Bugzilla – Attachment 1516 Details for
Bug 1472
Authentication options not cleared in privileged process
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
clear key options in monitor on failed auth attempt
openssh-monitor-keyopts.patch (text/plain), 969 bytes, created by
Darren Tucker
on 2008-06-13 07:43:54 AEST
(
hide
)
Description:
clear key options in monitor on failed auth attempt
Filename:
MIME Type:
Creator:
Darren Tucker
Created:
2008-06-13 07:43:54 AEST
Size:
969 bytes
patch
obsolete
>Index: monitor.c >=================================================================== >RCS file: /usr/local/src/security/openssh/cvs/openssh/monitor.c,v >retrieving revision 1.129 >diff -u -p -r1.129 monitor.c >--- monitor.c 19 May 2008 05:34:50 -0000 1.129 >+++ monitor.c 12 Jun 2008 21:26:01 -0000 >@@ -1015,6 +1015,8 @@ mm_answer_keyallowed(int sock, Buffer *m > allowed = options.pubkey_authentication && > user_key_allowed(authctxt->pw, key); > auth_method = "publickey"; >+ if (options.pubkey_authentication && allowed != 1) >+ auth_clear_options(); > break; > case MM_HOSTKEY: > allowed = options.hostbased_authentication && >@@ -1027,6 +1029,8 @@ mm_answer_keyallowed(int sock, Buffer *m > allowed = options.rhosts_rsa_authentication && > auth_rhosts_rsa_key_allowed(authctxt->pw, > cuser, chost, key); >+ if (options.rhosts_rsa_authentication && allowed != 1) >+ auth_clear_options(); > auth_method = "rsa"; > break; > default:
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=1516">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 1472
:
1509
| 1516