1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/source3
Stefan Metzmacher 08e2a93393 CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 servers' default to yes
AES is supported by Windows >= 2008R2 and Samba >= 4.0 so there's no
reason to allow md5 servers by default.

Note the change in netlogon_creds_cli_context_global() is only cosmetic,
but avoids confusion while reading the code. Check with:

 git show -U35 libcli/auth/netlogon_creds_cli.c

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15240

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>
(cherry picked from commit 1c6c112990)
2022-12-14 10:28:16 +00:00
..
auth s3:auth_samba4: make use of imessaging_init_discard_incoming() 2022-10-19 08:39:17 +00:00
build
client s3/client: fix dfs deltree, resolve dfs path 2022-06-20 10:56:52 +00:00
exports
groupdb lib: relicense smb_strtoul(l) under LGPLv3 2020-08-03 22:21:02 +00:00
include smbd: add and use vfs_fget_dos_attributes() 2022-09-06 07:54:13 +00:00
intl
lib lib: Map ERANGE to NT_STATUS_INTEGER_OVERFLOW 2022-09-28 19:13:18 +00:00
libads s3:libads: Check if we have a valid sockaddr 2022-07-11 11:33:49 +00:00
libgpo/gpext
libnet s3:libnet: Do not set ADS_AUTH_ALLOW_NTLMSSP in FIPS mode 2022-01-22 00:27:52 +00:00
librpc smbXsrv_client: notify a different node to drop a connection by client guid. 2022-10-18 08:34:17 +00:00
libsmb s3: libsmbclient: Fix smbc_stat() to return ENOENT on a non-existent file. 2022-10-31 15:31:53 +00:00
locale pam_winbind/ro.po: fix error from previous patch merge 2020-10-29 20:49:16 +00:00
locking s3: smbd: Move implicit call to lp_posix_cifsu_locktype() out of init_strict_lock_struct(). 2022-01-06 15:11:38 +00:00
modules vfs_fruit: add missing calls to tevent_req_received() 2022-10-18 09:41:37 +00:00
nmbd source3: move lib/substitute.c functions out of proto.h 2021-11-11 13:49:32 +00:00
param CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 servers' default to yes 2022-12-14 10:28:16 +00:00
passdb CVE-2022-32746 ldb: Make use of functions for appending to an ldb_message 2022-07-24 09:20:21 +02:00
printing s3:printing: Do not clear the printer-list.tdb 2022-07-11 10:27:17 +00:00
profile profile3: remove an unused include 2022-01-18 20:22:38 +00:00
registry CVE-2020-25717: Add FreeIPA domain controller role 2021-11-09 19:45:33 +00:00
rpc_client CVE-2022-38023 libcli/auth: pass lp_ctx to netlogon_creds_cli_set_global_db() 2022-12-14 10:28:16 +00:00
rpc_server s3:rpc_server: Fix include directive substitution when enumerating shares 2022-11-23 12:43:15 +00:00
rpcclient s3/rpcclient: Duplicate string returned from poptGetArg 2022-10-19 08:39:17 +00:00
script s3:tests: Add substitution test for listing shares 2022-11-23 12:43:15 +00:00
selftest smbtorture: add a test trying to create a stream on share without streams support 2022-09-06 07:54:14 +00:00
services s3:services: Disable rcinit-based service control code 2021-12-10 14:02:30 +00:00
smbd smbd: reject FILE_ATTRIBUTE_TEMPORARY on directories 2022-12-05 11:03:30 +00:00
torture smbd: use metadata_fsp() with SMB_VFS_FSET_NT_ACL() 2022-09-06 07:54:13 +00:00
utils CVE-2022-38023 s3:net: add and use net_warn_member_options() helper 2022-12-14 10:28:16 +00:00
web
winbindd CVE-2022-38023 s3:winbindd: also allow per domain "winbind sealed pipes:DOMAIN" and "require strong key:DOMAIN" 2022-12-14 10:28:16 +00:00
.clang_complete
.dmallocrc
.indent.pro
Doxyfile
mainpage.dox
smbadduser.in
wscript Revert "s3:smbd: Remove NIS support" 2022-06-12 09:19:16 +00:00
wscript_build s3:waf: Fix version number of public libsmbconf 2022-06-27 08:25:10 +00:00
wscript_configure_system_ncurses