Antonio Larrosa
d7201bdb47
client and a DoS attack against OpenSSH's client and server (bsc#1237040, CVE-2025-26465, bsc#1237041, CVE-2025-26466): * fix-CVE-2025-26465-and-CVE-2025-26466.patch OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=282
20 lines
681 B
Diff
20 lines
681 B
Diff
# HG changeset patch
|
|
# Parent 5c1e122e31b601de64d81085294216af33f31aed
|
|
# force PAM in defaullt install (this was removed from upstream in 3.8p1)
|
|
# bnc#46749
|
|
# --used to be called '-pam-fix2'
|
|
|
|
Index: openssh-8.8p1/sshd_config
|
|
===================================================================
|
|
--- openssh-8.8p1.orig/sshd_config
|
|
+++ openssh-8.8p1/sshd_config
|
|
@@ -79,7 +79,7 @@ AuthorizedKeysFile .ssh/authorized_keys
|
|
# If you just want the PAM account and session checks to run without
|
|
# PAM authentication, then enable this but set PasswordAuthentication
|
|
# and KbdInteractiveAuthentication to 'no'.
|
|
-#UsePAM no
|
|
+UsePAM yes
|
|
|
|
#AllowAgentForwarding yes
|
|
#AllowTcpForwarding yes
|