[REGRESSION] sever signing = default (false) for smbd (with CVE-2016-2115)

Andreas Schneider asn at samba.org
Thu Apr 14 06:35:09 UTC 2016


at least in Samba 3.6 we have 'server signing = false' as the default case. 
With CVE-2016-2115 we have 'client ipc signing = required'. This means that 
Samba clients which try a RPC connection to a PDC will fail because the server 
doesn't support signing!

Shouldn't we set 'server singing = auto' as the default for all Samba versions 

Best regards,

	-- andreas

Andreas Schneider                   GPG-ID: CC014E3D
Samba Team                             asn at samba.org

More information about the samba-technical mailing list