- deraadt@cvs.openbsd.org 2002/05/22 23:18:25

[openssh.git] / servconf.c
diff --git a/servconf.c b/servconf.c

index 9bbd994ca556417462dee5f9dbfcc79eeb4789b0..7a776ac8e8a797a7a5134a72e62eaac42dfa6833 100644 (file)
--- a/servconf.c
+++ b/servconf.c
@@ -10,10 +10,19 @@
   */
  
  #include "includes.h"
-RCSID("$OpenBSD: servconf.c,v 1.101 2002/02/04 12:15:25 markus Exp $");
+RCSID("$OpenBSD: servconf.c,v 1.110 2002/05/15 21:56:38 markus Exp $");
  
-#if defined(KRB4) || defined(KRB5)
+#if defined(KRB4)
+#include <krb.h>
+#endif
+#if defined(KRB5)
+#ifdef HEIMDAL
  #include <krb.h>
+#else
+/* Bodge - but then, so is using the kerberos IV KEYFILE to get a Kerberos V
+ * keytab */
+#define KEYFILE "/etc/krb5.keytab"
+#endif
  #endif
  #ifdef AFS
  #include <kafs.h>
@@ -36,6 +45,8 @@ static void add_one_listen_addr(ServerOptions *, char *, u_short);
  
  /* AF_UNSPEC or AF_INET or AF_INET6 */
  extern int IPv4or6;
+/* Use of privilege separation or not */
+extern int use_privsep;
  
  /* Initializes the server options to their default values. */
  
@@ -110,6 +121,9 @@ initialize_server_options(ServerOptions *options)
         options->client_alive_count_max = -1;
         options->authorized_keys_file = NULL;
         options->authorized_keys_file2 = NULL;
+
+       /* Needs to be accessable in many places */
+       use_privsep = -1;
  }
  
  void
@@ -186,7 +200,7 @@ fill_default_server_options(ServerOptions *options)
                 options->pubkey_authentication = 1;
  #if defined(KRB4) || defined(KRB5)
         if (options->kerberos_authentication == -1)
-               options->kerberos_authentication = (access(KEYFILE, R_OK) == 0);
+               options->kerberos_authentication = 0;
         if (options->kerberos_or_local_passwd == -1)
                 options->kerberos_or_local_passwd = 1;
         if (options->kerberos_ticket_cleanup == -1)
@@ -198,7 +212,7 @@ fill_default_server_options(ServerOptions *options)
  #endif
  #ifdef AFS
         if (options->afs_token_passing == -1)
-               options->afs_token_passing = k_hasafs();
+               options->afs_token_passing = 0;
  #endif
         if (options->password_authentication == -1)
                 options->password_authentication = 1;
@@ -235,6 +249,10 @@ fill_default_server_options(ServerOptions *options)
         }
         if (options->authorized_keys_file == NULL)
                 options->authorized_keys_file = _PATH_SSH_USER_PERMITTED_KEYS;
+
+       /* Turn privilege separation on by default */
+       if (use_privsep == -1)
+               use_privsep = 1;
  }
  
  /* Keyword tokens. */
@@ -267,6 +285,7 @@ typedef enum {
         sBanner, sVerifyReverseMapping, sHostbasedAuthentication,
         sHostbasedUsesNameFromPacketOnly, sClientAliveInterval,
         sClientAliveCountMax, sAuthorizedKeysFile, sAuthorizedKeysFile2,
+       sUsePrivilegeSeparation,
         sDeprecated
  } ServerOpCodes;
  
@@ -342,6 +361,7 @@ static struct {
         { "clientalivecountmax", sClientAliveCountMax },
         { "authorizedkeysfile", sAuthorizedKeysFile },
         { "authorizedkeysfile2", sAuthorizedKeysFile2 },
+       { "useprivilegeseparation", sUsePrivilegeSeparation},
         { NULL, sBadOption }
  };
  
@@ -718,6 +738,10 @@ parse_flag:
                 intptr = &options->allow_tcp_forwarding;
                 goto parse_flag;
  
+       case sUsePrivilegeSeparation:
+               intptr = &use_privsep;
+               goto parse_flag;
+
         case sAllowUsers:
                 while ((arg = strdelim(&cp)) && *arg != '\0') {
                         if (options->num_allow_users >= MAX_ALLOW_USERS)