[Bug 975] Kerberos authentication timing can leak information about account validity

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Mon Nov 21 20:48:48 EST 2005


http://bugzilla.mindrot.org/show_bug.cgi?id=975





------- Comment #4 from dtucker at zip.com.au  2005-11-21 20:48 -------
Created an attachment (id=1029)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=1029&action=view)
pass real username through to kerberos

patch #790 applied, thanks to all.

djm also pointed out that we should probably pass the real name through to
kerberos too, like so (untested).




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list