summaryrefslogtreecommitdiff
path: root/source3/utils
diff options
context:
space:
mode:
authorStefan Metzmacher <metze@samba.org>2012-05-12 12:00:00 +0200
committerStefan Metzmacher <metze@samba.org>2012-05-15 08:18:28 +0200
commitb4abd3faaf3bdcbcd24fed8325960ccdee43bea9 (patch)
tree72b6ef1be7b90ff79401843cc36efb91c5db2470 /source3/utils
parent053fcfef0fa680e2443a07933973f0f21624c336 (diff)
downloadsamba-b4abd3faaf3bdcbcd24fed8325960ccdee43bea9.tar.gz
samba-b4abd3faaf3bdcbcd24fed8325960ccdee43bea9.tar.bz2
samba-b4abd3faaf3bdcbcd24fed8325960ccdee43bea9.zip
s3-auth: remove "security=server" (depricated since 3.6)
"security=server" has a lot of problems in the world with modern security (ntlmv2 and krb5). It was also not very reliable, as it needed a stable connection to the password server for the lifetime of the whole client connection! Please use "security=domain" or "security=ads" is you authentication against remote servers (domain controllers). metze -------------- / \ / REST \ / IN \ / PEACE \ / \ | SEC_SERVER | | security=server | | | | | | 12 May | | | | 2012 | *| * * * | * _________)/\\_//(\/(/\)/\//\/\///|_)_______
Diffstat (limited to 'source3/utils')
-rw-r--r--source3/utils/testparm.c6
1 files changed, 2 insertions, 4 deletions
diff --git a/source3/utils/testparm.c b/source3/utils/testparm.c
index 9b224d4c1b..b75fc61b6e 100644
--- a/source3/utils/testparm.c
+++ b/source3/utils/testparm.c
@@ -129,11 +129,9 @@ cannot be set in the smb.conf file. nmbd will abort with this setting.\n");
* Password server sanity checks.
*/
- if((lp_security() == SEC_SERVER || lp_security() >= SEC_DOMAIN) && !*lp_passwordserver()) {
+ if((lp_security() >= SEC_DOMAIN) && !*lp_passwordserver()) {
const char *sec_setting;
- if(lp_security() == SEC_SERVER)
- sec_setting = "server";
- else if(lp_security() == SEC_DOMAIN)
+ if(lp_security() == SEC_DOMAIN)
sec_setting = "domain";
else if(lp_security() == SEC_ADS)
sec_setting = "ads";