smbd/reply.c 2.2.8a test local workgroup patch
Richard Sharpe
rsharpe at richardsharpe.com
Fri Jun 20 19:17:37 GMT 2003
On Fri, 20 Jun 2003, Matthew Moffitt wrote:
> This makes a change which causes the server (in domain authentication
> mode) to test against the SERVER's domain/workgroup if it fails to
> authenticate against the CLIENT specified domain. I'm not subscribed to
> the technical list, it's a local change I made for our environment but
> you're welcome to contact me for information/explanation if it's
> helpful.
>
> -Matt
>
> diff smbd/reply.c smbd/reply.c.orig:
>
> 981,982d980
> < !check_domain_security(orig_user, lp_workgroup(), user, smb_apasswd,
> < smb_apasslen, smb_ntpasswd, smb_ntpasslen, &ptok) &&
> 985d982
> <
Ummm, what does this give you that having the user specify the domain they
want to log onto and trusted domains doesnt.
It is also a security problem, ISTM.
Regards
-----
Richard Sharpe, rsharpe[at]ns.aus.com, rsharpe[at]samba.org,
sharpe[at]ethereal.com, http://www.richardsharpe.com
More information about the samba-technical
mailing list