- djm@cvs.openbsd.org 2010/06/25 08:46:17

[auth1.c auth2-none.c] skip the initial check for access with an empty password when PermitEmptyPasswords=no; bz#1638; ok markus@
author: Damien Miller <djm@mindrot.org> 2010-06-26 10:01:33 +1000
committer: Damien Miller <djm@mindrot.org> 2010-06-26 10:01:33 +1000
commit: bda3ecafcafd85856c6ffd0ba54b85afe6d71a84 (patch)
tree: d178623178ba625c2880c0ee62cc0ddf9d75e524 /auth1.c
parent: 8853ca5fc46b7b71c74baeefb9b0899c7fcfdb9a (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/auth1.c b/auth1.c
index 1801661f..bf442dbf 100644
--- a/auth1.c
+++ b/auth1.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth1.c,v 1.73 2008/07/04 23:30:16 djm Exp $ */
+/* $OpenBSD: auth1.c,v 1.74 2010/06/25 08:46:17 djm Exp $ */
 /*
  * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
  *                    All rights reserved
@@ -244,7 +244,7 @@ do_authloop(Authctxt *authctxt)
 	    authctxt->valid ? "" : "invalid user ", authctxt->user);
 
 	/* If the user has no password, accept authentication immediately. */
-	if (options.password_authentication &&
+	if (options.permit_empty_passwd && options.password_authentication &&
 #ifdef KRB5
 	    (!options.kerberos_authentication || options.kerberos_or_local_passwd) &&
 #endif
author	Damien Miller <djm@mindrot.org>	2010-06-26 10:01:33 +1000
committer	Damien Miller <djm@mindrot.org>	2010-06-26 10:01:33 +1000
commit	bda3ecafcafd85856c6ffd0ba54b85afe6d71a84 (patch)
tree	d178623178ba625c2880c0ee62cc0ddf9d75e524 /auth1.c
parent	8853ca5fc46b7b71c74baeefb9b0899c7fcfdb9a (diff)