| blob | 0ef344712db5a86d6291b8c8bfaa8fdea816009a |
1 /* $OpenBSD: auth-rhosts.c,v 1.47 2016/03/07 19:02:43 djm Exp $ */
2 /*
3 * Author: Tatu Ylonen <ylo@cs.hut.fi>
4 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
5 * All rights reserved
6 * Rhosts authentication. This file contains code to check whether to admit
7 * the login based on rhosts authentication. This file also processes
8 * /etc/hosts.equiv.
9 *
10 * As far as I am concerned, the code I have written for this software
11 * can be used freely for any purpose. Any derived versions of this
12 * software must be clearly marked as such, and if the derived work is
13 * incompatible with the protocol description in the RFC file, it must be
14 * called by a name other than "ssh" or "Secure Shell".
15 */
19 #include <sys/types.h>
20 #include <sys/stat.h>
22 #ifdef HAVE_NETGROUP_H
23 # include <netgroup.h>
24 #endif
25 #include <pwd.h>
26 #include <stdio.h>
27 #include <string.h>
28 #include <stdarg.h>
29 #include <fcntl.h>
30 #include <unistd.h>
45 /* import */
49 /*
50 * This function processes an rhosts-style file (.rhosts, .shosts, or
51 * /etc/hosts.equiv). This returns true if authentication can be granted
52 * based on the file, and returns zero otherwise.
53 */
55 static int
59 {
61 #define RBUFLN 1024
66 /* Open the .rhosts file, deny if unreadable */
72 }
78 }
83 }
85 /* All three must have length >= buf to avoid overflows. */
91 ;
95 /*
96 * NO_PLUS is supported at least on OSF/1. We skip it (we
97 * don't ever support the plus syntax).
98 */
102 /*
103 * This should be safe because each buffer is as big as the
104 * whole string, and thus cannot be overwritten.
105 */
107 dummy)) {
112 /* Host name only. */
116 /* Got both host and user name. */
122 /* Weird... */
124 }
130 /* Process negated host names, or positive netgroups. */
133 host++;
135 host++;
139 user++;
141 user++;
143 /* Check for empty host/user names (particularly '+'). */
145 /* We come here if either was '+' or '-'. */
149 }
150 /* Verify that host name matches. */
159 /* Verify that user name matches. */
166 /* Found the user and host. */
169 /* If the entry was negated, deny access. */
172 filename);
174 }
175 /* Accept authentication. */
177 }
179 /* Authentication using this file denied. */
182 }
184 /*
185 * Tries to authenticate the user using the .shosts or .rhosts file. Returns
186 * true if authentication succeeds. If ignore_rhosts is true, only
187 * /etc/hosts.equiv will be considered (.rhosts and .shosts are ignored).
188 */
190 int
192 {
199 }
201 static int
204 {
208 u_int rhosts_file_index;
213 /* Switch to the user's uid. */
215 /*
216 * Quick check: if the user has no .shosts or .rhosts files and
217 * no system hosts.equiv/shosts.equiv files exist then return
218 * failure immediately without doing costly lookups from name
219 * servers.
220 */
222 rhosts_file_index++) {
223 /* Check users .rhosts or .shosts. */
228 }
229 /* Switch back to privileged uid. */
232 /*
233 * Deny if The user has no .shosts or .rhosts file and there
234 * are no system-wide files.
235 */
241 }
243 /*
244 * If not logging in as superuser, try /etc/hosts.equiv and
245 * shosts.equiv.
246 */
255 }
261 }
262 }
264 /*
265 * Check that the home directory is owned by root or the user, and is
266 * not group or world writable.
267 */
274 }
283 }
284 /* Temporarily use the user's uid. */
287 /* Check all .rhosts files (currently .shosts and .rhosts). */
289 rhosts_file_index++) {
290 /* Check users .rhosts or .shosts. */
296 /*
297 * Make sure that the file is either owned by the user or by
298 * root, and make sure it is not writable by anyone but the
299 * owner. This is to help avoid novices accidentally
300 * allowing access to their account by anyone.
301 */
309 }
310 /*
311 * Check if we have been configured to ignore .rhosts
312 * and .shosts files.
313 */
318 }
319 /* Check if authentication is permitted by the file. */
324 /* Restore the privileged uid. */
330 }
331 }
333 /* Restore the privileged uid. */
336 }
338 int
341 {
343 }