config.5,v retrieving revision 1.175 diff -u -r1.175 sshd_config.5 --- sshd_config.5 15 Jul 2014 15:54:14 -0000 1.175 +++ sshd_config.5 28 Jul 2014 15:24:17 -0000 @@ -345,9 +345,9 @@ .Dq sftp , no additional configuration of the environment is necessary if the in-process sftp server is used, -though sessions which use logging do require +though sessions which use logging may require .Pa /dev/log -inside the chroot directory (see +inside the chroot directory on some operating systems (see .Xr sftp-server 8 for details). .Pp
