[INN-COMMITTERS] STABLE-2_4 inn/nnrpd (group.c)
Russ Allbery
Russ_Allbery at isc.org
Thu Oct 14 01:49:52 UTC 2004
Date: Thursday, October 14, 2004 @ 01:49:52
Author: rra
Path: /proj/cvs/isc/inn/inn/nnrpd
Tag: STABLE-2_4
Modified: group.c
We had previously returned 411 (group doesn't exist) if the user didn't
have permission to read the group for all cases other than Python dynamic
authentication (where we returned 502 for permission denied). I can sort
of understand the dubious security mindset behind this choice, but at least
when the user isn't already authenticated, this breaks reactive
authentication.
Instead, if the user is not authenticated, return 480, and if the user is
authenticated, return 502. This means that a user can determine that a
group exists by probing for it and seeing if they get 411 or 502, but the
protocol is cleaner.
---------+
group.c | 16 +++++++++-------
1 files changed, 9 insertions(+), 7 deletions(-)
More information about the inn-committers
mailing list