diff options
| author |   stevesk <stevesk@openbsd.org> | 2002-06-22 16:40:19 +0000 |
|---|---|---|
| committer | stevesk <stevesk@openbsd.org> | 2002-06-22 16:40:19 +0000 |
| commit | 4d4ddda37f95f9a455efe42bd0eee9aff53a6beb (patch) | |
| tree | c508c796aea0e40321c5fe06a1ad13e550d02836 | |
| parent | add /var/empty in FILES section (diff) | |
| download | wireguard-openbsd-4d4ddda37f95f9a455efe42bd0eee9aff53a6beb.tar.xz wireguard-openbsd-4d4ddda37f95f9a455efe42bd0eee9aff53a6beb.zip | |
check /var/empty owner mode; ok provos@
| -rw-r--r-- | usr.bin/ssh/sshd.c | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/usr.bin/ssh/sshd.c b/usr.bin/ssh/sshd.c index 0f04704f141..b8671e966a8 100644 --- a/usr.bin/ssh/sshd.c +++ b/usr.bin/ssh/sshd.c @@ -42,7 +42,7 @@ */ #include "includes.h" -RCSID("$OpenBSD: sshd.c,v 1.246 2002/06/20 23:05:56 markus Exp $"); +RCSID("$OpenBSD: sshd.c,v 1.247 2002/06/22 16:40:19 stevesk Exp $"); #include <openssl/dh.h> #include <openssl/bn.h> @@ -983,6 +983,9 @@ main(int ac, char **av) (S_ISDIR(st.st_mode) == 0)) fatal("Missing privilege separation directory: %s", _PATH_PRIVSEP_CHROOT_DIR); + if (st.st_uid != 0 || (st.st_mode & (S_IWGRP|S_IWOTH)) != 0) + fatal("Bad owner or mode for %s", + _PATH_PRIVSEP_CHROOT_DIR); } /* Configuration looks good, so exit if in test mode. */ |