sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
Code
998e9b9a19
samba-mirror/lib
History
Andrew Bartlett d2a473a7b7 dsdb: Allow password history and password changes without an NT hash 
We now allow this to be via the ENCTYPE_AES256_CTS_HMAC_SHA1_96 hash instead
which allows us to decouple Samba from the unsalted NT hash for
organisations that are willing to take this step (for user accounts).

(History checking is limited to the last three passwords only, as
ntPwdHistory is limited to NT hash values, and the PrimaryKerberosCtr4
package only stores three sets of keys.)

Since we don't store a salt per-key, but only a single salt, the check
will fail for a previous password if the account was renamed prior to a
newer password being set.

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
2022-06-26 22:10:29 +00:00
..
addns build: Consolidate --with-dnsupdate with --with-ads (which implied HAVE_KRB5) 2021-03-26 04:06:41 +00:00
afs s3:param: make "servicename" a substituted option 2019-11-27 10:25:37 +00:00
async_req lib: Use FIONREAD in wait_for_read_send/recv 2021-03-16 17:09:31 +00:00
audit_logging audit_logging.c: fix compilation on macOS 2021-10-13 01:42:35 +00:00
cmdline lib:cmdline: Fix error handling of --client-protection=sign|encrypt|off 2022-06-22 11:49:23 +00:00
compression lzxpress: compress shortcut if we've reached maximum length 2022-05-17 23:11:21 +00:00
crypto lib:crypto: Add py binding for set_relax/strict fips mode 2020-10-29 14:19:36 +00:00
dbwrap lib/dbwrap: reset deleted record to tdb_null 2021-11-04 19:49:47 +00:00
fuzzing fuzz: add lzxpress compress/decompress round-trip 2022-05-12 02:22:35 +00:00
krb5_wrap lib:krb5_wrap: Add const to parameters for smb_krb5_create_key_from_string() 2022-06-14 07:21:29 +00:00
ldb ldb: Introduce "colon" variable in ldb_module_connect_backend() 2022-04-26 21:41:29 +00:00
ldb-samba ldb: Avoid an "else" 2022-04-26 21:41:29 +00:00
messaging messaging: Fix receiving file descriptors 2021-03-19 08:18:26 +00:00
mscat lib;smbd: Fix the -Os build by initializing variables 2021-08-06 17:22:30 +00:00
param dsdb: Allow password history and password changes without an NT hash 2022-06-26 22:10:29 +00:00
printer_driver printing: Align integer types 2021-04-01 19:32:36 +00:00
pthreadpool build: Do not build selftest binaries for builds without --enable-selftest 2019-11-22 11:48:59 +00:00
replace replace: Check for -Wuse-after-free 2022-06-14 09:25:31 +00:00
smbconf lib/smbconf: expose smbconf error codes to python wrapper 2022-06-08 13:13:10 +00:00
socket lib/socket: autodetect RSS using ETHTOOL_GRXRINGS 2020-05-07 14:44:40 +00:00
talloc talloc: version 2.3.4 2022-06-08 17:02:29 +00:00
tdb tdb: version 1.4.7 2022-06-08 17:57:53 +00:00
tdb_wrap lib: Open tdb files with O_CLOEXEC 2021-06-04 16:47:34 +00:00
tdr lib: Fix 1354521 Unchecked return value 2016-03-01 21:49:44 +01:00
tevent tevent: version 0.12.1 2022-06-08 17:02:29 +00:00
texpect texpect: don't ignore unknown options 2021-09-10 15:10:30 +00:00
torture torture: add torture_assertf() 2022-06-17 01:28:30 +00:00
tsocket selftest: test tsocket_address_inet_from_hostport_strings 2021-09-28 10:34:12 +00:00
util util/debug: share classname table with tests 2022-06-17 01:28:30 +00:00
README various: Remove references to about to be deleted thirdparty/dnspython 2018-12-11 20:07:18 +01:00
wscript_build

README 

compression - Various compression algorithms (MSZIP, lzxpress)
popt - Command-line option parsing library
replace - Provides replacements for standard (POSIX, C99) functions 
          not provided by the host platform.
subunit - Utilities and bindings for working with the Subunit test result 
          reporting protocol.
talloc - Hierarchical pool based memory allocator 
tdb - Simple but fast key/value database library, supporting multiple writers
torture - Simple unit testing helper library