From d45fe334a81e6b83a0320725101cac7fd5598881 Mon Sep 17 00:00:00 2001
From: markus <markus@openbsd.org>
Date: Mon, 12 Aug 2002 10:46:35 +0000
Subject: make ssh-agent setgid, disallow ptrace.

---
 usr.bin/ssh/ssh-agent.c | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

(limited to 'usr.bin/ssh/ssh-agent.c')

diff --git a/usr.bin/ssh/ssh-agent.c b/usr.bin/ssh/ssh-agent.c
index 6ed21746446..48d7ce2e413 100644
--- a/usr.bin/ssh/ssh-agent.c
+++ b/usr.bin/ssh/ssh-agent.c
@@ -35,7 +35,7 @@
 
 #include "includes.h"
 #include <sys/queue.h>
-RCSID("$OpenBSD: ssh-agent.c,v 1.98 2002/07/21 18:07:45 stevesk Exp $");
+RCSID("$OpenBSD: ssh-agent.c,v 1.99 2002/08/12 10:46:35 markus Exp $");
 
 #include <openssl/evp.h>
 #include <openssl/md5.h>
@@ -934,6 +934,10 @@ main(int ac, char **av)
 	pid_t pid;
 	char pidstrbuf[1 + 3 * sizeof pid];
 
+	/* drop */
+	setegid(getgid());
+	setgid(getgid());
+
 	SSLeay_add_all_algorithms();
 
 	while ((ch = getopt(ac, av, "cdksa:")) != -1) {
-- 
cgit v1.2.3-59-g8ed1b