version 1.29, 1999/11/14 21:45:07 |
version 1.30, 1999/11/15 21:05:03 |
|
|
them. Also, extra privileges could make it very hard to read identity |
them. Also, extra privileges could make it very hard to read identity |
files and other non-world-readable files from the user's home directory |
files and other non-world-readable files from the user's home directory |
if it happens to be on a NFS volume where root is mapped to nobody. */ |
if it happens to be on a NFS volume where root is mapped to nobody. */ |
|
|
|
/* Note that some legacy systems need to postpone the following call to |
|
permanently_set_uid() until the private hostkey is destroyed with |
|
RSA_free(). Otherwise the calling user could ptrace() the process, |
|
read the private hostkey and impersonate the host. OpenBSD does not |
|
allow ptracing of setuid processes. */ |
|
|
permanently_set_uid(original_real_uid); |
permanently_set_uid(original_real_uid); |
|
|
/* Now that we are back to our own permissions, create ~/.ssh directory |
/* Now that we are back to our own permissions, create ~/.ssh directory |