[NTLUG:Discuss] ttysnoop authentication errors. UPDATE
Richard Geoffrion
ntlug at rain4us.net
Fri Sep 13 12:57:53 CDT 2002
Richard Geoffrion <ntlug at rain4us.net> wrote:
WAIT!! Nevermind the urgency..I just edited ttysnoops.c to accept ANY
password given by returning a 1
I'd rather get the problem corrected but in the meantime here's what I
changed.
[original]
#ifndef SHADOW_PWD
if (strcmp(pw->pw_passwd, crypt(buff, pw->pw_passwd)) == 0)
#else
if (strcmp(spw->sp_pwdp, crypt(buff, spw->sp_pwdp)) == 0)
#endif
{
printf ("\r\nVerified OK... Snoop started.\r\n");
ret = 1;
}
else
printf ("\r\nPassword incorrect.\r\n");
}
fflush (stdout);
exit (ret);
}
}
[/original]
became
[forced]
#ifndef SHADOW_PWD
if (strcmp(pw->pw_passwd, crypt(buff, pw->pw_passwd)) == 0)
#else
if (strcmp(spw->sp_pwdp, crypt(buff, spw->sp_pwdp)) == 0)
#endif
{
printf ("\r\nVerified OK... Snoop started.\r\n");
ret = 1;
}
else
printf ("\r\nSnoop forced.\r\n");
ret = 1;
}
fflush (stdout);
exit (ret);
}
}
[/forced]
or something like that....the formatting got screwed up what with line
wrapping and all.
/dev/rtcg
rtcg {at} richardthecomputerguy d()t nospam-com
More information about the Discuss
mailing list