From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <ldv@altlinux.org>
Date: Wed, 23 Jun 2010 04:39:30 +0400
From: "Dmitry V. Levin" <ldv@altlinux.org>
To: ALT Linux Sisyphus discussions <sisyphus@lists.altlinux.org>
Message-ID: <20100623003929.GD15539@wo.int.altlinux.org>
Mail-Followup-To: ALT Linux Sisyphus discussions <sisyphus@lists.altlinux.org>
References: <20100622214400.GA22145@wo.int.altlinux.org>
	<20100622225300.GZ14081@osdn.org.ua>
	<20100622230857.GB18232@wo.int.altlinux.org>
	<AANLkTin5PFyDV5n7DZSqRjrJQeskUbFVPSOcdOJXFRX3@mail.gmail.com>
	<AANLkTilb0xyBnOFtcJsn4sJ80qO7IPQXwRfW2tvk2rtS@mail.gmail.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="J5MfuwkIyy7RmF4Q"
Content-Disposition: inline
In-Reply-To: <AANLkTilb0xyBnOFtcJsn4sJ80qO7IPQXwRfW2tvk2rtS@mail.gmail.com>
X-fingerprint: FE4C 93AB E19A 2E4C CB5D  3E4E 7CAB E6AC 9E35 361E
Subject: Re: [sisyphus] I: openssh-server-5.3p1-alt2: disabled
	PasswordAuthentication for "wheel" group members
X-BeenThere: sisyphus@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: ALT Linux Sisyphus discussions <sisyphus@lists.altlinux.org>
List-Id: ALT Linux Sisyphus discussions <sisyphus.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/sisyphus>,
	<mailto:sisyphus-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/sisyphus>
List-Post: <mailto:sisyphus@lists.altlinux.org>
List-Help: <mailto:sisyphus-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/sisyphus>,
	<mailto:sisyphus-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Jun 2010 00:39:31 -0000
Archived-At: <http://lore.altlinux.org/sisyphus/20100623003929.GD15539@wo.int.altlinux.org/>
List-Archive: <http://lore.altlinux.org/sisyphus/>
List-Post: <mailto:sisyphus@altlinux.ru>


--J5MfuwkIyy7RmF4Q
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Jun 23, 2010 at 03:50:09AM +0400, Evgeny Sinelnikov wrote:
> =FE=D4=CF-=D4=CF =CB=C1=CB-=D4=CF =D0=CF=D2=D7=C1=CC=CF=D3=D8 =D3=CF=CF=
=C2=DD=C5=CE=C9=C5.
>=20
> 23 =C9=C0=CE=D1 2010 =C7. 3:32 =D0=CF=CC=D8=DA=CF=D7=C1=D4=C5=CC=D8 Evgen=
y Sinelnikov <sin@altlinux.ru> =CE=C1=D0=C9=D3=C1=CC:
> > 23 =C9=C0=CE=D1 2010 =C7. 3:08 =D0=CF=CC=D8=DA=CF=D7=C1=D4=C5=CC=D8 Dmi=
try V. Levin <ldv@altlinux.org> =CE=C1=D0=C9=D3=C1=CC:
> >> On Wed, Jun 23, 2010 at 01:53:00AM +0300, Michael Shigorin wrote:
> >>> On Wed, Jun 23, 2010 at 01:44:00AM +0400, Dmitry V. Levin wrote:
> >>> > =F7 =F3=C9=DA=C9=C6 =CF=D4=D0=D2=C1=D7=CC=D1=C5=D4=D3=D1 openssh-se=
rver-5.3p1-alt2, =D7 =CB=CF=D4=CF=D2=CF=CD =D0=CF
> >>> > =D5=CD=CF=CC=DE=C1=CE=C9=C0 =C1=D5=D4=C5=CE=D4=C9=C6=C9=CB=C1=C3=C9=
=D1 =D0=CF =D0=C1=D2=CF=CC=C0 =C2=D5=C4=C5=D4 =D7=D9=CB=CC=C0=DE=C5=CE=C1 =
=C4=CC=D1 =DE=CC=C5=CE=CF=D7
> >>> > =C7=D2=D5=D0=D0=D9 wheel.
> >>>
> >>> =F0=D2=C9 =CF=C2=CE=CF=D7=CC=C5=CE=C9=C9 =D5=CD=CF=CC=DE=C1=CE=C9=C5 =
=C9=DA=CD=C5=CE=C9=D4=D3=D1 =D0=CF =D3=D2=C1=D7=CE=C5=CE=C9=C0 =D3 =D0=D2=
=C5=C4=D9=C4=D5=DD=C9=CD,
> >>> =C5=D3=CC=C9 /etc/openssh/sshd_config =CE=C5 =D4=D2=CF=C7=C1=CC=D3=D1?
> >>
> >> =E4=C1, =CB=CF=CE=C5=DE=CE=CF.
> >>
> >>> > =F0=CF=C4=D2=CF=C2=CE=C5=C5 =CF=C2 =DC=D4=CF=CD =D3=CD.
> >>> > https://bugzilla.altlinux.org/show_bug.cgi?id=3D17286
> >>>
> >>> =F0=CF-=CD=CF=C5=CD=D5, =C9=C4=C5=D1 =CE=C9=CB=D5=C4=C1 =CE=C5 =C7=CF=
=C4=C9=D4=D3=D1 =D7 =CB=C1=DE=C5=D3=D4=D7=C5 =D5=CD=CF=CC=DE=C1=CE=C9=D1, =
=CB=CF=D4=CF=D2=CF=C5
> >>> =CD=CF=D6=C5=D4 =D3=C1=CD=CF=D0=D2=CF=C9=DA=D7=CF=CC=D8=CE=CF =D0=CF=
=CD=C5=CE=D1=D4=D8=D3=D1 =D0=D2=C9 =CF=C2=CE=CF=D7=CC=C5=CE=C9=C9 =C4=C9=D3=
=D4=D2=C9=C2=D5=D4=C9=D7=C1
> >>> =D3 =D0=CF=D4=C5=CE=C3=C9=C1=CC=D8=CE=D9=CD DoS.
> >>
> >> =F1 =CE=C5 =D7=C5=D2=C0, =DE=D4=CF =CB=D4=CF-=D4=CF =C5=DD=A3 =D3=CF=
=DA=CE=C1=D4=C5=CC=D8=CE=CF =C9=D3=D0=CF=CC=D8=DA=D5=C5=D4 PasswordAuthenti=
cation,
> >> =CE=CF =CE=C1 =D7=D3=D1=CB=C9=CA =D3=CC=D5=DE=C1=CA =D1 =DC=D4=CF =C9=
=DA=CD=C5=CE=C5=CE=C9=C5 =C1=CE=CF=CE=D3=C9=D2=CF=D7=C1=CC.
> >>
> >> =EC=C9=DE=CE=CF =D1 PasswordAuthentication =CE=C1 =D3=C5=D2=D7=C5=D2=
=C5 =C9=D3=D0=CF=CC=D8=DA=D5=C0 =C9=D3=CB=CC=C0=DE=C9=D4=C5=CC=D8=CE=CF =D4=
=CF=C7=C4=C1,
> >> =CB=CF=C7=C4=C1 =CD=CE=C5 =CE=D5=D6=CE=CF =D0=D2=CF=D4=C5=D3=D4=C9=D2=
=CF=D7=C1=D4=D8 =DC=D4=CF=D4 =D2=C5=D6=C9=CD =D2=C1=C2=CF=D4=D9 =D0=D2=C9 =
=D0=CF=C4=C7=CF=D4=CF=D7=CB=C5 =CE=CF=D7=CF=CA
> >> =D7=C5=D2=D3=C9=C9 openssh.
> >>
> >>> =EB=C1=CB =CE=C5=C4=C5=C6=CF=CC=D4=CE=D9=CA =D7=C1=D2=C9=C1=CE=D4 =C4=
=CC=D1 control, =D7 =C9=C4=C5=C1=CC=C5 =D3=D7=D1=DA=C1=CE=CE=D9=CA =D3 cont=
rol
> >>> sudo wheelonly =C1-=CC=D1 slave alternatives -- =C4=C1, =C2=D9=CC=CF =
=C2=D9 =C8=CF=D2=CF=DB=CF
> >>> =C9 =D3=C1=CD =C2=D9 =D0=CF=CC=D8=DA=CF=D7=C1=CC=D3=D1.
> >>>
> >>> =F0=D2=CF=DB=D5 =C5=DD=A3 =D2=C1=DA =D0=CF=C4=D5=CD=C1=D4=D8.
> >>
> >> =F1 =D7=CF=CF=C2=DD=C5 =D3=CF=C2=C9=D2=C1=CC=D3=D1 =D7=D9=CB=CC=C0=DE=
=C9=D4=D8 PasswordAuthentication =D0=CF =D5=CD=CF=CC=DE=C1=CE=C9=C0, =C9,
> >> =C5=D3=CC=C9 =C2=D9 =CE=C5 =CE=C1=D4=CB=CE=D5=CC=D3=D1 =CE=C1 =CB=CF=
=CD=D0=D2=CF=CD=C9=D3=D3=CE=D9=CA =D7=C1=D2=C9=C1=CE=D4, =CF=D0=C9=D3=C1=CE=
=CE=D9=CA =D7 #17286,
> >> =D4=CF =D4=C1=CB =C2=D9 =C9 =D3=C4=C5=CC=C1=CC.
> >>
>=20
> =F5 =CE=C5 =DE=CC=C5=CE=CF=D7 =C7=D2=D5=D0=D0=D9 wheel =D4=CF=D6=C5 =CE=
=C5=CD=C1=CC=CF =D7=CF=DA=CD=CF=D6=CE=CF=D3=D4=C5=CA =D3=C4=C5=CC=C1=D4=D8 =
=D0=CC=CF=C8=CF. =F4=C5=CD
> =C2=CF=CC=C5=C5, =DE=D4=CF =D0=C1=D2=CF=CC=C9 =D5 =D4=C1=CB=C9=C8 "=CE=C5=
 =D2=D5=CC=D1=DD=C9=C8" =D0=CF=CC=D8=DA=CF=D7=C1=D4=C5=CC=C5=CA =CD=CF=C7=
=D5=D4 =C2=D9=D4=D8
> =CE=C5=D5=C4=C1=DE=CE=CF =D0=CF=D4=C5=D2=D1=CE=CE=D9=CD=C9 =C9=CC=C9 =C4=
=C1=D6=C5 =D0=CC=CF=C8=C9=CD=C9 =D3 =C2=CF=CC=D8=DB=C5=CA =D3=D4=C5=D0=C5=
=CE=D8=C0 =D7=C5=D2=CF=D1=D4=CE=CF=D3=D4=C9,
> =DE=C5=CD =D5 "=D2=D5=CC=D1=DD=C9=C8". =EB=C1=CB =D0=D2=C9=CD=C5=D2 =CE=
=C5=D5=C4=C1=DE=CE=CF=CA =D0=D2=C1=CB=D4=C9=CB=C9, =C9=CD=C5=C0 =CF=D0=D9=
=D4 =D0=CF=CC=D5=DE=C5=CE=C9=D1
> =C2=CF=D4=C1 =C9 =D5=D3=C1=D3=D9=D7=C0=DD=C5=C7=CF =D0=CF=CD=C5=C7=C1=C2=
=C1=CA=D4=CE=D9=CA =D4=D2=C1=C6=C9=CB =D3 =D0=D1=D4=CE=C9=C3=D9 =D0=CF =D7=
=D4=CF=D2=CE=C9=CB.
>=20
> =EE=D5, =D4=C1=CB =DE=D4=CF =D0=CF =D0=CF=D7=CF=C4=D5 =C7=D2=D5=D0=D0=D9 =
remote =C9 =D0=CF=CC=C9=D4=C9=CB=C9 "=CB=CF=CD=D5 =CD=CF=D6=CE=CF" =C4=D5=
=CD=C1=C5=D4=D3=D1?
>=20
> =F1 =C4=D5=CD=C1=C0, =DE=D4=CF =D3=D4=CF=C9=D4 =C4=CF=C2=C1=D7=C9=D4=D8:
> =C1) =D0=CF=CC=C9=D4=C9=CB=D5 "=CB=CF=CD=D5 =CD=CF=D6=CE=CF" =D0=CF =C7=
=D2=D5=D0=D0=C5, =CE=C1=D0=D2=C9=CD=C5=D2 remote;
> =C2) =D0=CF=CC=C9=D4=C9=CB=D5 =D0=CF =CB=C1=DE=C5=D3=D4=D7=D5 =D0=C1=D2=
=CF=CC=D1 =CE=C1 auth.
>=20
> =EB=C1=CB =D3=C4=C5=CC=C1=D4=D8 =C2) =D1 =D0=CF=CB=C1 =CE=C5 =DA=CE=C1=C0=
 (=CE=C5 =D0=D2=CF=C2=CF=D7=C1=CC =C4=CF=D3=D4=C1=D4=CF=DE=CE=CF =C1=CB=D4=
=C9=D7=CE=CF, =DE=D4=CF=C2=D9
> =D0=CF=CC=D5=DE=C9=CC=CF=D3=D8), =CE=CF =D4=CF=D6=C5 =CF=DE=C5=CE=D8 =C2=
=D9 =C8=CF=D4=C5=CC.
>=20
> =E7=D2=D5=D0=D0=C1 remote =D0=CF=CB=D2=D9=D7=C1=C5=D4 =C2=CF=CC=D8=DB=C5 =
=D2=C1=C2=CF=DE=C9=C8 =D3=C3=C5=CE=C1=D2=C9=C5=D7, =DE=C5=CD =D0=D2=CF=D3=
=D4=CF "=D0=CF
> =CB=CC=C0=DE=C1=CD". =ED=C1=CC=CF =CC=C9 =D5 =CB=CF=C7=CF =CB=CC=C0=DE=C9=
 =CC=C5=D6=C1=D4, =D0=CF =D3=D4=C1=D2=CF=CA =D0=C1=CD=D1=D4=C9...
>=20
> =F1 =D7=C9=D6=D5 =D4=C1=CB=C9=C5 =D3=C3=C5=CE=C1=D2=C9=C9:
> 1) =EE=CF=D7=D9=CA.
> - =DE=CC=C5=CE=D9 =C7=D2=D5=D0=D0=D9 wheel "=C8=CF=C4=D1=D4" =D4=CF=CC=D8=
=CB=CF =D0=CF =CB=CC=C0=DE=C1=CD;
> - =CF=D3=D4=C1=CC=D8=CE=D9=C5, =CB=C1=CB =C8=CF=D4=D1=D4.

=FC=D4=CF =D2=CF=D7=CE=CF =D4=CF, =DE=D4=CF =D2=C5=C1=CC=C9=DA=CF=D7=C1=CE=
=CF =D7 openssh-server-5.3p1-alt2.

> 2) =ED=CF=CA =D4=C5=CB=D5=DD=C9=CA.
> - "=C8=CF=C4=D1=D4" =D4=CF=CC=D8=CB=CF =DE=CC=C5=CE=D9 =C7=D2=D5=D0=D0=D9=
 remote;
> - =CF=D3=D4=C1=CC=D8=CE=D9=C5 "=CE=C5 =C8=CF=C4=D1=D4".

=FC=D4=CF =D0=D2=CF=D3=D4=CF AllowGroups remote.

> 3) =E7=C9=C2=D2=C9=C4=CE=D9=CA =D0=C5=D2=D7=D9=CA.
> - "=C8=CF=C4=D1=D4" =D4=CF=CC=D8=CB=CF =DE=CC=C5=CE=D9 =C7=D2=D5=D0=D0=D9=
 remote;
> - =DE=CC=C5=CE=D9 =C7=D2=D5=D0=D0=D9 wheel "=C8=CF=C4=D1=D4" =D4=CF=CC=D8=
=CB=CF =D0=CF =CB=CC=C0=DE=C1=CD =C9 =D4=CF=CC=D8=CB=CF, =C5=D3=CC=C9 =CF=
=CE=C9 =D7
> =C7=D2=D5=D0=D0=C5 remote;
> - =CF=D3=D4=C1=CC=D8=CE=D9=C5 "=CE=C5 =C8=CF=C4=D1=D4".

=FC=D4=CF =D0=D2=CF=D3=D4=CF AllowGroups remote =D7 =D3=CF=DE=C5=D4=C1=CE=
=C9=C9 =D3 =D2=C5=C1=CC=C9=DA=CF=D7=C1=CE=CE=D9=CD =D7
openssh-server-5.3p1-alt2 =CF=D4=CB=CC=C0=DE=C5=CE=C9=C5=CD PasswordAuthent=
ication =C4=CC=D1 =DE=CC=C5=CE=CF=D7
=C7=D2=D5=D0=D0=D9 wheel.

> 4) =E7=C9=C2=D2=C9=C4=CE=D9=CA =D7=D4=CF=D2=CF=CA.
> - "=C8=CF=C4=D1=D4" =D4=CF=CC=D8=CB=CF =DE=CC=C5=CE=D9 =C7=D2=D5=D0=D0=D9=
 remote =C9 =C7=D2=D5=D0=D0=D9 wheel, =CE=CF =D0=CF=D3=CC=C5=C4=CE=C9=C5
> =D4=CF=CC=D8=CB=CF =D0=CF =CB=CC=C0=DE=C1=CD;
> - =CF=D3=D4=C1=CC=D8=CE=D9=C5 "=CE=C5 =C8=CF=C4=D1=D4".

=FC=D4=CF =D0=D2=CF=D3=D4=CF AllowGroups remote wheel =D7 =D3=CF=DE=C5=D4=
=C1=CE=C9=C9 =D3 =D2=C5=C1=CC=C9=DA=CF=D7=C1=CE=CE=D9=CD =D7
openssh-server-5.3p1-alt2...

=F3=CF=C2=D3=D4=D7=C5=CE=CE=CF =C7=CF=D7=CF=D2=D1, =D7=D9 =D0=D2=C5=C4=CC=
=C1=C7=C1=C5=D4=C5 =D0=CF =D5=CD=CF=CC=DE=C1=CE=C9=C0 =D3=C4=C5=CC=C1=D4=D8=
 =C5=DD=A3 =C9
AllowGroups =C9=CD=C5=CE=C1_=C7=D2=D5=D0=D0_=D7_=CB=CF=D4=CF=D2=D9=C5_=C2=
=D5=C4=D5=D4_=D7=C8=CF=C4=C9=D4=D8_=D4=C5_=CB=CF=C7=CF_=CD=CF=D6=CE=CF_=D0=
=D5=D3=CB=C1=D4=D8?

=E2=D5=C4=C5=D4 =CE=C5=D0=D2=CF=D3=D4=CF =D0=D2=C9=C4=D5=CD=C1=D4=D8 =C9=CD=
=C5=CE=C1 =D4=C1=CB=C9=C8 =C7=D2=D5=D0=D0, =CB=CF=D4=CF=D2=D9=C5 =C2=D9 =D5=
=D3=D4=D2=CF=C9=CC=C9 =D7=D3=C5=C8
=DA=C1=C9=CE=D4=C5=D2=C5=D3=CF=D7=C1=CE=CE=D9=C8.


--=20
ldv

--J5MfuwkIyy7RmF4Q
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAkwhV8EACgkQfKvmrJ41Nh5/wQCgtrRGSs5uGY0QgimCOmd0DcyW
RgcAoJoZvE8M/x9tjGNR6U9JOsIu5YSu
=Ox9H
-----END PGP SIGNATURE-----

--J5MfuwkIyy7RmF4Q--