upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-02-20 00:11:07 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
opnsense-src/lib/libpam/modules/pam_ssh
History
Dag-Erling Smørgrav 4520e72ebf key_load_private() ignores the passphrase argument if the private key 
is unencrypted.  This defeats the nullok check, because it means a
non-null passphrase will successfully unlock the key.

To address this, try at first to load the key without a passphrase.
If this succeeds and the user provided a non-empty passphrase *or*
nullok is false, reject the key.

MFC after:	1 week
Noticed by:	Guy Helmer <guy.helmer@palisadesystems.com>
2011-11-20 15:18:49 +00:00
..
Makefile Build lib/ with WARNS=6 by default. 2010-01-02 09:58:07 +00:00
pam_ssh.8 Load the ECDSA key if there is one. 2011-10-07 12:58:33 +00:00
pam_ssh.c key_load_private() ignores the passphrase argument if the private key 2011-11-20 15:18:49 +00:00