From 7c99b1ceda9f6bfb1dc36bae30de0c6a49c6ec69 Mon Sep 17 00:00:00 2001 From: Darren Tucker Date: Fri, 4 Jul 2008 12:53:23 +1000 Subject: - djm@cvs.openbsd.org 2008/07/02 13:30:34 [auth2.c] really really remove the freebie "none" auth try for protocol 2 --- ChangeLog | 8 +++++++- auth2.c | 4 ++-- 2 files changed, 9 insertions(+), 3 deletions(-) diff --git a/ChangeLog b/ChangeLog index 873e1459d..6f69442f4 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,9 @@ +20080704 + - (dtucker) OpenBSD CVS Sync + - djm@cvs.openbsd.org 2008/07/02 13:30:34 + [auth2.c] + really really remove the freebie "none" auth try for protocol 2 + 20080702 - (dtucker) OpenBSD CVS Sync - djm@cvs.openbsd.org 2008/06/30 08:05:59 @@ -4532,4 +4538,4 @@ OpenServer 6 and add osr5bigcrypt support so when someone migrates passwords between UnixWare and OpenServer they will still work. OK dtucker@ -$Id: ChangeLog,v 1.5048 2008/07/02 12:56:09 dtucker Exp $ +$Id: ChangeLog,v 1.5049 2008/07/04 02:53:23 dtucker Exp $ diff --git a/auth2.c b/auth2.c index 31f01f9fb..4b96c652f 100644 --- a/auth2.c +++ b/auth2.c @@ -1,4 +1,4 @@ -/* $OpenBSD: auth2.c,v 1.117 2008/07/02 12:36:39 djm Exp $ */ +/* $OpenBSD: auth2.c,v 1.118 2008/07/02 13:30:34 djm Exp $ */ /* * Copyright (c) 2000 Markus Friedl. All rights reserved. * @@ -333,7 +333,7 @@ userauth_finish(Authctxt *authctxt, int authenticated, char *method) /* now we can break out */ authctxt->success = 1; } else { - if (++authctxt->failures > options.max_authtries) { + if (++authctxt->failures >= options.max_authtries) { #ifdef SSH_AUDIT_EVENTS PRIVSEP(audit_event(SSH_LOGIN_EXCEED_MAXTRIES)); #endif -- cgit v1.2.3