sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-08 21:18:16 +03:00
Code

CVE-2022-37966 testparm: warn about 'kerberos encryption types = legacy'

Browse Source 
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15237

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
(cherry picked from commit c0c25cc021)
This commit is contained in:
Stefan Metzmacher 2022-12-05 21:36:23 +01:00
parent 05206c0923
commit 12e4e94853
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
source3/utils/testparm.c
View File

@ -680,6 +680,14 @@ static int do_global_checks(void)
"options\n\n");
}
if (lp_kerberos_encryption_types() == KERBEROS_ETYPES_LEGACY) {
fprintf(stderr,
"WARNING: You have configured "
"'kerberos encryption types = legacy'. "
"Your server is vulernable to "
"CVE-2022-37966\n\n");
}
return ret;
}