free
/
freedombone
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Ensure privilege separation exists

Bob Mottram 7 years ago
parent
9ffb2b235f
commit
28381df8f5
1 changed files with 3 additions and 0 deletions
Split View Show Diff Stats
  1. 3
    0
      src/freedombone-utils-ssh

+ 3
- 0
src/freedombone-utils-ssh View File 

@@ -115,6 +115,9 @@ function configure_ssh {
115 115 
         echo "KexAlgorithms $SSH_KEX" >> /etc/ssh/sshd_config
116 116 
     fi
117 117 
     sed -i "s|#KexAlgorithms $SSH_KEX|KexAlgorithms $SSH_KEX|g" /etc/ssh/sshd_config
118 
+    if ! grep -q 'UsePrivilegeSeparation' /etc/ssh/sshd_config; then
119 
+        echo 'UsePrivilegeSeparation sandbox' >> /etc/ssh/sshd_config
120 
+    fi
118 121 
     sed -i 's|#UsePrivilegeSeparation .*|UsePrivilegeSeparation sandbox|g' /etc/ssh/sshd_config
119 122 
     sed -i 's|UsePrivilegeSeparation .*|UsePrivilegeSeparation sandbox|g' /etc/ssh/sshd_config
120 123