31 lines
903 B
Diff
31 lines
903 B
Diff
|
commit 9a480deec4d20277d8e20bc55515ef0640ca1e55
|
||
|
|
Author: Wayne Davison <wayned@samba.org>
|
||
|
|
Date: Tue Oct 24 20:44:37 2017 -0700
|
||
|
|
|
||
|
|
Only allow a modern checksum method for passwords.
|
||
|
|
|
||
|
|
diff --git a/authenticate.c b/authenticate.c
|
||
|
|
index d60ee20..a106b0f 100644
|
||
|
|
--- a/authenticate.c
|
||
|
|
+++ b/authenticate.c
|
||
|
|
@@ -22,6 +22,7 @@
|
||
|
|
#include "itypes.h"
|
||
|
|
|
||
|
|
extern int read_only;
|
||
|
|
+extern int protocol_version;
|
||
|
|
extern char *password_file;
|
||
|
|
|
||
|
|
/***************************************************************************
|
||
|
|
@@ -237,6 +238,11 @@ char *auth_server(int f_in, int f_out, int module, const char *host,
|
||
|
|
if (!users || !*users)
|
||
|
|
return "";
|
||
|
|
|
||
|
|
+ if (protocol_version < 21) { /* Don't allow a weak checksum for the password. */
|
||
|
|
+ rprintf(FERROR, "ERROR: protocol version is too old!\n");
|
||
|
|
+ exit_cleanup(RERR_PROTOCOL);
|
||
|
|
+ }
|
||
|
|
+
|
||
|
|
gen_challenge(addr, challenge);
|
||
|
|
|
||
|
|
io_printf(f_out, "%s%s\n", leader, challenge);
|