From: Ralph Boehme <slow@samba.org>
Date: Wed, 16 Dec 2015 09:03:13 +0000 (+0100)
Subject: CVE-2016-2115: s3:auth_domain: use SMB_SIGNING_IPC_DEFAULT
X-Git-Tag: talloc-2.1.7~384
X-Git-Url: http://git.samba.org/?p=samba.git;a=commitdiff_plain;h=eaa7f66d35035488eeadcaed61bff160f3e6d0c1

CVE-2016-2115: s3:auth_domain: use SMB_SIGNING_IPC_DEFAULT

Use SMB_SIGNING_IPC_DEFAULT for RPC connections.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=11756

Signed-off-by: Ralph Boehme <slow@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
---

diff --git a/source3/auth/auth_domain.c b/source3/auth/auth_domain.c
index 0dc6657ab7a..1a8cd91985e 100644
--- a/source3/auth/auth_domain.c
+++ b/source3/auth/auth_domain.c
@@ -89,7 +89,7 @@ static NTSTATUS connect_to_domain_password_server(struct cli_state **cli_ret,
 
 	/* Attempt connection */
 	result = cli_full_connection(&cli, lp_netbios_name(), dc_name, dc_ss, 0,
-		"IPC$", "IPC", "", "", "", 0, SMB_SIGNING_DEFAULT);
+		"IPC$", "IPC", "", "", "", 0, SMB_SIGNING_IPC_DEFAULT);
 
 	if (!NT_STATUS_IS_OK(result)) {
 		/* map to something more useful */