Red Hat Bugzilla – Bug 66514
vsftpd-1.0.1-anon.patch break one_process_model
Last modified: 2014-03-16 22:28:00 EDT
Description of Problem:
With the anon patch applied, you cannot activate the one_proces_model for
vsftpd, as the getpwnam functions are called from within the chroot()
environement, and it tries to use name services from within the chroot()
environment, which may fail, especially in the case of nscd being active.
If you remove the anon patch, it will not do the getpwnam() inside the
chroot(), and will work as expected.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. build vsftpd without the anon patch for testing
2. set one_process_model=YES, test, this works only without the anon patch
3. set one_process_model=NO, test, this works with both, and is the default
With one_process_model=YES, vsftpd will either deny access, or report
Both setting should work.
If it breaks things, it's not worth it. Fixed in 1.1.3-1.