summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
...
* CVE-2022-37966 Fix enctype selection issues for PAC and other authz-data sign...Nicolas Williams2022-12-141-24/+33
* CVE-2022-37966 selftest: Run S4U tests against FL2003 DCJoseph Sutton2022-12-143-6/+71
* CVE-2022-37966 selftest: Add tests for Kerberos session key behaviour since E...Joseph Sutton2022-12-1410-141/+1549
* CVE-2022-37966 samba-tool: Declare explicitly RC4 support of trust objectsJoseph Sutton2022-12-141-2/+5
* CVE-2022-37966 samba-tool: Fix 'domain trust create' documentationJoseph Sutton2022-12-141-1/+1
* CVE-2022-37966 third_party/heimdal: Fix error message typoJoseph Sutton2022-12-141-1/+1
* CVE-2022-37966 param: Add support for new option "kdc force enable rc4 weak s...Andrew Bartlett2022-12-143-0/+29
* CVE-2022-37966 param: Add support for new option "kdc default domain supporte...Joseph Sutton2022-12-144-0/+125
* CVE-2022-37967 Add new PAC checksumJoseph Sutton2022-12-1414-54/+413
* CVE-2022-37966 HEIMDAL: Look up the server keys to combine with clients etype...Andrew Bartlett2022-12-142-6/+1
* CVE-2022-37966 selftest: Don't strictly check etype-info when obtaining a TGTJoseph Sutton2022-12-142-6/+25
* CVE-2022-37966 tests/krb5: Add a test requesting tickets with various encrypt...Joseph Sutton2022-12-148-0/+384
* CVE-2022-37966 tests/krb5: Add 'etypes' parameter to _tgs_req()Joseph Sutton2022-12-141-1/+3
* CVE-2022-37966 tests/krb5: Split out _tgs_req() into base classJoseph Sutton2022-12-141-131/+133
* CVE-2022-37966 selftest: Allow krb5 tests to run against an IP by using the t...Andrew Bartlett2022-12-142-3/+12
* CVE-2022-37966 libcli/auth: let netlogon_creds_cli_warn_options() about "kerb...Stefan Metzmacher2022-12-141-0/+16
* CVE-2022-37966 testparm: warn about 'kerberos encryption types = legacy'Stefan Metzmacher2022-12-141-0/+8
* CVE-2022-37966 docs-xml/smbdotconf: "kerberos encryption types = legacy" shou...Stefan Metzmacher2022-12-141-9/+3
* CVE-2022-37966 s3:utils: Fix old-style function definitionAndreas Schneider2022-12-141-6/+6
* CVE-2022-37966 s3:client: Fix old-style function definitionAndreas Schneider2022-12-141-1/+1
* CVE-2022-37966 s3:param: Fix old-style function definitionAndreas Schneider2022-12-141-2/+2
* CVE-2022-37966 tests/krb5: Allow passing expected etypes to get_keys()Joseph Sutton2022-12-141-3/+4
* CVE-2022-37966 s4:kdc: Move supported enc-type handling out of samba_kdc_mess...Andrew Bartlett2022-12-141-35/+40
* CVE-2022-37966 s4:kdc: Set supported enctypes in KDC entryJoseph Sutton2022-12-142-4/+27
* CVE-2022-37966 tests/krb5: Update supported enctype checkingJoseph Sutton2022-12-142-7/+41
* CVE-2022-37966 tests/krb5: Check encrypted-pa-data if presentJoseph Sutton2022-12-143-18/+69
* CVE-2022-38023 testparm: warn about unsecure schannel related optionsStefan Metzmacher2022-12-141-0/+61
* CVE-2022-38023 testparm: warn about server/client schannel != yesStefan Metzmacher2022-12-141-3/+17
* CVE-2022-38023 s4:rpc_server/netlogon: implement "server schannel require sea...Stefan Metzmacher2022-12-142-1/+271
* CVE-2022-38023 s4:rpc_server/netlogon: add a per connection cache to dcesrv_n...Stefan Metzmacher2022-12-141-40/+153
* CVE-2022-38023 docs-xml/smbdotconf: add "server schannel require seal[:COMPUT...Stefan Metzmacher2022-12-144-6/+157
* CVE-2022-38023 s4:rpc_server/netlogon: make sure all dcesrv_netr_LogonSamLogo...Stefan Metzmacher2022-12-141-7/+29
* CVE-2022-38023 s4:rpc_server/netlogon: split out dcesrv_netr_check_schannel()...Stefan Metzmacher2022-12-141-33/+51
* CVE-2022-38023 selftest:Samba4: avoid global 'allow nt4 crypto = yes' and 're...Stefan Metzmacher2022-12-141-6/+49
* CVE-2022-38023 s4:rpc_server/netlogon: debug 'reject md5 servers' and 'allow ...Stefan Metzmacher2022-12-141-0/+121
* CVE-2022-38023 docs-xml/smbdotconf: document "server reject md5 schannel:COMP...Stefan Metzmacher2022-12-142-6/+103
* CVE-2022-38023 docs-xml/smbdotconf: document "allow nt4 crypto:COMPUTERACCOUN...Stefan Metzmacher2022-12-141-2/+74
* CVE-2022-38023 s4:rpc_server/netlogon: add 'server reject md5 schannel:COMPUT...Stefan Metzmacher2022-12-141-3/+55
* CVE-2022-38023 s4:rpc_server/netlogon: defer downgrade check until we found t...Stefan Metzmacher2022-12-141-23/+53
* CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 clients' default to yesStefan Metzmacher2022-12-144-3/+14
* CVE-2022-38023 s4:rpc_server/netlogon: split out dcesrv_netr_ServerAuthentica...Stefan Metzmacher2022-12-131-47/+67
* CVE-2022-38023 s4:torture: use NETLOGON_NEG_SUPPORTS_AES by defaultStefan Metzmacher2022-12-134-18/+27
* CVE-2022-38023 selftest:Samba4: avoid global 'server schannel = auto'Stefan Metzmacher2022-12-131-3/+37
* CVE-2022-38023 s4:rpc_server/netlogon: improve CVE-2020-1472(ZeroLogon) debug...Stefan Metzmacher2022-12-131-41/+106
* CVE-2022-38023 s4:rpc_server/netlogon: re-order checking in dcesrv_netr_creds...Stefan Metzmacher2022-12-131-22/+19
* CVE-2022-38023 s4:rpc_server/netlogon: add talloc_stackframe() to dcesrv_netr...Stefan Metzmacher2022-12-131-13/+19
* CVE-2022-38023 s4:rpc_server/netlogon: add a lp_ctx variable to dcesrv_netr_c...Stefan Metzmacher2022-12-131-3/+4
* CVE-2022-38023 s4:rpc_server/netlogon: 'server schannel != yes' warning to dc...Stefan Metzmacher2022-12-131-11/+15
* CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 servers' default to yesStefan Metzmacher2022-12-134-4/+9
* CVE-2022-38023 s3:winbindd: also allow per domain "winbind sealed pipes:DOMAI...Stefan Metzmacher2022-12-131-8/+33
View Lorry Controller Status