From 3428c63aa74f46c3db65736bf1c56502fad2362c Mon Sep 17 00:00:00 2001 From: Andrew Bartlett Date: Mon, 10 Sep 2007 02:14:18 +0000 Subject: r25049: Set new, more secure defaults for Samba 3.2. Andrew Bartlett (This used to be commit 87d39f61b498c1327c2b3a818e41bb6451fe7518) --- source3/param/loadparm.c | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) (limited to 'source3/param/loadparm.c') diff --git a/source3/param/loadparm.c b/source3/param/loadparm.c index 2c6a5df3e5..b49d7b54a9 100644 --- a/source3/param/loadparm.c +++ b/source3/param/loadparm.c @@ -1574,10 +1574,10 @@ static void init_globals(BOOL first_time_only) Globals.bStatCache = True; /* use stat cache by default */ Globals.iMaxStatCacheSize = 1024; /* one Meg by default. */ Globals.restrict_anonymous = 0; - Globals.bClientLanManAuth = True; /* Do use the LanMan hash if it is available */ - Globals.bClientPlaintextAuth = True; /* Do use a plaintext password if is requested by the server */ - Globals.bLanmanAuth = True; /* Do use the LanMan hash if it is available */ - Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is available (otherwise NTLMv2) */ + Globals.bClientLanManAuth = False; /* Do NOT use the LanMan hash if it is available */ + Globals.bClientPlaintextAuth = False; /* Do NOT use a plaintext password even if is requested by the server */ + Globals.bLanmanAuth = False; /* Do NOT use the LanMan hash, even if it is supplied */ + Globals.bNTLMAuth = True; /* Do use NTLMv1 if it is supplied by the client (otherwise NTLMv2) */ Globals.bClientNTLMv2Auth = False; /* Client should not use NTLMv2, as we can't tell that the server supports it. */ /* Note, that we will use NTLM2 session security (which is different), if it is available */ -- cgit