Mailing List Archive

http://bugzilla.mindrot.org/show_bug.cgi?id=1226

Summary: sftp-server does not respect rlogin = false
Product: Portable OpenSSH
Version: 4.3p2
Platform: PPC
OS/Version: AIX
Status: NEW
Severity: normal
Priority: P2
Component: sftp-server
AssignedTo: bitbucket@mindrot.org
ReportedBy: cris@beebgames.com


using the packages from http://sf.net/projects/openssh-aix

have set a user 'appa' to be rlogin=false in /etc/security/users

when I 'ssh appa@gromit':

appa@gromit's password:
Received disconnect from 158.234.7.207: 2: Remote login for account
appa is not
allowed.

when i 'scp *.txt appa@gromit:~':

appa@gromit's password:
Received disconnect from 158.234.7.207: 2: Remote login for account
appa is not
allowed.
lost connection

so all good so far, but when I 'sftp appa@gromit':

Connecting to gromit...
appa@gromit's password:
sftp>

i am allowed to log in!!!!! this happens only on AIX5.3. On AIX5.2
(same user setup) I get:

Connecting to fenris...
appa@fenris's password:
Permission denied, please try again.




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs