diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2018-05-25 09:11:01 +0200 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2018-05-25 09:12:04 +0200 |
| commit | fbb4b5fd4f8e0bb89732670a01954e18b69e15ba (patch) | |
| tree | 6eca538c4f77ab046f2a8482b6cd7e2a6068ebef /auth.c | |
| parent | upstream: Fix return value confusion in several functions (readdir, (diff) | |
| download | openssh-fbb4b5fd4f8e0bb89732670a01954e18b69e15ba.tar.xz openssh-fbb4b5fd4f8e0bb89732670a01954e18b69e15ba.zip | |
upstream: Do not ban PTY allocation when a sshd session is restricted
because the user password is expired as it breaks password change dialog.
regression in openssh-7.7 reported by Daniel Wagner
OpenBSD-Commit-ID: 9fc09c584c6f1964b00595e3abe7f83db4d90d73
Diffstat (limited to 'auth.c')
| -rw-r--r-- | auth.c | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -1,4 +1,4 @@ -/* $OpenBSD: auth.c,v 1.127 2018/03/12 00:52:01 djm Exp $ */ +/* $OpenBSD: auth.c,v 1.128 2018/05/25 07:11:01 djm Exp $ */ /* * Copyright (c) 2000 Markus Friedl. All rights reserved. * @@ -1080,6 +1080,7 @@ auth_restrict_session(struct ssh *ssh) /* A blank sshauthopt defaults to permitting nothing */ restricted = sshauthopt_new(); + restricted->permit_pty_flag = 1; restricted->restricted = 1; if (auth_activate_options(ssh, restricted) != 0) |