]> git.ipfire.org Git - thirdparty/samba.git/commit
projects / thirdparty / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 885fe6e) | patch
CVE-2020-25717: s3:auth: no longer let check_account() autocreate local users
authorStefan Metzmacher <metze@samba.org>
Fri, 8 Oct 2021 16:08:20 +0000 (18:08 +0200)
committerJule Anger <janger@samba.org>
Mon, 8 Nov 2021 09:52:10 +0000 (10:52 +0100)
commitd079628a43f845522598be7efa0abf5e478549c6
tree1a62619e7692efc8d2a7748a2e06e0b7ca72c3c4tree
parent885fe6e31b107b3a6362cde0785e6d886888e0eccommit | diff
CVE-2020-25717: s3:auth: no longer let check_account() autocreate local users

So far we autocreated local user accounts based on just the
account_name (just ignoring any domain part).

This only happens via a possible 'add user script',
which is not typically defined on domain members
and on NT4 DCs local users already exist in the
local passdb anyway.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=14556
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14801

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
source3/auth/auth_util.c diff | blob | blame | history
Mirror of https://github.com/samba-team/samba.git