diff options
| author | Ezra Peisach <epeisach@mit.edu> | 1995-10-05 19:04:00 +0000 |
|---|---|---|
| committer | Ezra Peisach <epeisach@mit.edu> | 1995-10-05 19:04:00 +0000 |
| commit | ab357e92d3092b53b5973a5cb169746a1054fb4e (patch) | |
| tree | 496da6766d56bcaf2cc08ce120ed9516d8e35858 /src/lib | |
| parent | 224c8603859e31aebb1c9578a76ea7786773d1cc (diff) | |
| download | krb5-ab357e92d3092b53b5973a5cb169746a1054fb4e.tar.gz krb5-ab357e92d3092b53b5973a5cb169746a1054fb4e.tar.xz krb5-ab357e92d3092b53b5973a5cb169746a1054fb4e.zip | |
* alt_prof.c (krb5_read_realm_params): If secure flag is set in
context, do not allow for environment variables to specify
configuration files.
Note: It is still possible to bypass the secure flag by directly calling
krb5_aprof_init which only krb5kdc does.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6929 dc483132-0cff-0310-8789-dd5450dbe970
Diffstat (limited to 'src/lib')
| -rw-r--r-- | src/lib/kadm/ChangeLog | 6 | ||||
| -rw-r--r-- | src/lib/kadm/alt_prof.c | 3 |
2 files changed, 9 insertions, 0 deletions
diff --git a/src/lib/kadm/ChangeLog b/src/lib/kadm/ChangeLog index 5299d6a90..a9c54843b 100644 --- a/src/lib/kadm/ChangeLog +++ b/src/lib/kadm/ChangeLog @@ -1,3 +1,9 @@ +Thu Oct 5 12:06:35 1995 Ezra Peisach <epeisach@kangaroo.mit.edu> + + * alt_prof.c (krb5_read_realm_params): If secure flag is set in + context, do not allow for environment variables to specify + configuration files. + Tue Sep 26 02:31:38 1995 Mark Eichin <eichin@cygnus.com> * adm_conn.c (kadm_get_creds): zero out creds->server after diff --git a/src/lib/kadm/alt_prof.c b/src/lib/kadm/alt_prof.c index 2460f176e..316572e3d 100644 --- a/src/lib/kadm/alt_prof.c +++ b/src/lib/kadm/alt_prof.c @@ -267,6 +267,9 @@ krb5_read_realm_params(kcontext, realm, kdcprofile, kdcenv, rparamp) filename = (kdcprofile) ? kdcprofile : DEFAULT_KDC_PROFILE; envname = (kdcenv) ? kdcenv : KDC_PROFILE_ENV; + + if (kcontext->profile_secure == TRUE) envname = 0; + rparams = (krb5_realm_params *) NULL; if (realm) lrealm = strdup(realm); |