Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • v5-34-00-patches
  • v6-26-00-patches
  • v6-28-00-patches
  • v6-22-00-patches
  • v6-24-00-patches
  • latest-stable
  • v6-18-00-patches
  • v6-20-00-patches
  • v6-16-00-patches
  • v6-14-00-patches
  • v6-12-00-patches
  • v6-10-00-patches
  • v6-06-00-patches
  • v6-08-00-patches
  • v6-28-02
  • v6-28-00
  • v6-28-00-rc1
  • v6-29-01
  • v6-27-02
  • v6-26-10
  • v6-26-08
  • v6-24-08
  • v6-26-06
  • v6-26-04
  • v6-26-02
  • v6-26-00
  • v6-25-02
  • v6-24-06
  • v6-24-04
  • v6-24-02
  • v6-24-00
  • v6-22-08
  • v6-25-01
  • v6-24-00-rc1
35 results
Compare
user avatar
From Gerri:
Fons Rademakers authored 
clib/inc/rsalib.h, clib/src/rsalib.c
   o  Random seed initialization moved from rsalib.c to in rootd.cxx,
      proofd.cxx and TAuthenticate.
   o  Introduced counter to avoid infinite loops during key generation

etc/rpdauth.allow
   o  Introduced default with all authentication methods allowed in
      rpdauth.allow

globusauth/src/GlobusAuth.cxx
   o  Secure RSA public transmission to servers (receiving a server
      key)
   o  Added test on Argc() before use of the Argv() arguments
   o  Use isatty to check if interactive session

krb5auth/src/Krb5Auth.cxx
   o  Secure RSA public transmission to servers (receiving a server
      key)
   o  Added test on Argc() before use of the Argv() arguments
   o  Use isatty to check if interactive session

net/inc/TAuthenticate.h, net/src/TAuthenticate.cxx
   o  Secure RSA public transmission to servers (receiving a server
      key)
   o  Added possibility for a "default" THostAuth instantiation valid
      for all hosts if anything more specific is not found.
      Used by TProofServ/TAuthenticate for host without specific
      authentication directives in proof.conf .
   o  Random seed initialization moved from rsalib.c to in rootd.cxx,
      proofd.cxx and TAuthenticate.
   o  Introduced counter to avoid infinite loops during key generation
   o  Fixed potential problem with SSH master-to-slave authentication;
      force failure if, for some reason, the slave is not accepting
      the standard key files (depending on the user ssh config
      directives, this could cause interactive prompt for password
      on the master, therefore hanging the system).
      Specific directives to avoid prompting are passed via command
      line with the '-o' ssh option.
   o  Fixed problem with forming the message used to notify an SSH
      failure
   o  Use mkstemp instead of tmpnam
   o  Use isatty to check if interactive session
   o  Avoid creating duplicates of TAuthDetails instantiation for
      offset = -1
   o  Fixed a few inconsistency of debug levels error messages after
      failed authentications
   o  Fixed a few inconsistency between authentication method names
      and ROOT environment variable names
   o  Fixed problem with null passwd sending in ClearAuth
   o  Fixed problem with method attempting order during negotiation
   o  Add possibility to avoid check on localhost for testing purposes
      (in method GetAuthMeth)

net/src/THostAuth.cxx
   o  Added possibility for a "default" THostAuth instantiation valid
      for all hosts if anything more specific is not found.
      Used by TProofServ/TAuthenticate for host without specific
      authentication directives in proof.conf .

proof/inc/TProof.h, proof/src/TProof.cxx
   o  Moved collection of Authentication information for slaves from
      TProof to TProofServ

proof/inc/TProofServ.h, proof/src/TProofServ.cxx
   o  Improved transmission of RSA public key between TSlave and
      TProofServ
   o  Moved collection of Authentication information for slaves
      from TProof to TProofServ
   o  Added test on Argc() before use of the Argv() arguments

proof/src/TSlave.cxx
   o  Improved transmission of RSA public key between TSlave and
      TProofServ.
      Added possibility to securely forward the SRP password to
      the master (ROOT environment variable: Proof.SendSRPPwd,
      default 0 - off).
   o  Removed checks on Proofd.Authentication in TSlave; security
      stuff is setup in TProofServ and used in TAuthenticate

proofd/src/proofd.cxx
   o  Random seed initialization moved from rsalib.c to in rootd.cxx,
      proofd.cxx and TAuthenticate.

rootd/src/rootd.cxx
   o  Random seed initialization moved from rsalib.c to in rootd.cxx,
      proofd.cxx and TAuthenticate.

rpdutils/inc/rpdp.h, rpdutils/src/rpdutils.cxx
   o  Secure RSA public transmission from clients (sending a server
      key)
   o  Fixed ambiguity with method index resolving from name due to
      the fact that 'usrpwd' contains the string 'srp'
   o  Add file existence check before trying open
   o  Add a few debug messages
   o  Fixed problem with domain checking in daemon.access
      ('cern.ch uidgid' or '.cern.ch uidgid' were not accepted)
   o  Fixed problem with null passwd receiveing in RpdUser

rpdutils/src/ssh.cxx
   o  Fixed function name in debug message in ssh.cxx
   o  Use mkstemp instead of mktemp

srputils/src/SRPAuth.cxx
   o  Secure RSA public transmission to servers (receiving a server
      key)


git-svn-id: http://root.cern.ch/svn/root/trunk@7406 27541ba8-7e3a-0410-8455-c3a389f83636
0ae90f5d
History
user avatar 0ae90f5d
History
Name Last commit Last update
..