s3-client Use NTLMv2 by default in the Samba client

This matches the improved security measures of Windows Vista.

Andrew Bartlett

diff --git a/source3/param/loadparm.c b/source3/param/loadparm.c
index b7f6a99f49da1d59f919816b419cc29ba78b3657..807d074082657d812599af468e7ef30ea7431a4a 100644 (file)
--- a/source3/param/loadparm.c
+++ b/source3/param/loadparm.c
@@ -5253,8 +5253,8 @@ static void init_globals(bool reinit_globals)
        Globals.bClientPlaintextAuth = False;   /* Do NOT use a plaintext password even if is requested by the server */
        Globals.bLanmanAuth = False;    /* Do NOT use the LanMan hash, even if it is supplied */
        Globals.bNTLMAuth = True;       /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
-       Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
-       /* Note, that we will use NTLM2 session security (which is different), if it is available */
+       Globals.bClientNTLMv2Auth = True; /* Client should always use use NTLMv2, as we can't tell that the server supports it, but most modern servers do */
+       /* Note, that we will also use NTLM2 session security (which is different), if it is available */
 
        Globals.map_to_guest = 0;       /* By Default, "Never" */
        Globals.oplock_break_wait_time = 0;     /* By Default, 0 msecs. */