summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/session.c
diff options
context:
space:
mode:
authorDarren Tucker <dtucker@cvs.openbsd.org>2010-03-07 11:57:14 +0000
committerDarren Tucker <dtucker@cvs.openbsd.org>2010-03-07 11:57:14 +0000
commita886d240ca3215f7f7cc8c9d280e32c8bd72ec6a (patch)
tree48583579147dc69873fae04ba6c42b1f4e5e5a7a /usr.bin/ssh/session.c
parentf8a9ce1075d3707930dfd3852079a9fed7f18911 (diff)
Hold authentication debug messages until after successful authentication.
Fixes an info leak of environment variables specified in authorized_keys, reported by Jacob Appelbaum. ok djm@
Diffstat (limited to 'usr.bin/ssh/session.c')
-rw-r--r--usr.bin/ssh/session.c4
1 files changed, 3 insertions, 1 deletions
diff --git a/usr.bin/ssh/session.c b/usr.bin/ssh/session.c
index f9fbee9c1dd..73cc8e29566 100644
--- a/usr.bin/ssh/session.c
+++ b/usr.bin/ssh/session.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: session.c,v 1.251 2010/01/12 08:33:17 dtucker Exp $ */
+/* $OpenBSD: session.c,v 1.252 2010/03/07 11:57:13 dtucker Exp $ */
/*
* Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
* All rights reserved
@@ -258,6 +258,8 @@ do_authenticated(Authctxt *authctxt)
if (!no_port_forwarding_flag && options.allow_tcp_forwarding)
channel_permit_all_opens();
+ auth_debug_send();
+
if (compat20)
do_authenticated2(authctxt);
else
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 21:03:38 +0000