Bug#327358: possible ssh bug
Package: ssh
Version: 3.8.1p1-8.sarg
in /etc/ssh/sshd_conf file we have it setup to only allow connections
from people who exist in a certain group, using the AllowGroups
attribute. This works great until a user has >35 groups (we use ldap
and have a ton of groups setup) ssh won't allow you to connect, leaving
this message in auth.log:
Sep 8 19:29:08 localhost sshd[20683]: getgrouplist: groups list too small
Sep 8 19:29:50 localhost sshd[20689]: getgrouplist: groups list too small
Sep 8 19:30:01 localhost sshd[20692]: getgrouplist: groups list too small
Sep 8 19:30:10 localhost sshd[20696]: getgrouplist: groups list too small
Sep 8 19:30:22 localhost sshd[20698]: getgrouplist: groups list too small
it appears that ssh can't handle >35 groups, and it thinks the amount of
groups are -1.
kernel version 2.4.30-p4smp #1 SMP
lib/libc.so.6 -> libc-2.3.2.so
Reply to: