Skip to content

Commit

Permalink
[dropbear] fix #5661: patch to allow g+w and o+w to the user's homedi…
Browse files Browse the repository at this point in the history 
…r, ~/.ssh, and ~/.ssh/authorized_keys

We are don't expect other users beside root and gitpod, so it should be fine to loosen permission constaints by dropbear.
  • Loading branch information
@akosyakov @roboquat
akosyakov authored and roboquat committed Sep 20, 2021
1 parent 40aa2f5 commit 6306aea
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion components/supervisor/BUILD.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -41,7 +41,7 @@ packages:
commands:
- ["curl", "-OL", "https://matt.ucc.asn.au/dropbear/dropbear-2020.81.tar.bz2"]
- ["tar", "xjf", "dropbear-2020.81.tar.bz2"]
- ["sh", "-c", "cd dropbear-2020.81; ./configure --enable-static && sed -i '/clearenv();/d' svr-chansession.c && sed -i '/addnewvar(\"PATH\", DEFAULT_PATH);/d' svr-chansession.c && make"]
- ["sh", "-c", "cd dropbear-2020.81; ./configure --enable-static && sed -i '/clearenv();/d' svr-chansession.c && sed -i '/addnewvar(\"PATH\", DEFAULT_PATH);/d' svr-chansession.c && sed -i 's/filestat.st_mode & (S_IWGRP | S_IWOTH)/0/g' svr-authpubkey.c && make"]
- ["mv", "dropbear-2020.81/dropbear", "dropbear"]
- ["mv", "dropbear-2020.81/dropbearkey", "dropbearkey"]
- ["rm", "-rf", "dropbear-2020.81*"]

0 comments on commit 6306aea

Please sign in to comment.