Red Hat Bugzilla – Bug 440268
CVE-2008-1657 openssh: commands in ~/.ssh/rc override ForceCommand directive
Last modified: 2010-12-23 11:54:06 EST
OpenSSH version 4.9 fixed an issue that allowed local users with write access to
their ~/.ssh/rc file to override administratively set ForceCommand, possibly
bypassing intended security restrictions.
Affects only F7, F8 & Rawhide.
Tomas is obviously right. ForceCommand directive was introduced in OpenSSH
version 4.4 (http://openssh.org/txt/release-4.4):
Changes since OpenSSH 4.3:
* Added a "ForceCommand" directive to sshd_config(5). Similar to the
command="..." option accepted in ~/.ssh/authorized_keys, this forces
the execution of the specified command regardless of what the user
requested. This is very useful in conjunction with the new "Match"
Therefore, this issue did not affect versions of openssh packages as shipped
with Red Hat Enterprise Linux 2.1, 3, 4, and 5.