disable anonyous tgs requests
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21260 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
@@ -475,12 +475,14 @@ check_tgs_flags(krb5_context context,
|
|||||||
et->endtime = min(*et->renew_till, et->endtime);
|
et->endtime = min(*et->renew_till, et->endtime);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
#if 0
|
||||||
/* checks for excess flags */
|
/* checks for excess flags */
|
||||||
if(f.request_anonymous && !config->allow_anonymous){
|
if(f.request_anonymous && !config->allow_anonymous){
|
||||||
kdc_log(context, config, 0,
|
kdc_log(context, config, 0,
|
||||||
"Request for anonymous ticket");
|
"Request for anonymous ticket");
|
||||||
return KRB5KDC_ERR_BADOPTION;
|
return KRB5KDC_ERR_BADOPTION;
|
||||||
}
|
}
|
||||||
|
#endif
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -731,10 +733,12 @@ tgs_make_reply(krb5_context context,
|
|||||||
&rep.ticket.realm);
|
&rep.ticket.realm);
|
||||||
_krb5_principal2principalname(&rep.ticket.sname, server->entry.principal);
|
_krb5_principal2principalname(&rep.ticket.sname, server->entry.principal);
|
||||||
copy_Realm(&tgt_name->realm, &rep.crealm);
|
copy_Realm(&tgt_name->realm, &rep.crealm);
|
||||||
|
/*
|
||||||
if (f.request_anonymous)
|
if (f.request_anonymous)
|
||||||
_kdc_make_anonymous_principalname (&rep.cname);
|
_kdc_make_anonymous_principalname (&rep.cname);
|
||||||
else
|
else */
|
||||||
copy_PrincipalName(&tgt_name->name, &rep.cname);
|
|
||||||
|
copy_PrincipalName(&tgt_name->name, &rep.cname);
|
||||||
rep.ticket.tkt_vno = 5;
|
rep.ticket.tkt_vno = 5;
|
||||||
|
|
||||||
ek.caddr = et.caddr;
|
ek.caddr = et.caddr;
|
||||||
|
|||||||
Reference in New Issue
Block a user