summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorphk <phk@FreeBSD.org>1994-10-22 17:19:49 +0000
committerphk <phk@FreeBSD.org>1994-10-22 17:19:49 +0000
commit9940e15ad29253547c957b52ff0b5508af6f27d9 (patch)
tree952b0cc8dfb075194ff94ed49185917eba4417d8
parent7be849916e052a2e880b7be7aba0c2d9e0ecc652 (diff)
downloadFreeBSD-src-9940e15ad29253547c957b52ff0b5508af6f27d9.zip
FreeBSD-src-9940e15ad29253547c957b52ff0b5508af6f27d9.tar.gz
A nice little security fix. Things must be rough in moscow...
Submitted by: dima@demos.su (Dima Ruban)
-rw-r--r--libexec/talkd/process.c5
1 files changed, 5 insertions, 0 deletions
diff --git a/libexec/talkd/process.c b/libexec/talkd/process.c
index dd05e6b..fed7d34 100644
--- a/libexec/talkd/process.c
+++ b/libexec/talkd/process.c
@@ -87,6 +87,11 @@ process_request(mp, rp)
rp->answer = BADCTLADDR;
return;
}
+ if (strchr(mp->l_name, 27)) {
+ syslog(LOG_NOTICE, "Illegal user name. Aborting");
+ rp->answer = FAILED;
+ return;
+ }
mp->pid = ntohl(mp->pid);
if (debug)
print_request("process_request", mp);
OpenPOWER on IntegriCloud