heimdal: do not compile weak crypto

author Isaac Boukris <iboukris@gmail.com>

Sat, 16 Nov 2019 22:03:34 +0000 (23:03 +0100)

committer Isaac Boukris <iboukris@sn-devel-184>

Tue, 19 Nov 2019 14:48:41 +0000 (14:48 +0000)
author Isaac Boukris <iboukris@gmail.com>
Sat, 16 Nov 2019 22:03:34 +0000 (23:03 +0100)
committer Isaac Boukris <iboukris@sn-devel-184>
Tue, 19 Nov 2019 14:48:41 +0000 (14:48 +0000)
diff --git a/selftest/target/Samba.pm b/selftest/target/Samba.pm

index c3a3a68b7b6396a2c7098d15440f26dfdd2a08ad..76f3ebb1fea174b6e12c032a599d7f660b361153 100644 (file)
--- a/selftest/target/Samba.pm
+++ b/selftest/target/Samba.pm
@@ -262,7 +262,6 @@ sub mk_krb5_conf($$)
   dns_lookup_kdc = true
   ticket_lifetime = 24h
   forwardable = yes
- allow_weak_crypto = yes
  
   name_canon_rules=as-is:realm=$ctx->{realm}
   name_canon_rules=as-is:realm=$ctx->{dnsname}
diff --git a/source4/heimdal_build/roken.h b/source4/heimdal_build/roken.h

index 9752c04a741f87e78f2782d57e438b5fb3326c78..559021c0a0e10c606ddf478c4f4b5da758b57bc6 100644 (file)
--- a/source4/heimdal_build/roken.h
+++ b/source4/heimdal_build/roken.h
@@ -6,9 +6,6 @@
  
  #include "config.h"
  
-/* Support 'weak' keys for now, it can't be worse than NTLM and we don't want to hard-code the behaviour at this point */
-#define HEIM_WEAK_CRYPTO 1
-
  /* path to sysconf - should we force this to samba LIBDIR ? */
  #define SYSCONFDIR "/etc"
author	Isaac Boukris <iboukris@gmail.com>
	Sat, 16 Nov 2019 22:03:34 +0000 (23:03 +0100)
committer	Isaac Boukris <iboukris@sn-devel-184>
	Tue, 19 Nov 2019 14:48:41 +0000 (14:48 +0000)
selftest/target/Samba.pm		patch \| blob \| history
source4/heimdal_build/roken.h		patch \| blob \| history