summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
...
* CVE-2022-37966 s3:libnet: no longer reference des encryption typesStefan Metzmacher2022-12-141-3/+2
* CVE-2022-37966 s3:libads: no longer reference des encryption typesStefan Metzmacher2022-12-141-1/+1
* CVE-2022-37966 lib/krb5_wrap: no longer reference des encryption typesStefan Metzmacher2022-12-141-2/+0
* CVE-2022-37966 s3:net_ads: remove unused ifdef HAVE_ENCTYPE_AES*Stefan Metzmacher2022-12-141-4/+0
* CVE-2022-37966 s3:libnet: remove unused ifdef HAVE_ENCTYPE_AES*Stefan Metzmacher2022-12-141-4/+0
* CVE-2022-37966 s3:libads: remove unused ifdef HAVE_ENCTYPE_AES*Stefan Metzmacher2022-12-142-8/+0
* CVE-2022-37966 lib/krb5_wrap: remove unused ifdef HAVE_ENCTYPE_AES*Stefan Metzmacher2022-12-141-4/+0
* CVE-2022-37966 system_mitkrb5: require support for aes enctypesStefan Metzmacher2022-12-141-2/+2
* CVE-2022-37966 wafsamba: add support for CHECK_VARIABLE(mandatory=True)Stefan Metzmacher2022-12-141-1/+3
* CVE-2022-37966 kdc: Assume trust objects support AES by defaultJoseph Sutton2022-12-141-1/+2
* CVE-2022-37966 kdc: Implement new Kerberos session key behaviour since ENC_HM...Andrew Bartlett2022-12-1411-623/+285
* CVE-2022-37966 selftest: Run S4U tests against FL2003 DCJoseph Sutton2022-12-143-6/+71
* CVE-2022-37966 selftest: Add tests for Kerberos session key behaviour since E...Joseph Sutton2022-12-1410-141/+1549
* CVE-2022-37966 samba-tool: Declare explicitly RC4 support of trust objectsJoseph Sutton2022-12-141-2/+5
* CVE-2022-37966 samba-tool: Fix 'domain trust create' documentationJoseph Sutton2022-12-141-1/+1
* CVE-2022-37966 third_party/heimdal: Fix error message typoJoseph Sutton2022-12-141-1/+1
* CVE-2022-37966 param: Add support for new option "kdc force enable rc4 weak s...Andrew Bartlett2022-12-143-0/+29
* CVE-2022-37966 param: Add support for new option "kdc default domain supporte...Joseph Sutton2022-12-144-0/+125
* CVE-2022-37967 Add new PAC checksumJoseph Sutton2022-12-1414-53/+411
* CVE-2022-37966 HEIMDAL: Look up the server keys to combine with clients etype...Andrew Bartlett2022-12-142-6/+1
* CVE-2022-37966 tests/krb5: Add a test requesting tickets with various encrypt...Joseph Sutton2022-12-146-0/+379
* CVE-2022-37966 tests/krb5: Add 'etypes' parameter to _tgs_req()Joseph Sutton2022-12-141-1/+3
* CVE-2022-37966 tests/krb5: Split out _tgs_req() into base classJoseph Sutton2022-12-141-131/+133
* CVE-2022-37966 selftest: Allow krb5 tests to run against an IP by using the t...Andrew Bartlett2022-12-142-3/+12
* CVE-2022-37966 libcli/auth: let netlogon_creds_cli_warn_options() about "kerb...Stefan Metzmacher2022-12-141-0/+15
* CVE-2022-37966 testparm: warn about 'kerberos encryption types = legacy'Stefan Metzmacher2022-12-141-0/+8
* CVE-2022-37966 docs-xml/smbdotconf: "kerberos encryption types = legacy" shou...Stefan Metzmacher2022-12-141-9/+3
* CVE-2022-37966 tests/krb5: Add test requesting a TGT expiring post-2038Joseph Sutton2022-12-141-2/+11
* CVE-2022-37966 s3:utils: Fix old-style function definitionAndreas Schneider2022-12-141-6/+6
* CVE-2022-37966 s3:client: Fix old-style function definitionAndreas Schneider2022-12-141-1/+1
* CVE-2022-37966 s3:param: Fix old-style function definitionAndreas Schneider2022-12-141-2/+2
* CVE-2022-37966 tests/krb5: Allow passing expected etypes to get_keys()Joseph Sutton2022-12-141-3/+4
* CVE-2022-37966 s4:kdc: Move supported enc-type handling out of samba_kdc_mess...Andrew Bartlett2022-12-141-42/+48
* CVE-2022-38023 testparm: warn about unsecure schannel related optionsStefan Metzmacher2022-12-141-0/+61
* CVE-2022-38023 testparm: warn about server/client schannel != yesStefan Metzmacher2022-12-141-3/+17
* CVE-2022-38023 s4:rpc_server/netlogon: implement "server schannel require sea...Stefan Metzmacher2022-12-142-1/+271
* CVE-2022-38023 s4:rpc_server/netlogon: add a per connection cache to dcesrv_n...Stefan Metzmacher2022-12-141-40/+153
* CVE-2022-38023 docs-xml/smbdotconf: add "server schannel require seal[:COMPUT...Stefan Metzmacher2022-12-144-6/+157
* CVE-2022-38023 s4:rpc_server/netlogon: make sure all dcesrv_netr_LogonSamLogo...Stefan Metzmacher2022-12-141-7/+29
* CVE-2022-38023 s4:rpc_server/netlogon: split out dcesrv_netr_check_schannel()...Stefan Metzmacher2022-12-141-33/+51
* CVE-2022-38023 selftest:Samba4: avoid global 'allow nt4 crypto = yes' and 're...Stefan Metzmacher2022-12-141-7/+53
* CVE-2022-38023 s4:rpc_server/netlogon: debug 'reject md5 servers' and 'allow ...Stefan Metzmacher2022-12-141-0/+143
* CVE-2022-38023 docs-xml/smbdotconf: document "server reject md5 schannel:COMP...Stefan Metzmacher2022-12-142-6/+103
* CVE-2022-38023 docs-xml/smbdotconf: document "allow nt4 crypto:COMPUTERACCOUN...Stefan Metzmacher2022-12-141-2/+74
* CVE-2022-38023 s4:rpc_server/netlogon: add 'server reject md5 schannel:COMPUT...Stefan Metzmacher2022-12-141-3/+55
* CVE-2022-38023 s4:rpc_server/netlogon: defer downgrade check until we found t...Stefan Metzmacher2022-12-141-23/+53
* CVE-2022-38023 docs-xml/smbdotconf: change 'reject md5 clients' default to yesStefan Metzmacher2022-12-144-3/+14
* CVE-2022-38023 s4:rpc_server/netlogon: require aes if weak crypto is disabledStefan Metzmacher2022-12-142-1/+10
* CVE-2022-38023 s4:rpc_server/netlogon: split out dcesrv_netr_ServerAuthentica...Stefan Metzmacher2022-12-141-47/+67
* CVE-2022-38023 s4:torture: use NETLOGON_NEG_SUPPORTS_AES by defaultStefan Metzmacher2022-12-144-18/+27
View Lorry Controller Status