oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
28,318 Commits 2 Branches 2 Tags
d609264a006a2fce77a9991aa55bb152d3418a2a
Commit Graph

26 Commits

Author SHA1 Message Date
Nicolas Williams
8343733562 kadmind: check ACLs for aliases CVE-2016-2400 
CVE-2016-2400

kadmind(8) was not checking for 'add' permission to aliases added via
kadm5_modify_principal().  This is a security vulnerability.  The impact
of this vulnerability is mostly minor because most sites that use
kadmind(8) generally grant roughly the same level of permissions to all
administrators.  However, the impact will be higher for sites that grant
modify privileges to large numbers of less-privileged users.

From what we know of existing deployments of Heimdal, it seems very
likely that the impact of this vulnerability will be minor for most
sites.
 2016-02-26 01:04:32 -06:00
Love Hornquist Astrand
4ebfd6b818 make sure logs are truncated 2012-10-07 11:11:17 -07:00
Love Hornquist Astrand
fed3050bc0 use ` instead of $( to please legacy solaris /bin/sh 2011-10-19 11:36:18 +02:00
Love Hornquist Astrand
f73a7b94d0 test kadmind get -o 2010-06-03 11:44:14 -07:00
Love Hornquist Astrand
86da42df1d abstract out --no-afslog and --no-unlog 2010-06-01 14:42:16 -07:00
Love Hornquist Astrand
72908828b1 remove $Id$ 2009-09-21 10:36:37 -07:00
Love Hornquist Astrand
3ed38b29c7 If client tried IPv6, but service only listened on IPv4 2009-09-21 07:55:33 -07:00
Love Hornquist Astrand
4795494a78 If there is no useful db support compile in, disable test 2009-09-19 14:06:35 -07:00
Love Hornquist Astrand
0a9eeb8831 migrate to ${env_setup} 2009-09-07 15:10:43 -07:00
Love Hornquist Astrand
17de01f523 Check that get -o pkinit-acl works. 2009-07-19 20:57:47 -07:00
Love Hörnquist Åstrand
d93ac20298 kill -9 to make store its dead 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24993 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:03:47 +00:00
Love Hörnquist Åstrand
60b4ec74d5 dont use leaks kill on non existant process 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24166 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 05:11:02 +00:00
Love Hörnquist Åstrand
df0cc7d1b4 use leaks-kill.sh 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24165 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 05:10:51 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
fac9f2afdd check non globing request 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23254 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-03 05:28:43 +00:00
Love Hörnquist Åstrand
d7304bbed1 Test globbing acl's 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23250 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-03 05:26:47 +00:00
Love Hörnquist Åstrand
6d694244ce evil hack to support libtool 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22523 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-24 12:24:48 +00:00
Love Hörnquist Åstrand
8401ac3331 Check that admin-less principal works. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22187 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-06 05:17:30 +00:00
Love Hörnquist Åstrand
71e883c406 x 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21851 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 06:57:56 +00:00
Love Hörnquist Åstrand
517b2c2920 check response from donotexists testcase. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21710 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-26 20:22:31 +00:00
Love Hörnquist Åstrand
f4d59b79b0 Test donotexists case too. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21706 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-26 20:16:59 +00:00
Love Hörnquist Åstrand
130b130885 more hints about what can go wrong. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21596 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-16 18:47:59 +00:00
Love Hörnquist Åstrand
e71c74efdd Give more hints of what went wrong. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21583 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-16 10:22:41 +00:00
Love Hörnquist Åstrand
ccb7332e0b Send kill outout to /dev/null. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21472 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-10 16:28:48 +00:00
Love Hörnquist Åstrand
77a6a6f0b1 store password before we start 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21471 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-10 16:27:47 +00:00
Love Hörnquist Åstrand
6a1f5309ab Simple test for server based kadmin. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21466 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-10 16:01:46 +00:00