diff options
| author | Stefan Metzmacher <metze@samba.org> | 2012-05-12 12:00:00 +0200 |
|---|---|---|
| committer | Stefan Metzmacher <metze@samba.org> | 2012-05-15 08:18:28 +0200 |
| commit | b4abd3faaf3bdcbcd24fed8325960ccdee43bea9 (patch) | |
| tree | 72b6ef1be7b90ff79401843cc36efb91c5db2470 /source3/auth | |
| parent | 053fcfef0fa680e2443a07933973f0f21624c336 (diff) | |
| download | samba-b4abd3faaf3bdcbcd24fed8325960ccdee43bea9.tar.gz samba-b4abd3faaf3bdcbcd24fed8325960ccdee43bea9.tar.bz2 samba-b4abd3faaf3bdcbcd24fed8325960ccdee43bea9.zip | |
s3-auth: remove "security=server" (depricated since 3.6)
"security=server" has a lot of problems in the world with
modern security (ntlmv2 and krb5). It was also not very
reliable, as it needed a stable connection to the password
server for the lifetime of the whole client connection!
Please use "security=domain" or "security=ads" is you
authentication against remote servers (domain controllers).
metze
--------------
/ \
/ REST \
/ IN \
/ PEACE \
/ \
| SEC_SERVER |
| security=server |
| |
| |
| 12 May |
| |
| 2012 |
*| * * * | *
_________)/\\_//(\/(/\)/\//\/\///|_)_______
Diffstat (limited to 'source3/auth')
| -rw-r--r-- | source3/auth/auth.c | 6 |
1 files changed, 0 insertions, 6 deletions
diff --git a/source3/auth/auth.c b/source3/auth/auth.c index 4b075a6c54..c442a536d8 100644 --- a/source3/auth/auth.c +++ b/source3/auth/auth.c @@ -494,12 +494,6 @@ NTSTATUS make_auth_context_subsystem(TALLOC_CTX *mem_ctx, talloc_tos(), "guest sam winbind:ntdomain", NULL); break; - case SEC_SERVER: - DEBUG(5,("Making default auth method list for security=server\n")); - auth_method_list = str_list_make_v3( - talloc_tos(), "guest sam smbserver", - NULL); - break; case SEC_USER: if (lp_encrypted_passwords()) { if ((lp_server_role() == ROLE_DOMAIN_PDC) || (lp_server_role() == ROLE_DOMAIN_BDC)) { |