diff options
author | djm@openbsd.org <djm@openbsd.org> | 2015-02-25 17:29:38 +0000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2015-02-26 04:32:08 +1100 |
commit | 6f621603f9cff2a5d6016a404c96cb2f8ac2dec0 (patch) | |
tree | 636d95b7019b04ec8b4371e27f4a6844b93b7dad /auth.c | |
parent | 6288e3a935494df12519164f52ca5c8c65fc3ca5 (diff) |
upstream commit
don't leak validity of user in "too many authentication
failures" disconnect message; reported by Sebastian Reitenbach
Diffstat (limited to 'auth.c')
-rw-r--r-- | auth.c | 5 |
1 files changed, 3 insertions, 2 deletions
@@ -1,4 +1,4 @@ -/* $OpenBSD: auth.c,v 1.109 2015/01/20 23:14:00 deraadt Exp $ */ +/* $OpenBSD: auth.c,v 1.110 2015/02/25 17:29:38 djm Exp $ */ /* * Copyright (c) 2000 Markus Friedl. All rights reserved. * @@ -331,13 +331,14 @@ auth_log(Authctxt *authctxt, int authenticated, int partial, void auth_maxtries_exceeded(Authctxt *authctxt) { - packet_disconnect("Too many authentication failures for " + error("maximum authentication attempts exceeded for " "%s%.100s from %.200s port %d %s", authctxt->valid ? "" : "invalid user ", authctxt->user, get_remote_ipaddr(), get_remote_port(), compat20 ? "ssh2" : "ssh1"); + packet_disconnect("Too many authentication failures"); /* NOTREACHED */ } |