diff options
author | Matt Johnston <matt@ucc.asn.au> | 2005-01-11 16:17:03 +0000 |
---|---|---|
committer | Matt Johnston <matt@ucc.asn.au> | 2005-01-11 16:17:03 +0000 |
commit | a350a51764618481a74fdcfe5dfe62d311819716 (patch) | |
tree | 00d27dea47c3c088bdf42b370e9f3cc27f80c206 | |
parent | f91c9a3439a0f36f4550d0b4c793758834882fc6 (diff) | |
download | dropbear-a350a51764618481a74fdcfe5dfe62d311819716.tar.gz |
Read "y/n" response for fingerprints from /dev/tty directly so that dbclient
will work with scp.
-rw-r--r-- | CHANGES | 3 | ||||
-rw-r--r-- | cli-kex.c | 12 |
2 files changed, 14 insertions, 1 deletions
@@ -1,3 +1,6 @@ +- Read "y/n" response for fingerprints from /dev/tty directly so that dbclient + will work with scp. + 0.44 - Mon Jan 3 2005 - SECURITY: Fix for PAM auth so that usernames are logged and conversation @@ -115,13 +115,23 @@ void recv_msg_kexdh_reply() { static void ask_to_confirm(unsigned char* keyblob, unsigned int keybloblen) { char* fp = NULL; + FILE *tty = NULL; + char response = 'z'; fp = sign_key_fingerprint(keyblob, keybloblen); fprintf(stderr, "\nHost '%s' is not in the trusted hosts file.\n(fingerprint %s)\nDo you want to continue connecting? (y/n)\n", cli_opts.remotehost, fp); - if (getc(stdin) == 'y') { + tty = fopen(_PATH_TTY, "r"); + if (tty) { + response = getc(tty); + fclose(tty); + } else { + response = getc(stdin); + } + + if (response == 'y') { m_free(fp); return; } |