- markus@cvs.openbsd.org 2003/08/26 09:58:43 [auth-passwd.c auth.c auth.h auth1.c auth2-none.c auth2-passwd.c] [auth2.c monitor.c] fix passwd auth for 'username leaks via timing'; with djm@, original patches from solar

commit: 856f0be66908352828bb595f7ad5213623c0c610 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Wed Sep 03 07:32:45 2003 +1000
committer: Damien Miller <djm@mindrot.org> Wed Sep 03 07:32:45 2003 +1000
tree: 607c8df162abc4a5aa61cbaad86f9a4aaf71718a
parent: 39638b6aebf5ca69ba75c79c0cc0572e1f396258 [diff] [blame]
diff --git a/auth2.c b/auth2.c
index efff03a..41e77ef 100644
--- a/auth2.c
+++ b/auth2.c

@@ -23,7 +23,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: auth2.c,v 1.101 2003/08/22 13:22:27 markus Exp $");
+RCSID("$OpenBSD: auth2.c,v 1.102 2003/08/26 09:58:43 markus Exp $");
 
 #include "ssh2.h"
 #include "xmalloc.h"
@@ -168,6 +168,7 @@
 #endif
 		} else {
 			logit("input_userauth_request: illegal user %s", user);
+			authctxt->pw = fakepw();
 #ifdef USE_PAM
 			if (options.use_pam)
 				PRIVSEP(start_pam(user));
commit	856f0be66908352828bb595f7ad5213623c0c610	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Wed Sep 03 07:32:45 2003 +1000
committer	Damien Miller <djm@mindrot.org>	Wed Sep 03 07:32:45 2003 +1000
tree	607c8df162abc4a5aa61cbaad86f9a4aaf71718a
parent	39638b6aebf5ca69ba75c79c0cc0572e1f396258 [diff] [blame]