* New upstream release (http://www.openssh.com/txt/release-6.1).

- Enable pre-auth sandboxing by default for new installs. - Allow "PermitOpen none" to refuse all port-forwarding requests (closes: #543683).
author: Colin Watson <cjwatson@debian.org> 2012-09-07 00:20:47 +0100
committer: Colin Watson <cjwatson@debian.org> 2012-09-07 00:20:47 +0100
commit: eab78da6a54225de06271d9c8da650f04a55ed88 (patch)
tree: aa258ca77515939f6d89317ff67fbcb0bca08b24 /auth-passwd.c
parent: a26f5de49df59322fde07f7be91b3e3969c9c238 (diff)
parent: c6a2c0334e45419875687d250aed9bea78480f2e (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/auth-passwd.c b/auth-passwd.c
index b1c6ce092..68bbd18dd 100644
--- a/auth-passwd.c
+++ b/auth-passwd.c
@@ -209,6 +209,7 @@ sys_auth_passwd(Authctxt *authctxt, const char *password)
         * Authentication is accepted if the encrypted passwords
         * are identical.
         */
-        return (strcmp(encrypted_password, pw_password) == 0);
+        return encrypted_password != NULL &&
+            strcmp(encrypted_password, pw_password) == 0;
 }
 #endif
author	Colin Watson <cjwatson@debian.org>	2012-09-07 00:20:47 +0100
committer	Colin Watson <cjwatson@debian.org>	2012-09-07 00:20:47 +0100
commit	eab78da6a54225de06271d9c8da650f04a55ed88 (patch)
tree	aa258ca77515939f6d89317ff67fbcb0bca08b24 /auth-passwd.c
parent	a26f5de49df59322fde07f7be91b3e3969c9c238 (diff)
parent	c6a2c0334e45419875687d250aed9bea78480f2e (diff)

diff --git a/auth-passwd.c b/auth-passwd.c index b1c6ce092..68bbd18dd 100644 --- a/auth-passwd.c +++ b/auth-passwd.c
@@ -209,6 +209,7 @@ sys_auth_passwd(Authctxt authctxt, const char password)
209	* Authentication is accepted if the encrypted passwords	209	* Authentication is accepted if the encrypted passwords
210	* are identical.	210	* are identical.
211	*/	211	*/
212	return (strcmp(encrypted_password, pw_password) == 0);	212	return encrypted_password != NULL &&
		213	strcmp(encrypted_password, pw_password) == 0;
213	}	214	}
214	#endif	215	#endif