diff options
| author | Guy Harris <guy@alum.mit.edu> | 2019-02-03 13:35:17 -0800 |
|---|---|---|
| committer | Guy Harris <guy@alum.mit.edu> | 2019-02-03 13:35:17 -0800 |
| commit | 4ca180196867f61ebafceac73d699e3d5d227b2e (patch) | |
| tree | e9b5897d07ba45eb1000a8fc059fa54d81906dfd /rpcapd | |
| parent | db93927485d0442d81a8010548f33ecd0ad24b27 (diff) | |
| download | libpcap-4ca180196867f61ebafceac73d699e3d5d227b2e.tar.gz | |
Don't distinguish between invalid user name and invalid password.
That makes brute-forcing harder, as a brute-forcing client isn't told
that it can give up on a given user name. (Perhaps it can guess that
based on how quickly we say "no".)
Diffstat (limited to 'rpcapd')
| -rw-r--r-- | rpcapd/daemon.c | 15 |
1 files changed, 12 insertions, 3 deletions
diff --git a/rpcapd/daemon.c b/rpcapd/daemon.c index 4f6c5a3b..d513a458 100644 --- a/rpcapd/daemon.c +++ b/rpcapd/daemon.c @@ -1387,6 +1387,15 @@ daemon_AuthUserPwd(char *username, char *password, char *errbuf) * policies, user right assignment) * However, it seems to me that if you run it as a service, this * right should be provided by default. + * + * XXX - hopefully, this returns errors such as ERROR_LOGON_FAILURE, + * which merely indicates that the user name or password is + * incorrect, not whether it's the user name or the password + * that's incorrect, so a client that's trying to brute-force + * accounts doesn't know whether it's the user name or the + * password that's incorrect, so it doesn't know whether to + * stop trying to log in with a given user name and move on + * to another user name. */ HANDLE Token; if (LogonUser(username, ".", password, LOGON32_LOGON_NETWORK, LOGON32_PROVIDER_DEFAULT, &Token) == 0) @@ -1436,7 +1445,7 @@ daemon_AuthUserPwd(char *username, char *password, char *errbuf) // This call is needed to get the uid if ((user = getpwnam(username)) == NULL) { - pcap_snprintf(errbuf, PCAP_ERRBUF_SIZE, "Authentication failed: no such user"); + pcap_snprintf(errbuf, PCAP_ERRBUF_SIZE, "Authentication failed: user name or password incorrect"); return -1; } @@ -1444,7 +1453,7 @@ daemon_AuthUserPwd(char *username, char *password, char *errbuf) // This call is needed to get the password; otherwise 'x' is returned if ((usersp = getspnam(username)) == NULL) { - pcap_snprintf(errbuf, PCAP_ERRBUF_SIZE, "Authentication failed: no such user"); + pcap_snprintf(errbuf, PCAP_ERRBUF_SIZE, "Authentication failed: user name or password incorrect"); return -1; } user_password = usersp->sp_pwdp; @@ -1464,7 +1473,7 @@ daemon_AuthUserPwd(char *username, char *password, char *errbuf) if (strcmp(user_password, (char *) crypt(password, user_password)) != 0) { - pcap_snprintf(errbuf, PCAP_ERRBUF_SIZE, "Authentication failed: password incorrect"); + pcap_snprintf(errbuf, PCAP_ERRBUF_SIZE, "Authentication failed: user name or password incorrect"); return -1; } |