Re: wrong group set when sftp
From: Darren Tucker (dtucker_at_zip.com.au)
Date: 05/27/05
- Previous message: McDougall, Marshall (FSH): "RE: SFTP between Linux and Windows"
- In reply to: security security: "Re: wrong group set when sftp"
- Next in thread: security security: "Re: wrong group set when sftp"
- Reply: security security: "Re: wrong group set when sftp"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 27 May 2005 08:20:15 +1000 To: security security <security.intrusion@gmail.com>
security security wrote:
> Yes i use PAM...
Does the problem occur running sshd with UsePAM=no?
[...]
> Name: sftp-server
> State: S (sleeping)
> Tgid: 18414
> Pid: 18414
> PPid: 18413
> TracerPid: 0
> Uid: 508 508 508 508
> Gid: 528 0 0 0
[...]
> Should all the gid's be 528, or is it normal? Its parent seems to be ok.
It's not normal, sftp-server runs as a pure user process and the gids
should all be 528.
Since the parent has gids all 528, the only way I can see for this to
happen (barring kernel bugs) is if sftp-server is setgid 0.. what does
ls -l /path/to/sftp-server" say?
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
- Previous message: McDougall, Marshall (FSH): "RE: SFTP between Linux and Windows"
- In reply to: security security: "Re: wrong group set when sftp"
- Next in thread: security security: "Re: wrong group set when sftp"
- Reply: security security: "Re: wrong group set when sftp"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
