git.samba.org / metze / samba / wip.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7f08aa1) | patch
r10291: The patch optionally (off by default, not available in all cases) allows
authorAndrew Bartlett <abartlet@samba.org>
Sat, 17 Sep 2005 09:46:20 +0000 (09:46 +0000)
committerGerald (Jerry) Carter <jerry@samba.org>
Wed, 10 Oct 2007 18:38:13 +0000 (13:38 -0500)
commitf281d7782451efe4211e6e18435ed367c137ea06
tree2a9786a8d3b36046412fe3a6eb5a2a5eacd91fa9tree
parent7f08aa1dd516dfe0e8a79575ed736e1e09a10f9dcommit | diff
r10291: The patch optionally (off by default, not available in all cases) allows
Samba to use the target principal name supplied in the mechTokenMIC of
an SPNEGO negTokenInit.

This isn't a great idea for security reasons, but is how Samba3 behaves,
and allows kerberos to function more often in some environments.  It is
only available for CIFS session setups, due to the ordering of the
exchange.

Andrew Bartlett
(This used to be commit f6a645644127ae695a9f7288e0a469f2eb7f3066)
source4/auth/gensec/gensec.c diff | blob | history
source4/auth/gensec/gensec_gssapi.c diff | blob | history
source4/auth/gensec/gensec_krb5.c diff | blob | history
source4/auth/gensec/spnego.c diff | blob | history
source4/param/loadparm.c diff | blob | history
Work in progress branches