[src/trunk]: src dig sshd uid/gid, and /var/empty, for sshd privilege separation

To: source-changes-hg%NetBSD.org@localhost
Subject: [src/trunk]: src dig sshd uid/gid, and /var/empty, for sshd privilege separation
From: itojun <itojun%NetBSD.org@localhost>
Date: Fri, 24 Jan 2020 11:00:27 +0000

details:   https://anonhg.NetBSD.org/src/rev/dbf4625e1888
branches:  trunk
changeset: 526963:dbf4625e1888
user:      itojun <itojun%NetBSD.org@localhost>
date:      Tue May 14 23:26:24 2002 +0000

description:
dig sshd uid/gid, and /var/empty, for sshd privilege separation

diffstat:

 distrib/sets/lists/base/mi |  3 ++-
 etc/group                  |  1 +
 etc/master.passwd          |  1 +
 etc/mtree/NetBSD.dist      |  3 ++-
 4 files changed, 6 insertions(+), 2 deletions(-)

diffs (55 lines):

diff -r 0cc4b8800012 -r dbf4625e1888 distrib/sets/lists/base/mi
--- a/distrib/sets/lists/base/mi        Tue May 14 22:41:36 2002 +0000
+++ b/distrib/sets/lists/base/mi        Tue May 14 23:26:24 2002 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: mi,v 1.320 2002/05/04 19:43:58 jdolecek Exp $
+# $NetBSD: mi,v 1.321 2002/05/14 23:26:24 itojun Exp $
 .                      base-sys-root
 ./altroot              base-sys-root
 ./bin                  base-sys-root
@@ -2392,6 +2392,7 @@
 ./var/cron/tabs                        base-cron-root
 ./var/db                       base-sys-root
 ./var/db/ns                    base-sys-root
+./var/empty                    base-sys-root
 ./var/games                    base-games-root
 ./var/games/hackdir            base-games-root
 ./var/games/hackdir/save       base-games-root
diff -r 0cc4b8800012 -r dbf4625e1888 etc/group
--- a/etc/group Tue May 14 22:41:36 2002 +0000
+++ b/etc/group Tue May 14 23:26:24 2002 +0000
@@ -13,6 +13,7 @@
 games:*:13:
 named:*:14:
 ntpd:*:15:
+sshd:*:16:
 staff:*:20:root
 guest:*:31:root
 nobody:*:39:
diff -r 0cc4b8800012 -r dbf4625e1888 etc/master.passwd
--- a/etc/master.passwd Tue May 14 22:41:36 2002 +0000
+++ b/etc/master.passwd Tue May 14 23:26:24 2002 +0000
@@ -8,5 +8,6 @@
 postfix:*:12:12::0:0:Postfix pseudo-user:/var/spool/postfix:/sbin/nologin
 named:*:14:14::0:0:Named pseudo-user:/var/chroot/named:/sbin/nologin
 ntpd:*:15:15::0:0:Ntpd pseudo-user:/var/chroot/ntpd:/sbin/nologin
+sshd:*:16:16::0:0:sshd privsep:/var/empty:/sbin/nologin
 uucp:*:66:1::0:0:UNIX-to-UNIX Copy:/var/spool/uucppublic:/usr/libexec/uucp/uucico
 nobody:*:32767:39::0:0:Unprivileged user:/nonexistent:/sbin/nologin
diff -r 0cc4b8800012 -r dbf4625e1888 etc/mtree/NetBSD.dist
--- a/etc/mtree/NetBSD.dist     Tue May 14 22:41:36 2002 +0000
+++ b/etc/mtree/NetBSD.dist     Tue May 14 23:26:24 2002 +0000
@@ -1,4 +1,4 @@
-#      $NetBSD: NetBSD.dist,v 1.189 2002/05/04 20:03:14 jdolecek Exp $
+#      $NetBSD: NetBSD.dist,v 1.190 2002/05/14 23:26:24 itojun Exp $
 #      @(#)4.4BSD.dist 8.1 (Berkeley) 6/13/93
 
 /set type=dir uname=root gname=wheel mode=0755
@@ -783,6 +783,7 @@
 ./var/games/larn               uname=games gname=games mode=0775
 ./var/games/phantasia          uname=games gname=games mode=0775
 ./var/games/sail               uname=games gname=games mode=0775
+./var/empty                    mode=0755
 ./var/heimdal
 ./var/log
 ./var/log/rdist

Prev by Date: [src/trunk]: src/sys/ufs/lfs Phase one of my three-phase plan to make LFS pla...
Next by Date: [src/trunk]: src/etc Fix the do_uid() and do_gid() functions so they actually...
Previous by Thread: [src/trunk]: src/sys/ufs/lfs Phase one of my three-phase plan to make LFS pla...
Next by Thread: [src/trunk]: src/etc Fix the do_uid() and do_gid() functions so they actually...
Indexes:

Home | Main Index | Thread Index | Old Index