*** authsrv.c	1997/03/18 04:08:22	1.18
--- authsrv.c	1997/07/11 13:08:24
***************
*** 9,15 ****
  /*
   *	Author: Marcus J. Ranum, Trusted Information Systems, Inc.
   */
! static	char	RcsId[] = "$Header: /usr/home/rick/fwtk2.0/fwtk/auth/RCS/authsrv.c,v 1.18 1997/03/18 04:08:22 rick Exp $";
  #include	<stdio.h>
  #include	<syslog.h>
  #include	<time.h>
--- 9,15 ----
  /*
   *	Author: Marcus J. Ranum, Trusted Information Systems, Inc.
   */
! static	char	RcsId[] = "$Header: /usr/home/rick/fwtk2.0/fwtk/auth/RCS/authsrv.c,v 1.19 1997/07/11 13:08:17 rick Exp $";
  #include	<stdio.h>
  #include	<syslog.h>
  #include	<time.h>
***************
*** 766,772 ****
  	}
  
  	/* you can only do it if you're in that group or a wizard */
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ) == 0
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);
--- 766,772 ----
  	}
  
  	/* you can only do it if you're in that group or a wizard */
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ)
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);
***************
*** 812,818 ****
  	}
  
  	/* if a group wizard, can delete a member of the group */
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ) == 0
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);
--- 812,818 ----
  	}
  
  	/* if a group wizard, can delete a member of the group */
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ) 
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);
***************
*** 866,872 ****
  	}
  
  	/* if a group wizard, can enable/disable a member of the group */
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ) == 0
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);
--- 866,872 ----
  	}
  
  	/* if a group wizard, can enable/disable a member of the group */
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ) 
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);
***************
*** 1117,1122 ****
--- 1117,1127 ----
  		return(0);
  	}
  
+ 	if((authusrbuf.flgs & AUTHFLG_WIZ) == 0 && (authusrbuf.flgs & AUTHFLG_GWIZ) == 0) {
+ 		srvsay(permdenied);
+ 		return(0);
+ 	}
+ 
  	if(ac != 3) {
  		srvsay("Usage: proto username protocol");
  		return(0);
***************
*** 1127,1133 ****
  		return(0);
  	}
  
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ) == 0
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);
--- 1132,1138 ----
  		return(0);
  	}
  
! 	if((authusrbuf.flgs & AUTHFLG_GWIZ) 
  	   && strcmp(authusrbuf.gp,authbuf.gp)) {
  		srvsay(permdenied);
  		return(0);