Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / openssh / 17401b6b772213ae466cb3ac287b4980ff9f7d0d^! / . / ChangeLog
commit17401b6b772213ae466cb3ac287b4980ff9f7d0d[log] [tgz]
authorBen Lindstrom <mouring@eviladmin.org>Wed May 15 16:17:56 2002 +0000
committerBen Lindstrom <mouring@eviladmin.org>Wed May 15 16:17:56 2002 +0000
tree8dde6c72117e92007bbfd4ae6f7d17eecb309b35
parenta574cda45b5d3c3363520ef9e4aa3aaa5888c078 [diff] [blame]
   - millert@cvs.openbsd.org 2002/05/13 15:53:19
     [sshd.c]
     Call setsid() in the child after sshd accepts the connection and forks.
     This is needed for privsep which calls setlogin() when it changes uids.
     Without this, there is a race where the login name of an existing
     connection, as returned by getlogin(), may be changed to the privsep
     user (sshd).  markus@ OK

diff --git a/ChangeLog b/ChangeLog
index 2559e19..eb05cae 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -17,6 +17,13 @@
      [auth-options.c auth.c auth.h]
      move the packet_send_debug handling from auth-options.c to auth.c; 
      ok provos@
+   - millert@cvs.openbsd.org 2002/05/13 15:53:19
+     [sshd.c]
+     Call setsid() in the child after sshd accepts the connection and forks.
+     This is needed for privsep which calls setlogin() when it changes uids.
+     Without this, there is a race where the login name of an existing 
+     connection, as returned by getlogin(), may be changed to the privsep 
+     user (sshd).  markus@ OK
 
 20020514
  - (stevesk) [README.privsep] PAM+privsep works with Solaris 8.
@@ -621,4 +628,4 @@
  - (stevesk) entropy.c: typo in debug message
  - (djm) ssh-keygen -i needs seeded RNG; report from markus@
 
-$Id: ChangeLog,v 1.2126 2002/05/15 16:16:14 mouring Exp $
+$Id: ChangeLog,v 1.2127 2002/05/15 16:17:56 mouring Exp $