Skip to content
Snippets Groups Projects
Commit c199632e authored by rswindell's avatar rswindell
Browse files

Fix bug where if you attempt a login via SSH or RLogin with an unknown user

account and provide a lowercase password as part of the negotiation, the user
account was created with the lowercase password which would cause problems
with elements that assume all passwords are stored in uppercase in the user.dat
file.
parent 7b92e683
No related branches found
No related tags found
No related merge requests found
...@@ -368,6 +368,7 @@ BOOL sbbs_t::newuser() ...@@ -368,6 +368,7 @@ BOOL sbbs_t::newuser()
if(rlogin_pass[0] && chkpass(rlogin_pass,&useron,true)) { if(rlogin_pass[0] && chkpass(rlogin_pass,&useron,true)) {
CRLF; CRLF;
SAFECOPY(useron.pass, rlogin_pass); SAFECOPY(useron.pass, rlogin_pass);
strupr(useron.pass); /* passwords are case insensitive, but assumed (in some places) to be uppercase in the user database */
} }
else { else {
c=0; c=0;
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment