summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
...
* CVE-2022-37966 selftest: Don't strictly check etype-info when obtaining a TGTJoseph Sutton2022-12-142-6/+25
* CVE-2022-37966 tests/krb5: Add a test requesting tickets with various encrypt...Joseph Sutton2022-12-148-0/+384
* CVE-2022-37966 tests/krb5: Add 'etypes' parameter to _tgs_req()Joseph Sutton2022-12-141-1/+3
* CVE-2022-37966 tests/krb5: Split out _tgs_req() into base classJoseph Sutton2022-12-141-131/+133
* CVE-2022-37966 selftest: Allow krb5 tests to run against an IP by using the t...Andrew Bartlett2022-12-142-3/+12
* CVE-2022-37966 libcli/auth: let netlogon_creds_cli_warn_options() about "kerb...Stefan Metzmacher2022-12-141-0/+16
* CVE-2022-37966 testparm: warn about 'kerberos encryption types = legacy'Stefan Metzmacher2022-12-141-0/+8
* CVE-2022-37966 docs-xml/smbdotconf: "kerberos encryption types = legacy" shou...Stefan Metzmacher2022-12-141-9/+3
* CVE-2022-37966 s3:utils: Fix old-style function definitionAndreas Schneider2022-12-141-6/+6
* CVE-2022-37966 s3:client: Fix old-style function definitionAndreas Schneider2022-12-141-1/+1
* CVE-2022-37966 s3:param: Fix old-style function definitionAndreas Schneider2022-12-141-2/+2
* CVE-2022-37966 tests/krb5: Allow passing expected etypes to get_keys()Joseph Sutton2022-12-141-3/+4
* CVE-2022-37966 s4:kdc: Move supported enc-type handling out of samba_kdc_mess...Andrew Bartlett2022-12-141-35/+40
* CVE-2022-37966 s4:kdc: Set supported enctypes in KDC entryJoseph Sutton2022-12-142-4/+27
* CVE-2022-37966 tests/krb5: Update supported enctype checkingJoseph Sutton2022-12-142-7/+41
* CVE-2022-37966 tests/krb5: Check encrypted-pa-data if presentJoseph Sutton2022-12-143-18/+69
* CVE-2022-38023 testparm: warn about unsecure schannel related optionsStefan Metzmacher2022-12-141-0/+61
* CVE-2022-38023 testparm: warn about server/client schannel != yesStefan Metzmacher2022-12-141-3/+17
* CVE-2022-38023 s4:rpc_server/netlogon: implement "server schannel require sea...Stefan Metzmacher2022-12-142-1/+271
* CVE-2022-38023 s4:rpc_server/netlogon: add a per connection cache to dcesrv_n...Stefan Metzmacher2022-12-141-40/+153
* CVE-2022-38023 docs-xml/smbdotconf: add "server schannel require seal[:COMPUT...Stefan Metzmacher2022-12-144-6/+157
* CVE-2022-38023 s4:rpc_server/netlogon: make sure all dcesrv_netr_LogonSamLogo...Stefan Metzmacher2022-12-141-7/+29
* CVE-2022-38023 s4:rpc_server/netlogon: split out dcesrv_netr_check_schannel()...Stefan Metzmacher2022-12-141-33/+51
* CVE-2022-38023 selftest:Samba4: avoid global 'allow nt4 crypto = yes' and 're...Stefan Metzmacher2022-12-141-6/+49
* CVE-2022-38023 s4:rpc_server/netlogon: debug 'reject md5 servers' and 'allow ...Stefan Metzmacher2022-12-141-0/+121
* CVE-2022-38023 docs-xml/smbdotconf: document "server reject md5 schannel:COMP...Stefan Metzmacher2022-12-142-6/+103
* CVE-2022-38023 docs-xml/smbdotconf: document "allow nt4 crypto:COMPUTERACCOUN...Stefan Metzmacher2022-12-141-2/+74
* CVE-2022-38023 s4:rpc_server/netlogon: add 'server reject md5 schannel:COMPUT...Stefan Metzmacher2022-12-141-3/+55
* CVE-2022-38023 s4:rpc_server/netlogon: defer downgrade check until we found t...Stefan Metzmacher2022-12-141-23/+53
* CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 clients' default to yesStefan Metzmacher2022-12-144-3/+14
* CVE-2022-38023 s4:rpc_server/netlogon: split out dcesrv_netr_ServerAuthentica...Stefan Metzmacher2022-12-131-47/+67
* CVE-2022-38023 s4:torture: use NETLOGON_NEG_SUPPORTS_AES by defaultStefan Metzmacher2022-12-134-18/+27
* CVE-2022-38023 selftest:Samba4: avoid global 'server schannel = auto'Stefan Metzmacher2022-12-131-3/+37
* CVE-2022-38023 s4:rpc_server/netlogon: improve CVE-2020-1472(ZeroLogon) debug...Stefan Metzmacher2022-12-131-41/+106
* CVE-2022-38023 s4:rpc_server/netlogon: re-order checking in dcesrv_netr_creds...Stefan Metzmacher2022-12-131-22/+19
* CVE-2022-38023 s4:rpc_server/netlogon: add talloc_stackframe() to dcesrv_netr...Stefan Metzmacher2022-12-131-13/+19
* CVE-2022-38023 s4:rpc_server/netlogon: add a lp_ctx variable to dcesrv_netr_c...Stefan Metzmacher2022-12-131-3/+4
* CVE-2022-38023 s4:rpc_server/netlogon: 'server schannel != yes' warning to dc...Stefan Metzmacher2022-12-131-11/+15
* CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 servers' default to yesStefan Metzmacher2022-12-134-4/+9
* CVE-2022-38023 s3:winbindd: also allow per domain "winbind sealed pipes:DOMAI...Stefan Metzmacher2022-12-131-8/+33
* CVE-2022-38023 s3:net: add and use net_warn_member_options() helperStefan Metzmacher2022-12-138-0/+52
* CVE-2022-38023 libcli/auth: add/use netlogon_creds_cli_warn_options()Stefan Metzmacher2022-12-132-0/+68
* CVE-2022-38023 libcli/auth: pass lp_ctx to netlogon_creds_cli_set_global_db()Stefan Metzmacher2022-12-134-4/+5
* CVE-2022-38023 docs-xml: improve wording for several options: "yields precede...Ralph Boehme2022-12-135-5/+5
* CVE-2022-38023 docs-xml: improve wording for several options: "takes preceden...Ralph Boehme2022-12-134-4/+4
* selftest: make filter-subunit much more efficient for large knownfail listsAndrew Bartlett2022-12-131-17/+15
* CVE-2022-45141 source4/heimdal: Fix check-desNicolas Williams2022-12-071-3/+12
* CVE-2022-45141 source4/heimdal: Fix TGS ticket enc-part key selectionNicolas Williams2022-12-071-5/+2
* CVE-2022-44640 source4/heimdal: Fix use-after-free when decoding PA-ENC-TS-ENCJoseph Sutton2022-12-071-1/+2
* CVE-2022-44640 HEIMDAL: asn1: Invalid free in ASN.1 codecNicolas Williams2022-12-072-6/+13
View Lorry Controller Status