git.samba.org - asn/samba.git/commit

git.samba.org / asn / samba.git / commit

author	Stefan Metzmacher <metze@samba.org>
	Fri, 25 Nov 2022 12:13:36 +0000 (13:13 +0100)
committer	Stefan Metzmacher <metze@samba.org>
	Tue, 13 Dec 2022 13:07:29 +0000 (13:07 +0000)
commit	69b36541606d7064de9648cd54b35adfdf8f0e8f
tree	1b2af241f79a2063c52f8ea031e98b5bc06bc5ed	tree
parent	b09f51eefc311bbb1525efd1dc7b9a837f7ec3c2	commit \| diff

CVE-2022-38023 s4:rpc_server/netlogon: add 'server reject md5 schannel:COMPUTERACCOUNT = no' and 'allow nt4 crypto:COMPUTERACCOUNT = yes'

This makes it more flexible when we change the global default to
'reject md5 servers = yes'.

'allow nt4 crypto = no' is already the default.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15240

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>

source4/rpc_server/netlogon/dcerpc_netlogon.c

diff | blob | history

guru meditation

RSS Atom