git.michaelhowe.org Git - packages/o/openafs.git/commit

]> git.michaelhowe.org Git - packages/o/openafs.git/commit

projects / packages / o / openafs.git / commit

author	Daria Brashear <shadow@your-file-system.com>
	Wed, 8 Jul 2015 18:11:33 +0000 (14:11 -0400)
committer	Daria Brashear <shadow@your-file-system.com>
	Thu, 30 Jul 2015 03:59:28 +0000 (23:59 -0400)
commit	eea466507af6320c35e3e8dc751da60a52b15a23
tree	c94a07406edcb832a795f809facc19fbd1f58485	tree \| snapshot
parent	14a4e5bf9ec05946f67123531d6c64a612919e8c	commit \| diff

bos: Use crypt for commands where spoofing could be a risk

bos defaults to not requiring crypt in a lot of cases, instead using clear.

As the simplest way to secure the channel is to enable crypt, do so.

FIXES 131782 (CVE-2015-3283)

(cherry picked from commit 62926630a82b8635d1cb1514b852f9f7a2609311)

Change-Id: Ib9e2514c4d14a77eead69677da1dabf86e526ebc

src/bozo/bos.c

diff | blob | history

RSS Atom