From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Date: Fri, 27 May 2005 13:24:49 +0400 From: "Dmitry V. Levin" To: ALT Linux Sisyphus discussion list Subject: Re: [sisyphus] openssh update Message-ID: <20050527092449.GA22244@basalt.office.altlinux.org> Mail-Followup-To: ALT Linux Sisyphus discussion list References: <20050526150101.GA23071@basalt.office.altlinux.org> <20050526171806.GA26949@basalt.office.altlinux.org> <20050526182826.GN15617@osdn.org.ua> <20050526201519.GC10285@basalt.office.altlinux.org> <20050527081906.GC19654@basalt.office.altlinux.org> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="82I3+IH0IqGh5yIs" Content-Disposition: inline In-Reply-To: X-fingerprint: 9658 398D 181B 1200 8FC5 26B8 F6F8 846B C1E2 3429 X-BeenThere: sisyphus@altlinux.ru X-Mailman-Version: 2.1.5 Precedence: list Reply-To: ALT Linux Sisyphus discussion list List-Id: ALT Linux Sisyphus discussion list List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 May 2005 09:24:50 -0000 Archived-At: List-Archive: --82I3+IH0IqGh5yIs Content-Type: text/plain; charset=koi8-r Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, May 27, 2005 at 12:04:22PM +0300, Eugene Ostapets wrote: > 27.05.05, Dmitry V. Levin =CE=C1=D0=C9=D3=C1=CC(=C1): > > > =EE=C5=C9=D3=D0=CF=CC=CE=C5=CE=C9=C5 session - =DC=D4=CF =C2=C1=C7=C1. > > =F0=CF =CB=D2=C1=CA=CE=C5=CA =CD=C5=D2=C5, =CE=C5 =D7 =CD=CF=A3=CD =D0= =C1=CB=C5=D4=C5. > > =E5=D7=C7=C5=CE=C9=CA, =D0=D2=C5=D6=C4=C5 =DE=C5=CD =D0=CF=C4=CE=C9=CD= =C1=D4=D8 =D7=CF=D0=D2=CF=D3, =C2=D9=CC=CF =C2=D9 =CE=C5=D0=CC=CF=C8=CF =D3= =D0=C5=D2=D7=C1 =C5=C7=CF =C9=DA=D5=DE=C9=D4=D8. > > :) > =F0=D2=CF=D7=C5=D2=C9=CC =CE=C1 =ED2.4... =F2=C1=C2=CF=D4=C1=C5=D4... =EE= =C1 =ED2.2 =C9=CC=C9 =CE=C1 =CB=C1=CB=CF=CD-=D4=CF =C9=DA =F3=C9=DA=C9=C6= =CF=D7 =DC=D4=CF > =CE=C5 =D2=C1=C2=CF=D4=C1=CC=CF =C9 =D0=CF=D3=CB=CF=CC=D8=CB=D5 =C7=CC=CF= =C2=C1=CC=D8=CE=D9=C5 =D0=CF=D0=D9=D4=CB=C9 =DA=C1=D0=D5=D3=D4=C9=D4=D8 ses= sion =CE=C5 > =D0=D2=CF=C9=DA=D7=CF=C4=C9=CC=C9=D3=D8 =D1 =D0=D2=C5=C4=D0=CF=CC=CF=D6= =C9=CC =DE=D4=CF =C2=C1=C7=C1 =D0=CF-=D0=D2=C5=D6=CE=C5=CD=D5 =D0=D2=C9=D3= =D5=D4=D3=D4=D7=D5=C5=D4... =FE=D4=CF > =C5=DD=C5 =D2=C1=C2=CF=D4=C1=C5=D4, =C1 =DE=D4=CF =CE=C5 =D2=C1=C2=CF=D4= =C1=C5=D4 =CE=C1 =D3=D4=C1=C4=C9=C9 session? =E9=CC=C9 =CE=D5=D6=CE=CF =CD= =C5=D4=CF=C4=CF=CD > =CE=C1=D5=DE=CE=CF=C7=CF =D4=D9=CB=C1 =D0=C5=D2=C5=D0=D2=CF=C2=CF=D7=C1= =D4=D8 =D7=D3=C5 =CD=CF=C4=D5=CC=C9 =C9 =D2=C1=DA=D7=C5=D3=C9=D4=D8 =C2=C1= =C7=C9? =E5=D3=CC=C9 =C2=D9 =D7=D9 =D3=D2=C1=DA=D5 =D3=D0=D2=CF=D3=C9=CC=C9... PAM session management =D7 openssh =D4=CF=CA =D7=C5=D2=D3=C9=C9, =CB=CF=D4= =CF=D2=C1=D1 =CE=C1=C8=CF=C4=C9=D4=D3=D1 =D7 =F3=C9=DA=C9=C6=C5/=C4=C9=D3=D4=D2=C9=C2=D5=D4=C9=D7=C1=C8 =C9 =C9=D3=D0=CF= =CC=D8=DA=D5=C5=D4 privilege separation, =C9=D3=D0=CF=CC=CE=D1=C5=D4=D3=D1 =D3 =D0=D2=C1=D7=C1=CD=C9 =D0=CF=CC=D8=DA=CF=D7=C1=D4=C5=CC=D1, =C1 =CE=C5 = root'=C1. =EB=C1=CB =D3=CC=C5=C4=D3=D4=D7=C9=C5, - pam_mktemp =CE=C5 =D3=CD=CF=D6=C5=D4 =D3=CF=DA=C4=C1=D4=D8 =D0=CF=C4=CB= =C1=D4=C1=CC=CF=C7 =D7 /tmp/.private/ =D3 =CE=D5=D6=CE=D9=CD=C9 =D0=D2=C1=D7=C1=CD=C9, =C5=D3=CC=C9 =C5=C7=CF =D4=C1=CD =CE=C5=D4; - pam_mkhomedir =CE=C5 =D3=CD=CF=D6=C5=D4 =D3=CF=DA=C4=C1=D4=D8 =D0=CF=C4= =CB=C1=D4=C1=CC=CF=C7 =D3 =CE=D5=D6=CE=D9=CD=C9 =D0=D2=C1=D7=C1=CD=C9, =C5= =D3=CC=C9 =C5=C7=CF =D4=C1=CD =CE=C5=D4; - pam_limits =CE=C5 =D3=CD=CF=D6=C5=D4 =D5=D7=C5=CC=C9=DE=C9=D4=D8 =CC=C9= =CD=C9=D4=D9 =D3=D7=C5=D2=C8 =D4=C5=C8, =DE=D4=CF =C5=D3=D4=D8 =D5 =D0=D2= =CF=C3=C5=D3=D3=C1 openssh. =F7 =CB=C1=DE=C5=D3=D4=D7=C5 workaround'=C1 =CD=CF=D6=CE=CF =D0=CF=CD=C5=DD= =C1=D4=D8 =DC=D4=CF =CD=CF=C4=D5=CC=C9 =D7 PAM account management. --=20 ldv --82I3+IH0IqGh5yIs Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQFCludh9viEa8HiNCkRAmapAJwJ5S3+XI0Dv7iO9GAo6dDR+l2IpACeNCXA qTJyl43Gyq5Fv3MFVwWGeZY= =qXfw -----END PGP SIGNATURE----- --82I3+IH0IqGh5yIs--