sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-25 06:04:04 +03:00
Code
samba-mirror/source3/auth
History
Ralph Boehme b0d67dc3d4 CVE-2020-25717: s3-auth: fix MIT Realm regression 
This looks like a regression introduced by the recent security fixes. This
commit should hopefully fixes it.

As a quick solution it might be possible to use the username map script based on
the example in https://bugzilla.samba.org/show_bug.cgi?id=14901#c0. We're not
sure this behaves identical, but it might work in the standalone server case.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14922

Reported-at: https://lists.samba.org/archive/samba/2021-November/238720.html

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>

Signed-off-by: Ralph Boehme <slow@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
(cherry picked from commit 1e61de8306604a0d3858342df8a1d2412d8d418b)
2021-12-08 13:38:14 +00:00
..
auth_builtin.c
s3: safe_string: do not include string_wrappers.h
2020-08-28 00:56:34 +00:00
auth_generic.c
CVE-2020-25717: s3:auth: simplify make_session_info_krb5() by removing unused arguments
2021-11-08 10:46:43 +01:00
auth_ntlmssp.c
s3/auth: use set_current_user_info() in auth3_check_password_send()
2020-02-06 10:17:44 +00:00
auth_sam.c
CVE-2020-25717: Add FreeIPA domain controller role
2021-11-08 10:46:43 +01:00
auth_samba4.c
CVE-2020-25717: s3:auth: start with authoritative = 1
2021-11-08 10:46:43 +01:00
auth_unix.c
auth: Remove the "typedef auth_methods"
2020-01-06 01:47:30 +00:00
auth_util.c
CVE-2020-25717: s3:auth: Fallback to a SID/UID based mapping if the named based lookup fails
2021-11-18 07:39:38 +00:00
auth_winbind.c
auth: Remove the "typedef auth_methods"
2020-01-06 01:47:30 +00:00
auth.c
CVE-2020-25717: Add FreeIPA domain controller role
2021-11-08 10:46:43 +01:00
check_samsec.c
auth3: Fix a typo
2020-01-30 12:27:40 +00:00
pampass.c
s3: safe_string: do not include string_wrappers.h
2020-08-28 00:56:34 +00:00
pass_check.c
auth: Remove support for HAVE_TRUNCATED_SALT from pass_check.c
2014-04-15 12:32:09 +02:00
proto.h
CVE-2020-25717: s3:auth: simplify make_session_info_krb5() by removing unused arguments
2021-11-08 10:46:43 +01:00
server_info_sam.c
s3-auth: Steal the memory to avoid duplication.
2014-03-13 15:08:26 +01:00
server_info.c
s3:auth: fill in info3 domain name in passwd_to_SamInfo3()
2020-05-30 01:17:36 +00:00
token_util.c
make some auth functions return an NTSTATUS like other similar functions for better diagnostics.
2019-04-02 02:12:48 +00:00
user_info.c
pdb: Reduce code duplication in make_user_info()
2018-10-09 01:22:53 +02:00
user_krb5.c
CVE-2020-25717: s3-auth: fix MIT Realm regression
2021-12-08 13:38:14 +00:00
user_util.c
smbdotconf: mark "username map script" with substitution="1"
2019-11-27 10:25:36 +00:00
wscript_build
auth3: Remove auth_script
2019-12-02 22:47:24 +00:00