CVS log for src/usr.bin/ssh/auth-passwd.c

Request diff between arbitrary revisions

Default branch: MAIN
Current tag: OPENBSD_6_0_BASE

Revision 1.45 / (download) - annotate - [select for diffs], Thu Jul 21 01:39:35 2016 UTC (7 years, 10 months ago) by dtucker
Branch: MAIN
CVS Tags: OPENBSD_6_2_BASE, OPENBSD_6_2, OPENBSD_6_1_BASE, OPENBSD_6_1, OPENBSD_6_0_BASE, OPENBSD_6_0
Changes since 1.44: +6 -1 lines
Diff to previous 1.44 (colored)

Skip passwords longer than 1k in length so clients can't easily DoS sshd
by sending very long passwords, causing it to spend CPU hashing them.
feedback djm@, ok markus@.

Brought to our attention by tomas.kuthan at oracle.com, shilei-c at
360.cn and coredump at autistici.org

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.

Diffs between
and

Preferred Diff type:
View only Branch:
Sort log by: