Damien Miller | 54343e9 | 2014-05-15 15:07:33 +1000 | [diff] [blame] | 1 | # $OpenBSD: login-timeout.sh,v 1.7 2014/03/13 20:44:49 djm Exp $ |
Darren Tucker | 017fd61 | 2004-02-29 20:30:17 +1100 | [diff] [blame] | 2 | # Placed in the Public Domain. |
| 3 | |
| 4 | tid="connect after login grace timeout" |
| 5 | |
| 6 | trace "test login grace with privsep" |
Damien Miller | 4f7f1a9 | 2014-02-28 10:24:11 +1100 | [diff] [blame] | 7 | cp $OBJ/sshd_config $OBJ/sshd_config.orig |
| 8 | grep -vi LoginGraceTime $OBJ/sshd_config.orig > $OBJ/sshd_config |
Darren Tucker | 017fd61 | 2004-02-29 20:30:17 +1100 | [diff] [blame] | 9 | echo "LoginGraceTime 10s" >> $OBJ/sshd_config |
| 10 | echo "MaxStartups 1" >> $OBJ/sshd_config |
| 11 | start_sshd |
| 12 | |
Darren Tucker | 894823e | 2005-03-07 18:34:04 +1100 | [diff] [blame] | 13 | (echo SSH-2.0-fake; sleep 60) | telnet 127.0.0.1 ${PORT} >/dev/null 2>&1 & |
Darren Tucker | 017fd61 | 2004-02-29 20:30:17 +1100 | [diff] [blame] | 14 | sleep 15 |
| 15 | ${SSH} -F $OBJ/ssh_config somehost true |
| 16 | if [ $? -ne 0 ]; then |
| 17 | fail "ssh connect after login grace timeout failed with privsep" |
| 18 | fi |
| 19 | |
Tim Rice | 722b8d1 | 2010-08-12 09:43:13 -0700 | [diff] [blame] | 20 | $SUDO kill `$SUDO cat $PIDFILE` |
Darren Tucker | 017fd61 | 2004-02-29 20:30:17 +1100 | [diff] [blame] | 21 | |
| 22 | trace "test login grace without privsep" |
Tim Rice | f45eff2 | 2004-03-07 10:40:01 -0800 | [diff] [blame] | 23 | echo "UsePrivilegeSeparation no" >> $OBJ/sshd_config |
Darren Tucker | 017fd61 | 2004-02-29 20:30:17 +1100 | [diff] [blame] | 24 | start_sshd |
Damien Miller | 54343e9 | 2014-05-15 15:07:33 +1000 | [diff] [blame] | 25 | sleep 1 |
Darren Tucker | 017fd61 | 2004-02-29 20:30:17 +1100 | [diff] [blame] | 26 | |
Darren Tucker | 894823e | 2005-03-07 18:34:04 +1100 | [diff] [blame] | 27 | (echo SSH-2.0-fake; sleep 60) | telnet 127.0.0.1 ${PORT} >/dev/null 2>&1 & |
Darren Tucker | 017fd61 | 2004-02-29 20:30:17 +1100 | [diff] [blame] | 28 | sleep 15 |
| 29 | ${SSH} -F $OBJ/ssh_config somehost true |
| 30 | if [ $? -ne 0 ]; then |
| 31 | fail "ssh connect after login grace timeout failed without privsep" |
| 32 | fi |