From owner-cvs-all Fri Aug 2 3:14:24 2002 Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 187FA37B400; Fri, 2 Aug 2002 03:14:20 -0700 (PDT) Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id BD68343E5E; Fri, 2 Aug 2002 03:14:19 -0700 (PDT) (envelope-from des@FreeBSD.org) Received: from freefall.freebsd.org (des@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.4/8.12.4) with ESMTP id g72AEJJU089069; Fri, 2 Aug 2002 03:14:19 -0700 (PDT) (envelope-from des@freefall.freebsd.org) Received: (from des@localhost) by freefall.freebsd.org (8.12.4/8.12.4/Submit) id g72AEJt8089068; Fri, 2 Aug 2002 03:14:19 -0700 (PDT) Message-Id: <200208021014.g72AEJt8089068@freefall.freebsd.org> From: Dag-Erling Smorgrav Date: Fri, 2 Aug 2002 03:14:19 -0700 (PDT) To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/lib/libpam/modules/pam_unix pam_unix.c X-FreeBSD-CVS-Branch: RELENG_4 Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG des 2002/08/02 03:14:19 PDT Modified files: (Branch: RELENG_4) lib/libpam/modules/pam_unix pam_unix.c Log: Fix an inverted test that, instead of checking for a null password, checked for a null response. This caused pam_sm_authenticate() to always succeed if the user's password was null (which in itself isn't so bad, except it didn't honor the PAM_DISALLOW_NULL_AUTHTOK flag). Merge some more code from -CURRENT that adds the "nullok" option and checks both that and the PAM_DISALLOW_NULL_AUTHTOK flag before allowing a user with a null password to log in. Revision Changes Path 1.4.2.4 +18 -23 src/lib/libpam/modules/pam_unix/pam_unix.c To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message