[Samba] Does CVE-2020-1472 impact samba AD domains?

mj lists at merit.unu.edu
Wed Sep 16 09:04:27 UTC 2020


On 9/16/20 10:13 AM, Andrew Bartlett via samba wrote:
> We expect it would be catastrophic for domains, such as those running
> Samba 4.7 and earlier, that have 'server schannel = auto'.
> I've not run a full exploit against Samba, but spent this afternoon in
> the code and can't find any mitigating factors so far.:-(

So, we confirmed to be running

 > schannel = Yes


Is there anything else we can do..?

Is there an equivalent for samba, for EventID 5829 on windows DCs?


More information about the samba mailing list