IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity
79df668b5d
freeipa/daemons/ipa-slapi-plugins
History
Nathaniel McCallum 79df668b5d Ensure that a password exists after OTP validation 
Before this patch users could log in using only the OTP value. This
arose because ipapwd_authentication() successfully determined that
an empty password was invalid, but 389 itself would see this as an
anonymous bind. An anonymous bind would never even get this far in
this code, so we simply deny requests with empty passwords.

This patch resolves CVE-2014-7828.

https://fedorahosted.org/freeipa/ticket/4690

Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
2014-11-06 10:56:19 +01:00
..
common include <stdint.h> for uintptr_t 2011-09-22 09:42:11 -04:00
ipa-cldap CLDAP: add unit tests for make_netbios_name 2014-01-23 18:14:23 +01:00
ipa-dns Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-enrollment Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-extdom-extop Fix memory leaks in ipa-extdom-extop 2014-11-05 15:28:27 +01:00
ipa-lockout ipa-lockout: do not fail when default realm cannot be read 2014-02-04 12:44:45 +01:00
ipa-modrdn Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-otp-counter Fix various bugs in ipa-opt-counter and ipa-otp-lasttoken 2014-11-05 15:28:27 +01:00
ipa-otp-lasttoken Fix various bugs in ipa-opt-counter and ipa-otp-lasttoken 2014-11-05 15:28:27 +01:00
ipa-pwd-extop Ensure that a password exists after OTP validation 2014-11-06 10:56:19 +01:00
ipa-range-check Add missing break 2014-07-14 16:28:59 +02:00
ipa-sidgen Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-uuid Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-version Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-winsync Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
libotp Move OTP synchronization step to after counter writeback 2014-09-30 16:19:06 +02:00
Makefile.am Create ipa-otp-counter 389DS plugin 2014-10-20 10:12:36 +02:00
README Mass tree reorganization for IPAv2. To view previous history of files use: 2009-02-03 15:27:14 -05:00

README