rpms/thinkfinger/devel thinkfinger-refuse-remote-login-thoenig-01.patch, NONE, 1.1 thinkfinger.spec, 1.6, 1.7
Julian Sikorski (belegdol)
fedora-extras-commits at redhat.com
Thu Oct 11 13:09:13 UTC 2007
Author: belegdol
Update of /cvs/extras/rpms/thinkfinger/devel
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv20881
Modified Files:
thinkfinger.spec
Added Files:
thinkfinger-refuse-remote-login-thoenig-01.patch
Log Message:
* Tue Oct 9 2007 Julian Sikorski <belegdol[at]gmail[dot]com> - 0.3-6
- Fixed remote login sshd crash (RH #324181)
thinkfinger-refuse-remote-login-thoenig-01.patch:
--- NEW FILE thinkfinger-refuse-remote-login-thoenig-01.patch ---
--- pam/pam_thinkfinger.c 2007-03-29 17:00:45.000000000 +0200
+++ pam/pam_thinkfinger.c 2007-09-13 16:13:48.000000000 +0200
@@ -223,6 +223,7 @@
{
int ret;
int retval = PAM_AUTH_ERR;
+ const char *rhost = NULL;
pam_thinkfinger_s pam_thinkfinger;
struct termios term_attr;
libthinkfinger_init_status init_status;
@@ -237,6 +238,12 @@
if (pam_thinkfinger.isatty == 1)
tcgetattr (STDIN_FILENO, &term_attr);
+ pam_get_item (pamh, PAM_RHOST, &rhost);
+ if (rhost != NULL) {
+ pam_thinkfinger_log (&pam_thinkfinger, LOG_ERR, "Error: Remote login from host \"%s\" detected.", rhost);
+ goto out;
+ }
+
pam_get_user (pamh, &pam_thinkfinger.user, NULL);
if (pam_thinkfinger_user_sanity_check (&pam_thinkfinger) || pam_thinkfinger_user_bir_check (&pam_thinkfinger) < 0) {
pam_thinkfinger_log (&pam_thinkfinger, LOG_ERR, "User '%s' is unknown.", pam_thinkfinger.user);
Index: thinkfinger.spec
===================================================================
RCS file: /cvs/extras/rpms/thinkfinger/devel/thinkfinger.spec,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- thinkfinger.spec 27 Sep 2007 05:53:33 -0000 1.6
+++ thinkfinger.spec 11 Oct 2007 13:08:41 -0000 1.7
@@ -1,6 +1,6 @@
Name: thinkfinger
Version: 0.3
-Release: 5%{?dist}
+Release: 6%{?dist}
Summary: A driver for the UPEK/SGS Thomson Microelectronics fingerprint reader
Group: System Environment/Base
License: GPLv2+
@@ -12,6 +12,7 @@
Patch2: thinkfinger-0.3-has-device.patch
Patch3: thinkfinger-0.3-hal.patch
Patch4: thinkfinger-0.3-policykit.patch
+Patch5: thinkfinger-refuse-remote-login-thoenig-01.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
BuildRequires: libusb-devel >= 0.1.11
BuildRequires: libacl-devel
@@ -71,6 +72,7 @@
%patch2 -p1 -b .has-device
%patch3 -p1 -b .hal
%patch4 -p1 -b .policykit
+%patch5 -p0 -b .sshdcrash
%{__install} -pm 644 %{SOURCE1} README.Fedora
@@ -132,6 +134,9 @@
%changelog
+* Tue Oct 9 2007 Julian Sikorski <belegdol[at]gmail[dot]com> - 0.3-6
+- Fixed remote login sshd crash (RH #324181)
+
* Wed Sep 26 2007 Mike Bonnet <mikeb at redhat.com> - 0.3-5
- put fdi file in policy/ directory
- use PolicyKit to manage fingerprint reader access
More information about the scm-commits
mailing list