Subject: CVS commit: basesrc
To: None <source-changes@netbsd.org>
From: Aidan Cully <aidan@netbsd.org>
List: source-changes
Date: 09/12/2000 02:50:15
Module Name:	basesrc
Committed By:	aidan
Date:		Mon Sep 11 23:50:14 UTC 2000

Modified Files:
	basesrc/usr.bin/login [netbsd-1-5]: k5login.c

Log Message:
Pull up revision 1.15 (requested by aidan):
  Make login check the returned TGT against the local keytab, when using krb5
  for authentication.  This closes a potential man-in-the-middle attack, where
  an intruder can forge a response to login's AS-request, and gain access to
  the host.


To generate a diff of this commit:
cvs rdiff -r1.12.2.2 -r1.12.2.3 basesrc/usr.bin/login/k5login.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.