KumiSystems/openwrtv3
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

fix busybox http auth if the root user has an empty password

Browse source 
SVN-Revision: 12869
This commit is contained in:
Felix Fietkau 2008-10-06 16:33:14 +00:00
parent 7e0e4fb486
commit 51a69f3f97
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
package/busybox/patches/310-passwd_access.patch
View file

@ -3,7 +3,7 @@
--- a/networking/httpd.c
+++ b/networking/httpd.c
@@ -1697,21 +1697,32 @@
@@ -1697,21 +1697,32 @@ static int check_user_passwd(const char
if (ENABLE_FEATURE_HTTPD_AUTH_MD5) {
char *md5_passwd;
@ -17,7 +17,7 @@
+
+ pwd = getpwnam(&md5_passwd[4]);
+ if(!pwd->pw_passwd || !pwd->pw_passwd[0] || pwd->pw_passwd[0] == '!')
+ continue;
+ return 1;
+
+ md5_passwd = pwd->pw_passwd;
+ goto check_md5_pw;