]> andersk Git - gssapi-openssh.git/commit
andersk / gssapi-openssh.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e6d02b1) | patch
fix for http://grid.ncsa.uiuc.edu/ssh/implicitlogin.adv vulnerability:
authorjbasney <jbasney>
Tue, 13 Jul 2004 23:34:55 +0000 (23:34 +0000)
committerjbasney <jbasney>
Tue, 13 Jul 2004 23:34:55 +0000 (23:34 +0000)
commit9ec9d5ad46b4abdbfb0f69dd4fbfb8083d6a6666
treee217c28df817ab9a215b2ef3ece0407b661763a7tree
parente6d02b1ffc7a2ebaf7a8311f6e58254bc561b940commit | diff
fix for http://grid.ncsa.uiuc.edu/ssh/implicitlogin.adv vulnerability:
- set authctxt->value = 0 until we actually verify it via
  getpwnamallow(user), which checks for disabled accounts
other code cleanup:
- remove unneeded check for authctxt->valid before printing a debug
  msg, leftover from old logic
- remove spurious ';'
- added a comment on end brace for implicit username block
openssh/auth2.c diff | blob | blame | history
git-cvsimport mirror of GSI OpenSSH
This page took 0.043208 seconds and 5 git commands to generate.