Subject: CVS commit: basesrc
To: None <source-changes@netbsd.org>
From: Aidan Cully <aidan@netbsd.org>
List: source-changes
Date: 09/12/2000 02:50:15
Module Name: basesrc
Committed By: aidan
Date: Mon Sep 11 23:50:14 UTC 2000
Modified Files:
basesrc/usr.bin/login [netbsd-1-5]: k5login.c
Log Message:
Pull up revision 1.15 (requested by aidan):
Make login check the returned TGT against the local keytab, when using krb5
for authentication. This closes a potential man-in-the-middle attack, where
an intruder can forge a response to login's AS-request, and gain access to
the host.
To generate a diff of this commit:
cvs rdiff -r1.12.2.2 -r1.12.2.3 basesrc/usr.bin/login/k5login.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.