| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2010-08-10 | s3:ntlmssp Don't permit LM_KEY in combination with NTLMv2 | Andrew Bartlett | 1 | -1/+4 | |
| This is another 'belts and braces' check to avoid the use of the weak 'LM_KEY' encryption when the client has chosen NTLMv2. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-08-10 | s3:ntlmssp Don't reply with the LM_KEY negotiation flag when not available | Andrew Bartlett | 1 | -0/+15 | |
| This ensures the client isn't confused and we don't enter this weaker authentication scheme when we don't really, really need to. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-08-10 | s3:ntlmssp Don't use the lm key if the user didn't supply one. | Andrew Bartlett | 1 | -3/+3 | |
| This may help to avoid a number of possible MITM attacks where LM_KEY is spoofed into the session. If the login wasn't with lanman (and so the user chose to disclose their lanman response), don't disclose back anything based on their lanman password. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-08-10 | s3:ntlmssp Add extra DEBUG() message for auth system failures | Andrew Bartlett | 1 | -0/+2 | |
| Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-08-10 | s3:ntlmssp Redirect lp_lanman_auth() via 'allow_lm_key' | Andrew Bartlett | 1 | -2/+4 | |
| This will allow this to be handled via common code in the future Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-08-10 | libcli/auth Move some source3/ NTLMSSP functions to the common code. | Andrew Bartlett | 1 | -87/+0 | |
| libcli/auth Use true and false rather than True and False in common code Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-07-19 | s3-ntlmssp: Remove ntlmssp_end and let the talloc hierarchy handle it. | Simo Sorce | 1 | -17/+0 | |
| All the members are children of ntlmssp_state anyway. Signed-off-by: Andrew Bartlett <abartlet@samba.org> | |||||
| 2010-06-28 | s3: Fix some valgrind errors | Volker Lendecke | 1 | -19/+36 | |
| Essentially the same change as 15297ee, this time for the client side. Günther, Andrew B, please check! Thanks, Volker | |||||
| 2010-06-21 | s3: Fix some valgrind errors | Volker Lendecke | 1 | -18/+33 | |
| With -d 10, there were a ton of uninitialized variables: The "NegotiateFlags" in the automatically parsed ntlmssp structures were not initialized. This also cleans up the talloc use a bit: do early TALLOC_FREE() Günther, please check! Thanks, Volker | |||||
| 2010-05-31 | s3:ntlmssp Move ntlmssp_sign.c from source3 to common code. | Andrew Bartlett | 1 | -51/+1 | |
| This needs a small re-arrangement of the supporting code. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-05-31 | ntlmssp: Make the ntlmssp.h from source3/ a common header | Andrew Bartlett | 1 | -1/+1 | |
| The code is not yet in common, but I hope to fix that soon. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-05-19 | Correctly check error code return. | Jeremy Allison | 1 | -1/+1 | |
| Jeremy. | |||||
| 2010-05-19 | Thanks to Andrew Bartlett's advice, fix the NTLMSSP version problem the ↵ | Jeremy Allison | 1 | -32/+34 | |
| correct way. No more magic blobs :-). Use ndr_push_struct_blob() to push a properly formatted VERSION struct. Jeremy. | |||||
| 2010-05-18 | Fix our NTLMSSP implementation against the Microsoft torture tester. | Jeremy Allison | 1 | -13/+37 | |
| We need to return a version blob if we negotiate version info. Jeremy. | |||||
| 2010-05-18 | s3: Remove use of iconv_convenience. | Jelmer Vernooij | 1 | -6/+0 | |
| 2010-05-18 | s3-crypto: only include crypto headers when crypto is done. | Günther Deschner | 1 | -0/+3 | |
| Guenther | |||||
| 2010-03-24 | s3:ntlmssp: use c99 types | Stefan Metzmacher | 1 | -22/+22 | |
| metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: use client.netbios_name instead of workstation | Stefan Metzmacher | 1 | -4/+6 | |
| metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: remove unused ntlmssp_set_workstation() | Stefan Metzmacher | 1 | -13/+0 | |
| metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: inline ntlmssp_weaken_keys() | Stefan Metzmacher | 1 | -41/+0 | |
| metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: remove unused get_global_myname() and get_domain() from ↵ | Stefan Metzmacher | 1 | -8/+0 | |
| ntlmssp_state Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: pass names and use_ntlmv2 to ntlmssp_client_start() and store them | Stefan Metzmacher | 1 | -16/+41 | |
| Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: remove server_name from ntlmssp_state and fill the server.* ↵ | Stefan Metzmacher | 1 | -1/+10 | |
| fields also for the client Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: pass names to ntlmssp_server_start() and store them in ntlmssp_state | Stefan Metzmacher | 1 | -36/+65 | |
| Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-03-24 | s3:ntlmssp: replace server_role by a server.is_standalone in ntlmssp_state | Stefan Metzmacher | 1 | -2/+2 | |
| Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org> | |||||
| 2010-01-24 | s3: Add NTLMSSP_FEATURE_CCACHE | Volker Lendecke | 1 | -0/+60 | |
| Uses the winbind ccache to do authentication if asked to do so | |||||
| 2010-01-24 | s3: Remove some calls to memset -- reduces text size by some bytes for me | Volker Lendecke | 1 | -5/+2 | |
| 2009-12-29 | s3:ntlmssp: change get_challange() to return NTSTATUS | Stefan Metzmacher | 1 | -3/+8 | |
| metze | |||||
| 2009-12-29 | s3:ntlmssp: remove unused ntlmssp_stored_response() | Stefan Metzmacher | 1 | -25/+1 | |
| metze | |||||
| 2009-12-29 | s3:ntlmssp: remove unused ref_count from ntlmssp_state | Stefan Metzmacher | 1 | -12/+4 | |
| metze | |||||
| 2009-12-29 | s3:ntlmssp: rename NTLM_MESSAGE_TYPE into ntlmssp_message_type | Stefan Metzmacher | 1 | -1/+1 | |
| metze | |||||
| 2009-12-22 | s3:ntlmssp: only include ntlmssp.h where actually needed | Andrew Bartlett | 1 | -0/+1 | |
| Andrew Bartlett | |||||
| 2009-12-22 | s3:ntlmssp: remove the typedef NTLMSSP_STATE | Andrew Bartlett | 1 | -15/+15 | |
| Andrew Bartlett | |||||
| 2009-12-22 | s3:ntlmssp: rename enum NTLMSSP_ROLE into enum ntlmssp_role | Andrew Bartlett | 1 | -1/+1 | |
| Andrew Bartlett | |||||
| 2009-12-22 | libcli/auth Make gd's NDR NTLMSSP parsers helpers common | Andrew Bartlett | 1 | -1/+1 | |
| (but not built in Samba4 for now) | |||||
| 2009-08-28 | s3-ntlmssp: use generated ntlmssp code for debugging purpose. | Günther Deschner | 1 | -0/+69 | |
| Guenther | |||||
| 2009-08-28 | s3-ntlmssp: use interface constants in TargetInfo blob. | Günther Deschner | 1 | -5/+5 | |
| Guenther | |||||
| 2009-08-28 | s3-ntlmssp: use NTLMSSP headers from IDL and remove duplicate constants. | Günther Deschner | 1 | -16/+14 | |
| Guenther | |||||
| 2009-08-27 | s3-ntlmssp: remove trailing whitespace. | Günther Deschner | 1 | -96/+96 | |
| Guenther | |||||
| 2009-04-20 | s3:ntlmssp Remove use of talloc(NULL) in NTLMSSP code | Andrew Bartlett | 1 | -10/+10 | |
| 2009-04-20 | s3:ntlmssp Fix segfault: msrpc_gen now uses talloc() | Andrew Bartlett | 1 | -46/+8 | |
| 2009-04-16 | Fix crash bug in NTLMSSP caused by msrpc_parse() moving to talloc | Andrew Bartlett | 1 | -4/+2 | |
| 2009-04-14 | More work to adapt to merged libcli/auth function prototypes | Andrew Bartlett | 1 | -10/+10 | |
| 2009-04-14 | Rework Samba3 to use new libcli/auth code (partial) | Andrew Bartlett | 1 | -14/+16 | |
| This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett | |||||
| 2009-02-21 | Remove the static "chal" from ntlmssp.c:get_challenge() | Volker Lendecke | 1 | -7/+5 | |
| 2008-11-30 | remove the explicit mem_ctx from ntlmssp_state, use the state itself | Volker Lendecke | 1 | -46/+41 | |
| 2008-11-30 | fix nonempty blank lines | Volker Lendecke | 1 | -27/+27 | |
| 2008-04-30 | ntlmssp: replace UNKNOWN_02000000 with NTLMSSP_NEGOTIATE_VERSION. | Günther Deschner | 1 | -3/+5 | |
| Guenther (This used to be commit 2c41d69bcf6f0897ef9d444a8f167aff1772d562) | |||||
| 2008-02-29 | Restore 3.0 behaviour with empty /etc/hosts | Volker Lendecke | 1 | -2/+5 | |
| Jeremy, in 3.0 we allowed get_mydnsdomname and get_mydnsfullname to fail without filling in anything useful. Worked fine. Without this patch and a empty /etc/hosts and no DNS configured, session setup would return NT_STATUS_BAD_NETWORK_NAME. This is confusing at best, BAD_NETWORK_NAME afaik is only ever returned from tcon normally. This restores the 3.0 behaviour. Comments? Volker (This used to be commit 2bd3b7d474768f842921945d283eac10da2a1684) | |||||
| 2008-02-29 | Check the right variable for being NULL | Volker Lendecke | 1 | -1/+1 | |
| (This used to be commit f2c67803792f1fd3929e922c1f626f8247e08992) | |||||
 |
index : samba | |
| Unnamed repository; edit this file 'description' to name the repository. | ben |
| summaryrefslogtreecommitdiff |