Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AuthorizedKeysCommand: add an option for alternate owner (bug#2276) #3

Closed
wants to merge 1 commit into from
Closed

AuthorizedKeysCommand: add an option for alternate owner (bug#2276) #3

wants to merge 1 commit into from

Conversation

alonbl
Copy link

@alonbl alonbl commented Oct 7, 2014

Currently the owner of AuthorizedKeysCommand must be root.

A setup in which sshd is running as non root, can enjoy a complete
and secure environment even if the AuthorizedKeysCommand is owned by a
different user.

This patch adds AuthorizedKeysCommandOwner option to control the
ownership check of the AuthorizedKeysCommand. Default is root, so no
change is done without explicit request.

@alonbl
AuthorizedKeysCommand: add an option for alternate owner
1f09afc 
Currently the owner of AuthorizedKeysCommand must be root.

A setup in which sshd is running as non root, can enjoy a complete
and secure environment even if the AuthorizedKeysCommand is owned by a
different user.

This patch adds AuthorizedKeysCommandOwner option to control the
ownership check of the AuthorizedKeysCommand. Default is root, so no
change is done without explicit request.

Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com>
Bug-Url: https://bugzilla.mindrot.org/show_bug.cgi?id=2276
@alonbl alonbl force-pushed the unpriv-authorizedkeys-alt-user-bug2276 branch from aeee619 to 1f09afc Compare March 3, 2015 08:52
@alonbl
Copy link
Author

alonbl commented Mar 3, 2015

Rebased

@djmdjm
Copy link
Contributor

djmdjm commented Mar 3, 2015

We don't use pull requests at the moment - please file patches
on bugzilla.

On Tue, 3 Mar 2015, Alon Bar-Lev wrote:

Rebased

?
Reply to this email directly or view it on
GitHub.[AAKZKWlziUT8E8VTKApoJBizFwMSsuyPks5nxW64gaJpZM4CrxUN.gif]

@alonbl
Copy link
Author

alonbl commented Mar 3, 2015

On Tue, Mar 3, 2015 at 7:06 PM, Damien Miller notifications@github.com wrote:

We don't use pull requests at the moment - please file patches
on bugzilla.

Done.

@Jakuje Jakuje mentioned this pull request Nov 10, 2015
Closed
@djmdjm djmdjm closed this Feb 10, 2018
sk3l added a commit to sk3l/openssh-portable that referenced this pull request Aug 14, 2018
@sk3l
SFTP plugin WIP openssh#3
b74621c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@alonbl @djmdjm