Added password logic, now can't get the Authorization: check to
trigger
James Sutherland
jas88 at cam.ac.uk
Wed Jul 26 15:15:59 GMT 2000
On Wed, 26 Jul 2000, Ron Alexander wrote:
> } else if (strncasecmp(line,"Authorization: ", 15)==0) {
> authenticated = cgi_handle_authorization(&line[15]);
>
> >From the cgi.log
>
> [Date: Wed, 26 Jul 2000 08:55:50 edt 24.66.96.61.on.wave.home.com
> (24.66.96.61)]
> GET / HTTP/1.1
> Accept: */*
> Accept-Language: en-ca
> Accept-Encoding: gzip, deflate
> User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0; AtHome0101)
> Host: 134.111.220.160:901
> Connection: Keep-Alive
>
> [Date: Wed, 26 Jul 2000 08:56:28 edt 24.66.96.61.on.wave.home.com
> (24.66.96.61)]
> GET / HTTP/1.1
> Accept: */*
> Accept-Language: en-ca
> Accept-Encoding: gzip, deflate
> User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0; AtHome0101)
> Host: 134.111.220.160:901
> Connection: Keep-Alive
> Authorization: Basic cm9vdDpyb290 <<<<<<<<<<<<< shouldn't this trigger the
> code above?
Looks that way, certainly. Try a hexdump, make sure they are the same
ASCII character? (They SHOULD both be 32 - space - but IE can break almost
anything :P)
> BTW, what the heck is the cm9vdDpyb290 anyway?
It's your root username and password, encoded:
$ echo cm9vdDpyb290 | mimencode -u
root:root
> My debug output
>
> 08:55:39 root (stcp_swat_4) : s$get_registration_info failed for readONlY,
> ec=1433, error text=[]
> 08:55:39 root (stcp_swat_4) : s$get_registration_info failed for readOnLY,
> ec=1433, error text=[]
> 08:55:39 root (stcp_swat_4) : s$get_registration_info failed for readoNLY,
> ec=1433, error text=[]
> 08:55:40 root (stcp_swat_4) : s$get_registration_info failed for Public,
> ec=1433, error text=[]
> 08:55:40 root (stcp_swat_4) : s$get_registration_info failed for public,
> ec=1433, error text=[]
> 08:55:40 root (stcp_swat_4) : s$get_registration_info failed for PUBLIC,
> ec=1433, error text=[]
>
> Many more pages of this attempting every known permutation of upper case and
> lower case.
>
> My shares are
> [ReadOnly]
> [Public]
Hrmm..... Something broken there. Is something else eating the Auth line
before it hits that strncasecmp call??
James.
More information about the samba-technical
mailing list