Apple-2gs-SW/hush
1
0
Fork 0
mirror of https://github.com/sheumann/hush.git synced 2024-08-20 19:29:02 +00:00
Code Issues Projects Releases Wiki Activity

correct_password: if password is 'x' or '*' and there is no shadow, use

Browse Source 
fake encrypted password 'aa' (which is guaranteed to fail password check).
This commit is contained in:
Denis Vlasenko 2007-07-03 10:28:46 +00:00
parent a48369183b
commit 54e19da86d
1 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
libbb/correct_password.c
View File

@ -54,13 +54,11 @@ int correct_password(const struct passwd *pw)
struct spwd spw;
struct spwd *result;
char buffer[256];
if (getspnam_r(pw->pw_name, &spw, buffer, sizeof(buffer), &result) == 0)
correct = spw.sp_pwdp;
/* else: no valid shadow password, checking ordinary one */
correct = (getspnam_r(pw->pw_name, &spw, buffer, sizeof(buffer), &result)) ? "aa" : spw.sp_pwdp;
}
#endif
if (!correct || correct[0] == '\0')
if (!correct[0]) /* empty password field? */
return 1;
fake_it: