auth_root_allowed() is handled by the monitor in the privsep case,

so skip this for use_privsep, ok stevesk@, fixes bugzilla #387/325
author: markus <markus@openbsd.org> 2002-08-22 21:33:58 +0000
committer: markus <markus@openbsd.org> 2002-08-22 21:33:58 +0000
commit: 149cbe98a55c0c8cfe574dc8b260b7a74ef23784 (patch)
tree: 042a1729353a93d771336004827d655bc0e43b7b /usr.bin/ssh/auth1.c
parent: shutdown(SHUT_RDWR) not needed before close here; ok markus@ (diff)
download: wireguard-openbsd-149cbe98a55c0c8cfe574dc8b260b7a74ef23784.tar.xz
wireguard-openbsd-149cbe98a55c0c8cfe574dc8b260b7a74ef23784.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/usr.bin/ssh/auth1.c b/usr.bin/ssh/auth1.c
index 4858aaebaf5..661ed5a176c 100644
--- a/usr.bin/ssh/auth1.c
+++ b/usr.bin/ssh/auth1.c
@@ -10,7 +10,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: auth1.c,v 1.41 2002/06/19 00:27:55 deraadt Exp $");
+RCSID("$OpenBSD: auth1.c,v 1.42 2002/08/22 21:33:58 markus Exp $");
 
 #include "xmalloc.h"
 #include "rsa.h"
@@ -295,7 +295,8 @@ do_authloop(Authctxt *authctxt)
 			    authctxt->user);
 
 		/* Special handling for root */
-		if (authenticated && authctxt->pw->pw_uid == 0 &&
+		if (!use_privsep &&
+		    authenticated && authctxt->pw->pw_uid == 0 &&
 		    !auth_root_allowed(get_authname(type)))
 			authenticated = 0;
author	markus <markus@openbsd.org>	2002-08-22 21:33:58 +0000
committer	markus <markus@openbsd.org>	2002-08-22 21:33:58 +0000
commit	149cbe98a55c0c8cfe574dc8b260b7a74ef23784 (patch)
tree	042a1729353a93d771336004827d655bc0e43b7b /usr.bin/ssh/auth1.c
parent	shutdown(SHUT_RDWR) not needed before close here; ok markus@ (diff)
download	wireguard-openbsd-149cbe98a55c0c8cfe574dc8b260b7a74ef23784.tar.xz wireguard-openbsd-149cbe98a55c0c8cfe574dc8b260b7a74ef23784.zip