fix bug #150888, log authenication failures with ip address
This commit is contained in:
John Dennis
parent
c0aee78a27
commit
18cc8345e4
86
dovecot-auth-log.patch
Normal file
86
dovecot-auth-log.patch
Normal file
@ -0,0 +1,86 @@
|
|||||||
|
diff -u dovecot-0.99.14/src/pop3-login/client-authenticate.c.orig dovecot-0.99.14/src/pop3-login/client-authenticate.c
|
||||||
|
--- dovecot-0.99.14/src/pop3-login/client-authenticate.c.orig 2005-07-27 16:52:12.936927405 -0400
|
||||||
|
+++ dovecot-0.99.14/src/pop3-login/client-authenticate.c 2005-07-27 16:52:31.806073234 -0400
|
||||||
|
@@ -139,6 +139,8 @@
|
||||||
|
master_callback, &error)) {
|
||||||
|
case -1:
|
||||||
|
/* login failed */
|
||||||
|
+ client_syslog(client,t_strdup_printf("AUTHENTICATE FAILED %s",
|
||||||
|
+ error ? error : ""));
|
||||||
|
client_auth_abort(client, error);
|
||||||
|
break;
|
||||||
|
|
||||||
|
@@ -214,6 +216,8 @@
|
||||||
|
master_callback, &error)) {
|
||||||
|
case -1:
|
||||||
|
/* login failed */
|
||||||
|
+ client_syslog(client,t_strdup_printf("AUTHENTICATE FAILED %s",
|
||||||
|
+ error ? error : ""));
|
||||||
|
client_auth_abort(client, error);
|
||||||
|
break;
|
||||||
|
|
||||||
|
diff -u dovecot-0.99.14/src/login-common/auth-common.c.orig dovecot-0.99.14/src/login-common/auth-common.c
|
||||||
|
diff -u dovecot-0.99.14/src/auth/mech.c.orig dovecot-0.99.14/src/auth/mech.c
|
||||||
|
--- dovecot-0.99.14/src/auth/mech.c.orig 2005-07-27 16:39:33.637767234 -0400
|
||||||
|
+++ dovecot-0.99.14/src/auth/mech.c 2005-07-27 16:41:10.206163232 -0400
|
||||||
|
@@ -162,6 +162,29 @@
|
||||||
|
return buffer_get_modifyable_data(buf, NULL);
|
||||||
|
}
|
||||||
|
|
||||||
|
+void *mech_auth_failure(struct auth_login_reply *reply,
|
||||||
|
+ struct auth_request *auth_request,
|
||||||
|
+ const void *data, size_t data_size)
|
||||||
|
+{
|
||||||
|
+ buffer_t *buf;
|
||||||
|
+
|
||||||
|
+ buf = buffer_create_dynamic(data_stack_pool, 256, (size_t)-1);
|
||||||
|
+
|
||||||
|
+ reply->username_idx = 0;
|
||||||
|
+ buffer_append(buf, auth_request->user, strlen(auth_request->user)+1);
|
||||||
|
+
|
||||||
|
+ if (data_size == 0)
|
||||||
|
+ reply->reply_idx = (size_t)-1;
|
||||||
|
+ else {
|
||||||
|
+ reply->reply_idx = buffer_get_used_size(buf);
|
||||||
|
+ buffer_append(buf, data, data_size);
|
||||||
|
+ }
|
||||||
|
+
|
||||||
|
+ reply->result = AUTH_LOGIN_RESULT_FAILURE;
|
||||||
|
+ reply->data_size = buffer_get_used_size(buf);
|
||||||
|
+ return buffer_get_modifyable_data(buf, NULL);
|
||||||
|
+}
|
||||||
|
+
|
||||||
|
void mech_auth_finish(struct auth_request *auth_request,
|
||||||
|
const void *data, size_t data_size, int success)
|
||||||
|
{
|
||||||
|
@@ -176,7 +199,8 @@
|
||||||
|
data, data_size);
|
||||||
|
reply.result = AUTH_LOGIN_RESULT_SUCCESS;
|
||||||
|
} else {
|
||||||
|
- reply_data = NULL;
|
||||||
|
+ reply_data = mech_auth_failure(&reply, auth_request,
|
||||||
|
+ data, data_size);
|
||||||
|
reply.result = AUTH_LOGIN_RESULT_FAILURE;
|
||||||
|
}
|
||||||
|
|
||||||
|
diff -u dovecot-0.99.14/src/imap-login/client-authenticate.c.orig dovecot-0.99.14/src/imap-login/client-authenticate.c
|
||||||
|
--- dovecot-0.99.14/src/imap-login/client-authenticate.c.orig 2005-07-27 16:46:43.986682432 -0400
|
||||||
|
+++ dovecot-0.99.14/src/imap-login/client-authenticate.c 2005-07-27 16:52:32.390984759 -0400
|
||||||
|
@@ -135,6 +135,8 @@
|
||||||
|
master_callback, &error)) {
|
||||||
|
case -1:
|
||||||
|
/* login failed */
|
||||||
|
+ client_syslog(client,t_strdup_printf("AUTHENTICATE FAILED %s",
|
||||||
|
+ error ? error : ""));
|
||||||
|
client_auth_abort(client, error);
|
||||||
|
break;
|
||||||
|
|
||||||
|
@@ -215,6 +217,8 @@
|
||||||
|
master_callback, &error)) {
|
||||||
|
case -1:
|
||||||
|
/* login failed */
|
||||||
|
+ client_syslog(client,t_strdup_printf("AUTHENTICATE FAILED %s",
|
||||||
|
+ error ? error : ""));
|
||||||
|
client_auth_abort(client, error);
|
||||||
|
break;
|
||||||
|
|
||||||
@ -1,7 +1,7 @@
|
|||||||
Summary: Dovecot Secure imap server
|
Summary: Dovecot Secure imap server
|
||||||
Name: dovecot
|
Name: dovecot
|
||||||
Version: 0.99.14
|
Version: 0.99.14
|
||||||
Release: 6.fc5
|
Release: 7.fc5
|
||||||
License: LGPL
|
License: LGPL
|
||||||
Group: System Environment/Daemons
|
Group: System Environment/Daemons
|
||||||
|
|
||||||
@ -20,6 +20,7 @@ Patch100: dovecot-conf.patch
|
|||||||
Patch101: dovecot-configfile.patch
|
Patch101: dovecot-configfile.patch
|
||||||
Patch102: dovecot-0.99-no-literal-plus-capability.patch
|
Patch102: dovecot-0.99-no-literal-plus-capability.patch
|
||||||
Patch103: dovecot-pam-setcred.patch
|
Patch103: dovecot-pam-setcred.patch
|
||||||
|
Patch104: dovecot-auth-log.patch
|
||||||
|
|
||||||
# Patches 500+ from upstream fixes
|
# Patches 500+ from upstream fixes
|
||||||
URL: http://dovecot.procontrol.fi/
|
URL: http://dovecot.procontrol.fi/
|
||||||
@ -62,6 +63,7 @@ cp $RPM_BUILD_DIR/${RPM_PACKAGE_NAME}-${RPM_PACKAGE_VERSION}/dovecot-example.con
|
|||||||
%patch101 -p1 -b .configfile
|
%patch101 -p1 -b .configfile
|
||||||
%patch102 -p1 -b .no-literal-plus-capability
|
%patch102 -p1 -b .no-literal-plus-capability
|
||||||
%patch103 -p1 -b .pam-setcred
|
%patch103 -p1 -b .pam-setcred
|
||||||
|
%patch104 -p1 -b .auth-log
|
||||||
|
|
||||||
%build
|
%build
|
||||||
rm -f ./configure
|
rm -f ./configure
|
||||||
@ -172,6 +174,9 @@ rm -rf $RPM_BUILD_ROOT
|
|||||||
|
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
* Wed Jul 27 2005 John Dennis <jdennis@redhat.com> - 0.99.14-7.fc5
|
||||||
|
- fix bug #150888, log authenication failures with ip address
|
||||||
|
|
||||||
* Fri Jul 22 2005 John Dennis <jdennis@redhat.com> - 0.99.14-6.fc5
|
* Fri Jul 22 2005 John Dennis <jdennis@redhat.com> - 0.99.14-6.fc5
|
||||||
- fix bug #149673, add dummy PAM_TTY
|
- fix bug #149673, add dummy PAM_TTY
|
||||||
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user