upgrading openssh 3.8.1p1-1 -> 3.9p1-1 breaks privilege separation

Corinna Vinschen corinna-cygwin@cygwin.com
Thu Aug 19 12:47:00 GMT 2004


On Aug 18 15:35, David Rothenberger wrote:
> Yes.  As far as I know, everything is configured to use privilege 
> separation.  But the fact that 3.9p1-1 worked for me without adding the 
> -r switch made me wonder whether sshd was really doing privilege 
> separation.  Is there any debugging output that indicates privsep is in 
> use?  Can I tell using ps?  Is there any way to tell for sure that it is 
> being used?

When stracing it, you'll see that two child processes are created by
sshd.  But the "privilege separated" process exits after it has done
it's job so there's no additional process, except for a fraction of
a second.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          mailto:cygwin@cygwin.com
Red Hat, Inc.

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/



More information about the Cygwin mailing list