current-users: ssh use of $HOME

Subject: ssh use of $HOME
To: NetBSD current-users <current-users@netbsd.org>
From: Andreas Wrede <andreas@planix.com>
List: current-users
Date: 01/31/2007 13:24:28

This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--Apple-Mail-1-834624417
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed

In NetBSD 4.0_BETA2 (and presumable -current), ssh sessions started  
from cron jobs fail with "Host key verification failed".  The cause  
of this is the patch from PR/13738, committed on Sep 18, 2005 to src/ 
crypto/dist/ssh/tildexpand.c (now in src/crypto/dist/ssh/misc.c)  
together with crontab's default HOME=/var/log setting. This causes  
ssh to look for the id_* files in /var/log/.ssh/.

The original PR author's reason for the patch was "ssh(1) talks about  
$HOME/.ssh...".  The ssh man page replaced $HOME with ~ in OpenBSD  
rev 1.206 of ssh.1.

I think the patch should be reverted.

-- 
     aew


--Apple-Mail-1-834624417
content-type: application/pgp-signature; x-mac-type=70674453;
	name=PGP.sig
content-description: This is a digitally signed message part
content-disposition: inline; filename=PGP.sig
content-transfer-encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFFwN7fEh/h9J/TQyERAopjAJ4wYYdOyOEEIOpXn9D/va5d+74XWACgzotH
CyyChXzlOA3653shJXTBG3U=
=XhAu
-----END PGP SIGNATURE-----

--Apple-Mail-1-834624417--