Corinna Vinschen wrote:
> On Aug 23 16:10, Darren Tucker wrote:
>>I probably ought to be documented as a limitation, though. Or maybe we
>>could check for the existence of the user and directory and disable the
>>privsep tests if missing (eg by unsetting SUDO).

> Is there a problem to make the privsep path configurable?

I don't think it needs to be a run-time knob, if that's what you mean.
It wouldn't be much use under normal circumstances.

Darren Tucker (dtucker at
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

openssh-unix-dev mailing list