DragonFly BSD
DragonFly commits List (threaded) for 2011-12
[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]

git: DragonFly_RELEASE_2_8 pam_ssh: pam_ssh: Don't allow a bogus passphrase for unencrypted keys.


From: Peter Avalos <pavalos@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 24 Dec 2011 13:24:24 -0800 (PST)

commit abe58d8a810ac63e6a8c1cbb30ee39783dad9e9a
Author: Peter Avalos <pavalos@dragonflybsd.org>
Date:   Sat Dec 24 13:21:07 2011 -0800

    pam_ssh:  pam_ssh:  Don't allow a bogus passphrase for unencrypted keys.
    
    key_load_private() ignores the passphrase argument if the private
    key is unencrypted.  This defeats the nullok check, because it means
    a non-null passphrase will successfully unlock the key.
    
    Obtained-From:  FreeBSD

Summary of changes:
 lib/pam_module/pam_ssh/pam_ssh.c |   25 ++++++++++++++++++-------
 1 files changed, 18 insertions(+), 7 deletions(-)

http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/abe58d8a810ac63e6a8c1cbb30ee39783dad9e9a


-- 
DragonFly BSD source repository



[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]