CVE-2016-2115: s3:auth_domain: use SMB_SIGNING_IPC_DEFAULT
authorRalph Boehme <slow@samba.org>
Wed, 16 Dec 2015 09:03:13 +0000 (10:03 +0100)
committerStefan Metzmacher <metze@samba.org>
Tue, 12 Apr 2016 17:25:26 +0000 (19:25 +0200)
Use SMB_SIGNING_IPC_DEFAULT for RPC connections.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11756

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
source3/auth/auth_domain.c

index 0dc6657ab7a2a41e07c74fef9f771f3c783aea34..1a8cd91985e65e82e2034e6405bd535db81c710b 100644 (file)
@@ -89,7 +89,7 @@ static NTSTATUS connect_to_domain_password_server(struct cli_state **cli_ret,
 
        /* Attempt connection */
        result = cli_full_connection(&cli, lp_netbios_name(), dc_name, dc_ss, 0,
 
        /* Attempt connection */
        result = cli_full_connection(&cli, lp_netbios_name(), dc_name, dc_ss, 0,
-               "IPC$", "IPC", "", "", "", 0, SMB_SIGNING_DEFAULT);
+               "IPC$", "IPC", "", "", "", 0, SMB_SIGNING_IPC_DEFAULT);
 
        if (!NT_STATUS_IS_OK(result)) {
                /* map to something more useful */
 
        if (!NT_STATUS_IS_OK(result)) {
                /* map to something more useful */