From e8dd34b0d3ba704deff696c1683297536a494893 Mon Sep 17 00:00:00 2001 From: Andrew Tridgell Date: Fri, 26 Sep 1997 12:39:45 +0000 Subject: This commit fixes the security hole due to buffer overflows. The main fix is just a couple of lines long, but I have now also put precautionary checks on a large number of other places in the code where unchecked string copies were being performed. An exploit via one of these copies is unlikely, but is is better to be safe. I also added a routine to log possible exploit attempts using the code that was posted for obtaining root access on a Samba server. --- source/include/local.h | 2 ++ 1 file changed, 2 insertions(+) (limited to 'source/include/local.h') diff --git a/source/include/local.h b/source/include/local.h index fc589d7ac0d..9548bf74b6b 100644 --- a/source/include/local.h +++ b/source/include/local.h @@ -42,6 +42,8 @@ #define WORDMAX 0xFFFF +/* the maximum password length before we declare a likely attack */ +#define MAX_PASSWORD_LENGTH 200 /* separators for lists */ #define LIST_SEP " \t,;:\n\r" -- cgit v1.2.1 From 4bf12a48435b3ec504439251638586c76742010c Mon Sep 17 00:00:00 2001 From: Andrew Tridgell Date: Thu, 9 Oct 1997 06:47:20 +0000 Subject: change MAX_PASSWORD_LENGTH to MAX_PASS_LEN to prevent conflict on some systems --- source/include/local.h | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'source/include/local.h') diff --git a/source/include/local.h b/source/include/local.h index 9548bf74b6b..f5f2c318180 100644 --- a/source/include/local.h +++ b/source/include/local.h @@ -43,7 +43,7 @@ #define WORDMAX 0xFFFF /* the maximum password length before we declare a likely attack */ -#define MAX_PASSWORD_LENGTH 200 +#define MAX_PASS_LEN 200 /* separators for lists */ #define LIST_SEP " \t,;:\n\r" -- cgit v1.2.1