mirror of
https://github.com/samba-team/samba.git
synced 2025-11-21 12:23:50 +03:00
r12865: Upgrade the librpc and libnet code.
In librpc, always try SMB level authentication, even if trying schannel, but allow fallback to anonymous. This should better function with servers that set restrict anonymous. There are too many parts of Samba that get, parse and modify the binding parameters. Avoid the extra work, and add a binding element to the struct dcerpc_pipe The libnet vampire code has been refactored, to reduce extra layers and to better conform with the standard argument pattern. Also, take advantage of the new libnet_Lookup code, so we don't require the silly 'password server' smb.conf parameter. To better support forcing traffic to be sealed for the vampire operation, the dcerpc_bind_auth() function now takes an auth level parameter. Andrew Bartlett
This commit is contained in:
Andrew Bartlett
committed by
Gerald (Jerry) Carter
Gerald (Jerry) Carter
parent
21f87f87a9
commit
d65b354959
@@ -745,14 +745,11 @@ NTSTATUS libnet_JoinDomain(struct libnet_context *ctx, TALLOC_CTX *mem_ctx, stru
|
||||
*/
|
||||
|
||||
/* Find the original binding string */
|
||||
status = dcerpc_parse_binding(tmp_ctx, lsa_pipe->conn->binding_string, &samr_binding);
|
||||
if (!NT_STATUS_IS_OK(status)) {
|
||||
r->out.error_string = talloc_asprintf(mem_ctx,
|
||||
"Failed to parse lsa binding '%s'",
|
||||
lsa_pipe->conn->binding_string);
|
||||
talloc_free(tmp_ctx);
|
||||
return status;
|
||||
samr_binding = talloc(tmp_ctx, struct dcerpc_binding);
|
||||
if (!samr_binding) {
|
||||
return NT_STATUS_NO_MEMORY;
|
||||
}
|
||||
*samr_binding = *lsa_pipe->binding;
|
||||
|
||||
/* Make binding string for samr, not the other pipe */
|
||||
status = dcerpc_epm_map_binding(tmp_ctx, samr_binding,
|
||||
|
||||
Reference in New Issue
Block a user