[REGRESSION] sever signing = default (false) for smbd (with CVE-2016-2115)
Andreas Schneider
asn at samba.org
Thu Apr 14 06:35:09 UTC 2016
Hello,
at least in Samba 3.6 we have 'server signing = false' as the default case.
With CVE-2016-2115 we have 'client ipc signing = required'. This means that
Samba clients which try a RPC connection to a PDC will fail because the server
doesn't support signing!
Shouldn't we set 'server singing = auto' as the default for all Samba versions
now?
Best regards,
-- andreas
--
Andreas Schneider GPG-ID: CC014E3D
Samba Team asn at samba.org
www.samba.org
More information about the samba-technical
mailing list