Richard Haines <richard_c_haines@xxxxxxxxxxxxxx> writes: > Used by openssh for privilege separated processes in the > preauthentication phase. Maybe mention that this is Red Hat specific patch that is not upstreamed so others do not have this. > > Signed-off-by: Richard Haines <richard_c_haines@xxxxxxxxxxxxxx> > --- > src/policy_config_files.md | 18 +++++++++++++++++- > 1 file changed, 17 insertions(+), 1 deletion(-) > > diff --git a/src/policy_config_files.md b/src/policy_config_files.md > index 4b2c091..9f2996c 100644 > --- a/src/policy_config_files.md > +++ b/src/policy_config_files.md > @@ -715,10 +715,26 @@ run_init=run_init_t > > ## *contexts/openssh_contexts* > > -**To be determined** > +Used by *openssh* (***ssh**(1)*) for privilege separated processes in the > +preauthentication phase. > > **The file format is as follows:** > > +``` > +privsep_preauth=[domain] > +``` > + > +**Where:** > + > +*privsep_preauth* > + > +- The keyword *privsep_preauth* > + > +*domain* > + > +- The domain type for the privilege separated processes in the > + preauthentication phase. > + > **Example file contents:** > > ``` -- gpg --locate-keys dominick.grift@xxxxxxxxxxx Key fingerprint = FCD2 3660 5D6B 9D27 7FC6 E0FF DA7E 521F 10F6 4098 Dominick Grift
