git: DragonFly_RELEASE_2_8 pam_ssh: pam_ssh: Don't allow a bogus passphrase for unencrypted keys.
Peter Avalos
pavalos at crater.dragonflybsd.org
Sat Dec 24 13:24:24 PST 2011
commit abe58d8a810ac63e6a8c1cbb30ee39783dad9e9a
Author: Peter Avalos <pavalos at dragonflybsd.org>
Date: Sat Dec 24 13:21:07 2011 -0800
pam_ssh: pam_ssh: Don't allow a bogus passphrase for unencrypted keys.
key_load_private() ignores the passphrase argument if the private
key is unencrypted. This defeats the nullok check, because it means
a non-null passphrase will successfully unlock the key.
Obtained-From: FreeBSD
Summary of changes:
lib/pam_module/pam_ssh/pam_ssh.c | 25 ++++++++++++++++++-------
1 files changed, 18 insertions(+), 7 deletions(-)
http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/abe58d8a810ac63e6a8c1cbb30ee39783dad9e9a
--
DragonFly BSD source repository
More information about the Commits
mailing list