freeipa

mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-01-27 00:26:33 -06:00

History

Nathaniel McCallum 013e2eae20 Ensure that a password exists after OTP validation Before this patch users could log in using only the OTP value. This arose because ipapwd_authentication() successfully determined that an empty password was invalid, but 389 itself would see this as an anonymous bind. An anonymous bind would never even get this far in this code, so we simply deny requests with empty passwords. This patch resolves CVE-2014-7828. https://fedorahosted.org/freeipa/ticket/4690 Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>		2014-11-06 10:56:19 +01:00
..
common	include <stdint.h> for uintptr_t	2011-09-22 09:42:11 -04:00
ipa-cldap	CLDAP: add unit tests for make_netbios_name	2014-01-23 18:14:23 +01:00
ipa-dns	Remove CFLAGS duplication.	2013-12-06 14:44:41 +01:00
ipa-enrollment	Remove CFLAGS duplication.	2013-12-06 14:44:41 +01:00
ipa-extdom-extop	extdom: do not return results from the wrong domain	2014-03-25 14:03:05 +01:00
ipa-lockout	ipa-lockout: do not fail when default realm cannot be read	2014-02-04 12:44:45 +01:00
ipa-modrdn	Remove CFLAGS duplication.	2013-12-06 14:44:41 +01:00
ipa-otp-lasttoken	Configure IPA OTP Last Token plugin on upgrade	2014-10-20 10:20:51 +02:00
ipa-pwd-extop	Ensure that a password exists after OTP validation	2014-11-06 10:56:19 +01:00
ipa-range-check	Add missing break	2014-07-14 16:28:59 +02:00
ipa-sidgen	Remove CFLAGS duplication.	2013-12-06 14:44:41 +01:00
ipa-uuid	Remove CFLAGS duplication.	2013-12-06 14:44:41 +01:00
ipa-version	Remove CFLAGS duplication.	2013-12-06 14:44:41 +01:00
ipa-winsync	Remove CFLAGS duplication.	2013-12-06 14:44:41 +01:00
libotp	Add TOTP watermark support	2014-07-25 10:41:17 +02:00
Makefile.am	Add OTP last token plugin	2014-02-21 10:26:02 +01:00
README	Mass tree reorganization for IPAv2. To view previous history of files use:	2009-02-03 15:27:14 -05:00

README