Bug 34479
| Summary: | bug in sshd manpage ( sshd and /var/run/nologin ) | ||
|---|---|---|---|
| Product: | Documentation | Reporter: | Christopher Schulte <schulte+freebsd> |
| Component: | Books & Articles | Assignee: | freebsd-doc (Nobody) <doc> |
| Status: | Closed FIXED | ||
| Severity: | Affects Only Me | ||
| Priority: | Normal | ||
| Version: | Latest | ||
| Hardware: | Any | ||
| OS: | Any | ||
State Changed From-To: open->closed OpenSSH is contributed software. Please bring this up with the respective maintainers (unless this issue is FreeBSD-specific, but I don't think it is). |
There appears to be a bug in the manpage of sshd(8). It tells us: When a user successfully logs in, sshd does the following: [snip 1,2] 3. Checks /etc/nologin and /var/run/nologin; if one exists, it prints the contents and quits (unless root). This is not the case, as I documented here: http://docs.freebsd.org/cgi/getmsg.cgi?fetch=277364+0+/usr/local/www/db/text/2002/freebsd-security/20020127.freebsd-security Fix: Edit the man page to tell us /var/run/nologin only works if 'UseLogin' is defined, as suggested by this mailing list message: http://docs.freebsd.org/cgi/getmsg.cgi?fetch=280283+0+/usr/local/www/db/text/2002/freebsd-security/20020127.freebsd-security How-To-Repeat: touch /var/run/nologin and try to ssh in as non-root.