Author: dylan
Date: 2005-07-17 20:21:17 -0400 (Sun, 17 Jul 2005)
New Revision: 864
Modified:
trunk/perl/server/lib/Haver/Server/Wheel/Auth.pm
Log:
Fixed possible security thing with sending the wanted and expected hashes...
Modified: trunk/perl/server/lib/Haver/Server/Wheel/Auth.pm
===================================================================
--- trunk/perl/server/lib/Haver/Server/Wheel/Auth.pm 2005-07-17 23:11:50 UTC
(rev 863)
+++ trunk/perl/server/lib/Haver/Server/Wheel/Auth.pm 2005-07-18 00:21:17 UTC
(rev 864)
@@ -57,7 +57,7 @@
$hasher->add($heap->{nonce});
$hasher->add($user->passcode);
my $need = $hasher->b64digest;
-
+
Log('debug', "'$need' == '$resp'");
if ($need eq $resp) {
$kernel->yield('auth_ok', $user);
