Date: Wed, 30 Jan 2002 20:52:49 -0800 (PST) From: Christopher Schulte <schulte+freebsd@nospam.schulte.org> To: freebsd-gnats-submit@freebsd.org Subject: docs/34479: bug in sshd manpage ( sshd and /var/run/nologin ) Message-ID: <200201310452.g0V4qn194875@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 34479
>Category: docs
>Synopsis: bug in sshd manpage ( sshd and /var/run/nologin )
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-doc
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: doc-bug
>Submitter-Id: current-users
>Arrival-Date: Wed Jan 30 21:00:00 PST 2002
>Closed-Date:
>Last-Modified:
>Originator: Christopher Schulte
>Release: FreeBSD 4.4, 4.5 / OpenSSH 2.3.0, 2.9.0
>Organization:
>Environment:
FreeBSD futon.schulte.org 4.5-RELEASE FreeBSD 4.5-RELEASE #0: Wed Jan 30 01:46:27 CST 2002
sshd version OpenSSH_2.9 FreeBSD localisations 20011202
>Description:
There appears to be a bug in the manpage of sshd(8). It tells us:
When a user successfully logs in, sshd does the following:
[snip 1,2]
3. Checks /etc/nologin and /var/run/nologin; if one exists, it
prints the contents and quits (unless root).
This is not the case, as I documented here:
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=277364+0+/usr/local/www/db/text/2002/freebsd-security/20020127.freebsd-security
>How-To-Repeat:
touch /var/run/nologin and try to ssh in as non-root.
>Fix:
Edit the man page to tell us /var/run/nologin only works if 'UseLogin' is defined, as suggested by this mailing list message:
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=280283+0+/usr/local/www/db/text/2002/freebsd-security/20020127.freebsd-security
>Release-Note:
>Audit-Trail:
>Unformatted:
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200201310452.g0V4qn194875>