[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Broken k5login authentication type.
|
From: |
Simon Josefsson |
|
Subject: |
Re: Broken k5login authentication type. |
|
Date: |
Wed, 08 Aug 2012 12:39:44 +0200 |
|
User-agent: |
Gnus/5.130006 (Ma Gnus v0.6) Emacs/23.3 (gnu/linux) |
Mats Erik Andersson <address@hidden> writes:
> The present code for the authorization type "k5login"
> contains serious security issues, should it have been
> possible to activate it. Fortunately, the code does
> not even construct the path "$HOME/.k5login" correctly,
> so the code will never get into action!
>
> The present patch addresses "lib/authorize.c" on the following
> points of importance:
Thank you! Patch applied.
> * No falling back to other authentication types, as this would
> consitute a security breach in itself.
I think you refer to the case where there is no .k5login file. I recall
that MIT/Heimdal fall back on a strcmp-like approach in this situation,
doesn't it? If the file doesn't exist, I think the semantics in
MIT/Heimdal is that if your principal matches the username, you are let
in. Please check this and followup.
/Simon
- Broken k5login authentication type., Mats Erik Andersson, 2012/08/07
- Re: Broken k5login authentication type.,
Simon Josefsson <=
- Re: Broken k5login authentication type., Mats Erik Andersson, 2012/08/08
- Re: Broken k5login authentication type., Simon Josefsson, 2012/08/08
- Re: Broken k5login authentication type., Mats Erik Andersson, 2012/08/08
- Re: Broken k5login authentication type., Simon Josefsson, 2012/08/08
- Re: Broken k5login authentication type., Mats Erik Andersson, 2012/08/08
- Re: Broken k5login authentication type., Simon Josefsson, 2012/08/08