+Fri Jan 1 01:01:45 EST 1999 Art Cancro <ajc@uncnsrd.mt-kisco.ny.us>
+ * Fixed security problem relating to private rooms
+
Wed Dec 30 20:10:52 EST 1998 Art Cancro <ajc@uncnsrd.mt-kisco.ny.us>
* sysdep.c: put a bigger string buffer into lprintf() to avoid overruns
ERROR+PASSWORD_REQUIRED);
return;
}
+ else if ( (QRscratch.QRflags&QR_PRIVATE) &&
+ ((QRscratch.QRflags&QR_PASSWORDED)==0) &&
+ ((QRscratch.QRflags&QR_GUESSNAME)==0) &&
+ ((ra & UA_KNOWN) == 0) ) {
+ goto NOPE;
+ }
else {
usergoto(towhere, 1);
return;
}
}
- cprintf("%d room '%s' not found\n",ERROR+ROOM_NOT_FOUND,towhere);
+NOPE: cprintf("%d room '%s' not found\n",ERROR+ROOM_NOT_FOUND,towhere);
}
CtdlGetRelationship(&vbuf, &CC->usersupp, &CC->quickroom);
vbuf.v_flags = vbuf.v_flags | V_FORGET;
+ vbuf.v_flags = vbuf.v_flags & ~V_ACCESS;
CtdlSetRelationship(&vbuf, &CC->usersupp, &CC->quickroom);
lputuser(&CC->usersupp,CC->curr_user);