tags 600065 + pending thanks On Wed, 2010-10-13 at 12:46 +0200, Piotr Wadas wrote: > In nslcd/pam.c ( nslcd_pam_authz ), about line 277 > > char ruser[32]; > > is too small - if username contains domain name, which is rather > common practice, the limit is reached, should be at least 128 I guess > ( or configurable ). > E.g. [email protected] - and nslcd rejects pam-client > message, which causes session to fail. > Must've rebuild with procol debugging to find it, thanks for -DDEBUG_PROT > -DDEBUG_PROT_DUMP > switches.
Thanks for pointing this out. I've fixed it in the development version by making sure all PAM request buffers have a sane size. For squeeze I'll try to get this fixed (which will only include the fix for the ruser buffer). -- -- arthur - [email protected] - http://people.debian.org/~adejong --
signature.asc
Description: This is a digitally signed message part
