- markus@cvs.openbsd.org 2002/05/23 19:39:34 [ssh.c] add comment about ssh-keysign

commit: 9e5bb579f9ce4a6154c9e4123ecf075cea192f9f [log] [tgz]
author: Ben Lindstrom <mouring@eviladmin.org> Thu Jun 06 19:58:27 2002 +0000
committer: Ben Lindstrom <mouring@eviladmin.org> Thu Jun 06 19:58:27 2002 +0000
tree: 624b249474e7d5022e5de835996d29962ffec5bf
parent: 1bad256822046e2cc9e3a85a1c622e4ebaa2b97e [diff] [blame]
diff --git a/ssh.c b/ssh.c
index 2e479d5..0afdba7 100644
--- a/ssh.c
+++ b/ssh.c

@@ -40,7 +40,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: ssh.c,v 1.173 2002/05/23 19:24:30 markus Exp $");
+RCSID("$OpenBSD: ssh.c,v 1.174 2002/05/23 19:39:34 markus Exp $");
 
 #include <openssl/evp.h>
 #include <openssl/err.h>
@@ -683,6 +683,8 @@
 	 * in case we will need it later for combined rsa-rhosts
 	 * authentication. This must be done before releasing extra
 	 * privileges, because the file is only readable by root.
+	 * If we cannot access the private keys, load the public keys
+	 * instead and try to execute the ssh-keysign helper instead.
 	 */
 	sensitive_data.nkeys = 0;
 	sensitive_data.keys = NULL;
commit	9e5bb579f9ce4a6154c9e4123ecf075cea192f9f	[log] [tgz]
author	Ben Lindstrom <mouring@eviladmin.org>	Thu Jun 06 19:58:27 2002 +0000
committer	Ben Lindstrom <mouring@eviladmin.org>	Thu Jun 06 19:58:27 2002 +0000
tree	624b249474e7d5022e5de835996d29962ffec5bf
parent	1bad256822046e2cc9e3a85a1c622e4ebaa2b97e [diff] [blame]