oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

(common_auth): use KRB_VERIFY_SECURE instead of 1

Browse Source 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@5573 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Assar Westerlund
1999-03-17 22:37:44 +00:00
parent 53512281f9
commit bf6de27feb
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
lib/auth/sia/sia.c
View File

@@ -242,6 +242,7 @@ common_auth(sia_collect_func_t *collect,
struct passwd pw, *pwd, fpw, *fpwd; struct passwd pw, *pwd, fpw, *fpwd;
char pwbuf[1024], fpwbuf[1024]; char pwbuf[1024], fpwbuf[1024];
struct state *s = (struct state*)entity->mech[pkgind]; struct state *s = (struct state*)entity->mech[pkgind];
int secure;
if(getpwnam_r(name, &pw, pwbuf, sizeof(pwbuf), &pwd) != 0){ if(getpwnam_r(name, &pw, pwbuf, sizeof(pwbuf), &pwd) != 0){
SIA_DEBUG(("DEBUG", "failed to getpwnam(%s)", name)); SIA_DEBUG(("DEBUG", "failed to getpwnam(%s)", name));
@@ -282,8 +283,13 @@ common_auth(sia_collect_func_t *collect,
toname, toinst, realm, name)); toname, toinst, realm, name));
return SIADFAIL; return SIADFAIL;
} }
if (getuid () == 0)
secure = KRB_VERIFY_SECURE;
else
secure = KRB_VERIFY_NOT_SECURE;
ret = krb_verify_user(toname, toinst, realm, ret = krb_verify_user(toname, toinst, realm,
entity->password, getuid() == 0, NULL); entity->password, secure, NULL);
if(ret){ if(ret){
SIA_DEBUG(("DEBUG", "krb_verify_user: %s", krb_get_err_text(ret))); SIA_DEBUG(("DEBUG", "krb_verify_user: %s", krb_get_err_text(ret)));
if(ret != KDC_PR_UNKNOWN) if(ret != KDC_PR_UNKNOWN)