diff options
| author |   djm <djm@openbsd.org> | 2009-11-10 02:58:56 +0000 |
|---|---|---|
| committer | djm <djm@openbsd.org> | 2009-11-10 02:58:56 +0000 |
| commit | 6b072df8fec6f49a8e917f6d3a8c99ace60b5520 (patch) | |
| tree | e1174bed90b0e3ad8f82154f2c71c2edb7fa1b9a | |
| parent | explain the constraints on LocalCommand some more so people don't (diff) | |
| download | wireguard-openbsd-6b072df8fec6f49a8e917f6d3a8c99ace60b5520.tar.xz wireguard-openbsd-6b072df8fec6f49a8e917f6d3a8c99ace60b5520.zip | |
clarify that StrictModes does not apply to ChrootDirectory. Permissions
and ownership are always checked when chrooting. bz#1532
| -rw-r--r-- | usr.bin/ssh/sshd_config.5 | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/usr.bin/ssh/sshd_config.5 b/usr.bin/ssh/sshd_config.5 index d30b4f6082c..1ae8e0fb945 100644 --- a/usr.bin/ssh/sshd_config.5 +++ b/usr.bin/ssh/sshd_config.5 @@ -34,8 +34,8 @@ .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" -.\" $OpenBSD: sshd_config.5,v 1.111 2009/10/28 21:45:08 jmc Exp $ -.Dd $Mdocdate: October 28 2009 $ +.\" $OpenBSD: sshd_config.5,v 1.112 2009/11/10 02:58:56 djm Exp $ +.Dd $Mdocdate: November 10 2009 $ .Dt SSHD_CONFIG 5 .Os .Sh NAME @@ -833,6 +833,9 @@ This is normally desirable because novices sometimes accidentally leave their directory or files world-writable. The default is .Dq yes . +Note that this does not apply to +.Cm ChrootDirectory , +whose permissions and ownership are checked unconditionally. .It Cm Subsystem Configures an external subsystem (e.g. file transfer daemon). Arguments should be a subsystem name and a command (with optional arguments) |