oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
25,397 Commits 2 Branches 2 Tags
d9f4d53dda779dfbb6ee0e5e32c3714f46ca03d0
Commit Graph

173 Commits

Author SHA1 Message Date
Andrew Bartlett
d9f4d53dda s4:heimdal Use correct variable to advance past -- options in kpasswd 
This bug was introduced when kpasswd was migrated to a local getarg()
call, in Heimdal commit 7dd146072c

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2010-03-27 01:20:52 -07:00
Russ Allbery
97648fc257 Disable kpasswdd error replies to completely malformed requests 
Only send an error reply if the request passes basic verification.
Otherwise, kpasswdd would reply to every UDP packet, allowing an
attacker to set up a ping-pong DoS attack via a spoofed UDP packet with
a source address of another UDP service that also replies to every
packet.

Also suppress the error reply if ap_req_len is 0, since this indicates
an error packet.  An error packet may be the result of a ping-pong
attacker pointing us at another kpasswdd.

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2010-03-16 11:50:22 -07:00
Love Hornquist Astrand
c867fd3e2e Make libtool pull in the depenency on libldap 
Put in explicy depenency on libdap so that libtool
might to the right thing for us.

Patch from Jan Rekorajski
 2009-12-08 00:15:10 -08:00
Love Hornquist Astrand
c6bbdb545b First drop of Windows build infrastructure from Secure Endpoints 2009-11-24 12:12:53 -08:00
Love Hornquist Astrand
7dd146072c switch to getarg directly 2009-11-23 07:36:34 -08:00
Love Hornquist Astrand
01ae59fb03 Copyright (c) 1997, 2000 - 2005 Kungliga Tekniska Högskolan 2009-10-24 14:18:05 -07:00
Love Hornquist Astrand
290255ee0b Drop optind variable since its only set (and -Wshadow libsystem) 
From Matthias Dieter Wallnöfer
 2009-10-16 08:26:43 -07:00
Love Hörnquist Åstrand
aa5b66d1e8 plug a memory leak. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25324 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-15 22:16:49 +00:00
Love Hörnquist Åstrand
b77ee0c2f8 Close f, from cppcheck 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25277 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-08 20:33:22 +00:00
Love Hörnquist Åstrand
5c0fc04d81 use krb5_cc_new_unique, use constants for cache types 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25050 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 04:05:48 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
979ac09247 return exit_value 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23508 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-11 10:00:39 +00:00
Love Hörnquist Åstrand
07482fe5ad Switch to krb5_set_password. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23398 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:28:07 +00:00
Love Hörnquist Åstrand
185e54925d use krb5_free_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23321 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-24 23:49:06 +00:00
Love Hörnquist Åstrand
d26d184367 Use hdb_db_dir(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22252 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-09 05:59:34 +00:00
Love Hörnquist Åstrand
2cfc283d68 Fix pointer vs strict alias rules. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21511 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-12 12:43:46 +00:00
Love Hörnquist Åstrand
cc4333b758 remove cvs ignore files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21026 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-09 03:09:59 +00:00
Love Hörnquist Åstrand
7ba2b2006c rename des to hcrypto 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20466 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-20 08:29:05 +00:00
Love Hörnquist Åstrand
3154e1056e Use strcspn to remove \n from string returned by fgets. 
From Björn Sandell


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19233 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 08:04:05 +00:00
Love Hörnquist Åstrand
ece5f9603e Make krb5_get_init_creds_opt_free take a context argument. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19078 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-20 18:12:41 +00:00
Love Hörnquist Åstrand
b311b858ff x 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18654 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-20 15:53:39 +00:00
Love Hörnquist Åstrand
99cfea62c1 (change): select the realm based on the target principal 
From Gabor Gombas


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17571 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-13 18:51:41 +00:00
Love Hörnquist Åstrand
652da91adb Rename u_intXX_t to uintXX_t 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17447 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-05 10:52:01 +00:00
Love Hörnquist Åstrand
135a36efb2 (doit): when done, close all fd in the sockets array and free it. 
Coverity NetBSD CID#1916


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17024 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-09 17:45:44 +00:00
Love Hörnquist Åstrand
b866404406 (read_words): catch empty file case, will cause PBE (division by zero) 
later. From Tobias Stoeckmann.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17001 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-04 14:19:13 +00:00
Love Hörnquist Åstrand
44370849ea Send back a better error-message to the client in case the password 
change was rejected.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16698 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-02-03 12:54:28 +00:00
Love Hörnquist Åstrand
d9e04327fb (doit): krb5_addr2sockaddr takes a krb5_socklen_t 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15684 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-20 08:46:02 +00:00
Love Hörnquist Åstrand
f4cf20b4df Support multi-realms databases, requires that all the realms are 
configured on the KDC in krb5.conf with [libdefaults]default_realm
stanzas.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14884 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-22 11:03:11 +00:00
Love Hörnquist Åstrand
5921574969 add verifier libraries with kadm5_add_passwd_quality_verifier 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14803 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-15 11:16:32 +00:00
Love Hörnquist Åstrand
028094a426 document --addresses, controls what addresses kpasswd should listen too 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14481 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-05 18:07:44 +00:00
Love Hörnquist Åstrand
0ae2572c5c add --addresses, controls what addresses kpasswd should listen too 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14480 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-05 18:07:22 +00:00
Love Hörnquist Åstrand
ef82bfdf9a document -c 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14478 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-05 16:08:58 +00:00
Love Hörnquist Åstrand
8e0cc6db4d allow specifying a credential cache to use for the admin principal 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14477 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-05 16:08:03 +00:00
Love Hörnquist Åstrand
8e99ff463e use . 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14373 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-12-08 17:36:48 +00:00
Love Hörnquist Åstrand
42a68b1326 use keeps around options, from OpenBSD 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14372 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-12-08 17:36:18 +00:00
Johan Danielsson
0624b4457e replace INCLUDES with AM_CPPFLAGS 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14164 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-08-26 11:55:29 +00:00
Love Hörnquist Åstrand
17083d8556 use krb5_set_password_using_ccache 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13911 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-06-02 19:30:38 +00:00
Johan Danielsson
26457b7135 replace krb5_free_creds_contents by krb5_free_cred_contents 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13790 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-04-25 19:25:35 +00:00
Love Hörnquist Åstrand
bab9752256 (change_password): remove extra free 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13660 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-03-31 14:01:55 +00:00
Love Hörnquist Åstrand
9e29b1f854 (change_password): handle that printf(".*s", 0, (void*)NULL); doesn't 
work on solaris


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13323 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-02-10 20:28:26 +00:00
Love Hörnquist Åstrand
d7b12004a6 (change): use the right password when changing the password 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13284 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-01-25 18:24:36 +00:00
Love Hörnquist Åstrand
4fd9447d78 (main): parse kdc.conf 
From: Jeffrey Hutzelman <jhutz@cmu.edu>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13122 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-18 22:17:12 +00:00
Love Hörnquist Åstrand
20a96e4876 (process): don't free ticket, krb5_free_ticket does that now 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13104 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-09 01:12:09 +00:00
Love Hörnquist Åstrand
9442843786 (process): remove a abort() 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12893 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-20 20:27:22 +00:00
Love Hörnquist Åstrand
a87bc35edc add support for Set password protocol as defined by RFC3244 -- 
Microsoft Windows 2000 Kerberos Change Password and Set Password Protocols


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12888 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-20 00:08:06 +00:00
Love Hörnquist Åstrand
5d190295aa add context argument to krb5_get_init_creds_opt_alloc 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12783 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-08 15:28:20 +00:00
Love Hörnquist Åstrand
54fc57ccb5 s/des_read_pw_string/UI_UTIL_read_pw_string/ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12753 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-03 09:37:03 +00:00
Love Hörnquist Åstrand
61e14619de use krb5_get_init_creds_opt_alloc/krb5_get_init_creds_opt_free 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12737 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-03 00:31:42 +00:00
Love Hörnquist Åstrand
56fe7f8941 handle setting passwords for multiple principals at the same time 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12273 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-05-13 13:06:10 +00:00