git.samba.org - samba.git/commit

author	Isaac Boukris <iboukris@gmail.com>
	Thu, 3 Oct 2019 10:09:29 +0000 (13:09 +0300)
committer	Stefan Metzmacher <metze@samba.org>
	Wed, 16 Oct 2019 12:15:54 +0000 (12:15 +0000)
commit	f340056428a6bbae2ebe245af3bbd7a44c1c50c9
tree	c6fd8489e4139e1c86eff41144c46346cf94a6b6	tree
parent	de0841138e6def10a370e6b0630a9ca36a4870c4	commit \| diff

spnego: ignore server mech_types list

We should not use the mech list sent by the server in the last
'negotiate' packet in CIFS protocol, as it is not protected and
may be subject to downgrade attacks.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14106

Signed-off-by: Isaac Boukris <iboukris@redhat.com>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>

auth/gensec/spnego.c

diff | blob | history

Samba Shared Repository

RSS Atom