nhyatt/putty-source
1
0
Fork 0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-03-16 12:03:03 -05:00
Code Issues Projects Releases Wiki Activity

As a result of the policy allowing changes of username to reset the

Browse Source 
authentication state, a failed `password' authentication in SSH-2 was
sending us back to trying `none' and `keyboard-interactive' each time
round, which uses up OpenSSH's quota of authentication attempts rather
quickly. Added a check for `cfg.change_username' to the logic which
sends us back to the start.

[originally from svn r4849]
This commit is contained in:
Jacob Nevins 2004-11-20 17:11:38 +00:00
parent da1dfe64bf
commit abf999a809
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ssh.c
View File

@ -5003,7 +5003,8 @@ static void do_ssh2_authconn(Ssh ssh, unsigned char *in, int inlen, int ispkt)
* Additionally, if we'd just tried password * Additionally, if we'd just tried password
* authentication, we should break out of this * authentication, we should break out of this
* whole loop so as to go back to the username * whole loop so as to go back to the username
* prompt. * prompt (iff we're configured to allow
* username change attempts).
*/ */
if (s->type == AUTH_TYPE_NONE) { if (s->type == AUTH_TYPE_NONE) {
/* do nothing */ /* do nothing */
@ -5017,7 +5018,8 @@ static void do_ssh2_authconn(Ssh ssh, unsigned char *in, int inlen, int ispkt)
} else { } else {
c_write_str(ssh, "Access denied\r\n"); c_write_str(ssh, "Access denied\r\n");
logevent("Access denied"); logevent("Access denied");
if (s->type == AUTH_TYPE_PASSWORD) { if (s->type == AUTH_TYPE_PASSWORD &&
ssh->cfg.change_username) {
s->we_are_in = FALSE; s->we_are_in = FALSE;
break; break;
} }