git.samba.org / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c33e78a) | patch
CVE-2023-0922 set default ldap client sasl wrapping to seal
authorRob van der Linde <rob@catalyst.net.nz>
Mon, 27 Feb 2023 01:06:23 +0000 (14:06 +1300)
committerAndrew Bartlett <abartlet@samba.org>
Wed, 5 Apr 2023 03:08:51 +0000 (03:08 +0000)
commitb74b9f4b06c24b16bf3daac96127e62b75f5b9ed
treeaa7a45fa6a1c091f10ebedbd420b18d185ba447dtree
parentc33e78a27fbeb913b08ef7f74343c1f652d1aa41commit | diff
CVE-2023-0922 set default ldap client sasl wrapping to seal

This avoids sending new or reset passwords in the clear
(integrity protected only) from samba-tool in particular.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15315

Signed-off-by: Rob van der Linde <rob@catalyst.net.nz>
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Autobuild-User(master): Andrew Bartlett <abartlet@samba.org>
Autobuild-Date(master): Wed Apr  5 03:08:51 UTC 2023 on atb-devel-224
docs-xml/smbdotconf/ldap/clientldapsaslwrapping.xml diff | blob | history
lib/param/loadparm.c diff | blob | history
python/samba/tests/auth_log.py diff | blob | history
source3/param/loadparm.c diff | blob | history
Samba Shared Repository