su: zero out encrypted passwords

2014-04-30 14:15:26 +02:00 · 2014-04-30 14:15:26 +02:00 · b6e4a367e2
parent 5b9ea69b08
commit b6e4a367e2
1 changed files with 2 additions and 0 deletions
--- a/su.c
+++ b/su.c
@ -86,6 +86,8 @@ main(int argc, char *argv[])

 		if (strcmp(cryptpass, spw->sp_pwdp) != 0)
 			eprintf(randreply());
+		explicit_bzero(cryptpass, strlen(cryptpass));
+		explicit_bzero(spw, sizeof *spw);
 	}

 	errno = 0;