git.samba.org - samba.git/commit

author	Stefan Metzmacher <metze@samba.org>
	Fri, 25 Nov 2022 13:05:30 +0000 (14:05 +0100)
committer	Stefan Metzmacher <metze@samba.org>
	Tue, 13 Dec 2022 13:07:29 +0000 (13:07 +0000)
commit	b3ed90a0541a271a7c6d4bee1201fa47adc3c0c1
tree	184064b72f6d9d0df2d0e62538510532d3a7ee5d	tree
parent	3c57608e1109c1d6e8bb8fbad2ef0b5d79d00e1a	commit \| diff

CVE-2022-38023 s4:rpc_server/netlogon: implement "server schannel require seal[:COMPUTERACCOUNT]"

By default we'll now require schannel connections with
privacy/sealing/encryption.

But we allow exceptions for specific computer/trust accounts.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15260

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Ralph Boehme <slow@samba.org>

selftest/target/Samba4.pm		diff \| blob \| history
source4/rpc_server/netlogon/dcerpc_netlogon.c		diff \| blob \| history

Samba Shared Repository

RSS Atom