summaryrefslogtreecommitdiff
path: root/source3
diff options
context:
space:
mode:
authorAndrew Bartlett <abartlet@samba.org>2007-09-10 02:14:18 +0000
committerGerald (Jerry) Carter <jerry@samba.org>2007-10-10 12:30:36 -0500
commit3428c63aa74f46c3db65736bf1c56502fad2362c (patch)
tree4818156cf7f32014f41c5b5c5a67ea55ec0a4e96 /source3
parent54d3c7f61d612ca041aafc0fba964e0431cbf463 (diff)
downloadsamba-3428c63aa74f46c3db65736bf1c56502fad2362c.tar.gz
samba-3428c63aa74f46c3db65736bf1c56502fad2362c.tar.bz2
samba-3428c63aa74f46c3db65736bf1c56502fad2362c.zip
r25049: Set new, more secure defaults for Samba 3.2.
Andrew Bartlett (This used to be commit 87d39f61b498c1327c2b3a818e41bb6451fe7518)
Diffstat (limited to 'source3')
-rw-r--r--source3/param/loadparm.c8
1 files changed, 4 insertions, 4 deletions
diff --git a/source3/param/loadparm.c b/source3/param/loadparm.c
index 2c6a5df3e5..b49d7b54a9 100644
--- a/source3/param/loadparm.c
+++ b/source3/param/loadparm.c
@@ -1574,10 +1574,10 @@ static void init_globals(BOOL first_time_only)
Globals.bStatCache = True; /* use stat cache by default */
Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */
Globals.restrict_anonymous = 0;
- Globals.bClientLanManAuth = True; /* Do use the LanMan hash if it is available */
- Globals.bClientPlaintextAuth = True; /* Do use a plaintext password if is requested by the server */
- Globals.bLanmanAuth = True; /* Do use the LanMan hash if it is available */
- Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is available (otherwise NTLMv2) */
+ Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */
+ Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */
+ Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */
+ Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */
Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */
/* Note, that we will use NTLM2 session security (which is different), if it is available */