- a hack for grahame to run dropbear with "none" cipher.

DO NOT USE IF YOU DON'T KNOW THE CONSEQUENCES Here is your noose. Use it wisely. --HG-- branch : insecure-nocrypto extra : convert_revision : 88ed2b94d9bfec9a4f661caf592ed01da5eb3b6a
author: Matt Johnston <matt@ucc.asn.au> 2005-09-23 16:29:19 +0000
committer: Matt Johnston <matt@ucc.asn.au> 2005-09-23 16:29:19 +0000
commit: 1632bd4a18be897a35dc2319fd7d5f220c0963d3 (patch)
tree: b663d74adfc061efcf4f791d2a2a0c7e1ee97894 /cli-auth.c
parent: a2d343b1089b0419bb3f297d5df584483c8c896a (diff)
1 files changed, 8 insertions, 2 deletions
diff --git a/cli-auth.c b/cli-auth.c
index 6a6d53a..c9aace1 100644
--- a/cli-auth.c
+++ b/cli-auth.c
@@ -251,7 +251,10 @@ void cli_auth_try() {
 #endif
 
 #ifdef ENABLE_CLI_INTERACT_AUTH
-	if (!finished && ses.authstate.authtypes & AUTH_TYPE_INTERACT) {
+	if (ses.keys->trans_algo_crypt->cipherdesc == NULL) {
+		fprintf(stderr, "Sorry, I won't let you use interactive auth unencrypted.\n");
+	}
+	else if (!finished && ses.authstate.authtypes & AUTH_TYPE_INTERACT) {
 		if (cli_ses.auth_interact_failed) {
 			finished = 0;
 		} else {
@@ -263,7 +266,10 @@ void cli_auth_try() {
 #endif
 
 #ifdef ENABLE_CLI_PASSWORD_AUTH
-	if (!finished && ses.authstate.authtypes & AUTH_TYPE_PASSWORD) {
+	if (ses.keys->trans_algo_crypt->cipherdesc == NULL) {
+		fprintf(stderr, "Sorry, I won't let you use password auth unencrypted.\n");
+	}
+	else if (!finished && ses.authstate.authtypes & AUTH_TYPE_PASSWORD) {
 		cli_auth_password();
 		finished = 1;
 		cli_ses.lastauthtype = AUTH_TYPE_PASSWORD;
author	Matt Johnston <matt@ucc.asn.au>	2005-09-23 16:29:19 +0000
committer	Matt Johnston <matt@ucc.asn.au>	2005-09-23 16:29:19 +0000
commit	1632bd4a18be897a35dc2319fd7d5f220c0963d3 (patch)
tree	b663d74adfc061efcf4f791d2a2a0c7e1ee97894 /cli-auth.c
parent	a2d343b1089b0419bb3f297d5df584483c8c896a (diff)