Re: Null pointer indirection bug in v4.0pl1

To: ken@uunet.ca (Ken Lalonde)
Subject: Re: flexfax: Null pointer indirection bug in v4.0pl1
From: Matthias.Apitz@SOFTCON.de
Cc: flexfax@sgi.com
Reply-To: Matthias.Apitz@SOFTCON.de (Matthias Apitz)
Date: Wed, 14 Jan 1998 10:26:36 +0100 (MEZ)

Ken Lalonde wrote:
    
    There's a *0 bug in hfaxd that shows up when the user logs in without
    a password, and the etc/hosts file requires one.
    Here's the fix:
    
    *** SNPPServer.c++	1998/01/13 20:30:56	1.1
    --- SNPPServer.c++	1998/01/13 20:31:00
    ***************
    *** 990,996 ****
      
          if (checkUser(loginID)) {
      	if (passwd != "") {
    ! 	    if (pass[0] == '\0' || !streq(crypt(pass, passwd), passwd)) {
      		if (++loginAttempts >= maxLoginAttempts) {
      		    reply(421, "Login incorrect (closing connection).");
      		    logNotice("Repeated SNPP login failures for user %s from %s [%s]"
    --- 990,996 ----
      
          if (checkUser(loginID)) {
      	if (passwd != "") {
    ! 	    if (pass == NULL || pass[0] == '\0' || !streq(crypt(pass, passwd), passwd)) {
      		if (++loginAttempts >= maxLoginAttempts) {
      		    reply(421, "Login incorrect (closing connection).");
      		    logNotice("Repeated SNPP login failures for user %s from %s [%s]"
    
    
    
    Ken Lalonde
    UUNET Canada

This bug will be fixed in pl2; thanks for the report anyway.

	matthias

Prev by Date: Re: run
Next by Date: RE: Network problems?
Prev by thread: Null pointer indirection bug in v4.0pl1
Next by thread: Comments and BreakIntoLines
Index(es):
- Main
- Thread

Report any problems to webmaster@hylafax.org

HylaFAX is a trademark of Silicon Graphics Corporation.
Internet connectivity for hylafax.org is provided by:
VirtuALL Private Host Services