From: Andrew Bartlett <abartlet@samba.org>
Date: Sat, 24 Jul 2004 23:57:07 +0000 (+0000)
Subject: r1581: 'NULL' NTLMSSP is both a pain to get right, and compleatly and utterly
X-Git-Tag: samba-misc-tags/initial-v3-0-unstable~5952
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=554a9132872187077a9c00abb18b9d809c59b7f1;p=thirdparty%2Fsamba.git

r1581: 'NULL' NTLMSSP is both a pain to get right, and compleatly and utterly
pointless.  With a well-known session key, we may as well put the
password change directly on the wire, with it's own 'crypted with old
password' as the protection.

This should fix some 'long password change' issues, against Samba in
particular.

Andrew Bartlett
---

diff --git a/source/libsmb/passchange.c b/source/libsmb/passchange.c
index 9f46c131fee..8bce9c86a1e 100644
--- a/source/libsmb/passchange.c
+++ b/source/libsmb/passchange.c
@@ -144,6 +144,8 @@ BOOL remote_password_change(const char *remote_machine, const char *user_name,
 	init_creds(&creds, "", "", NULL);
 	cli_init_creds(&cli, &creds);
 	
+	cli.pipe_auth_flags = 0;
+
 	result = NT_STATUS_UNSUCCESSFUL;
 	
 	/* OK, this is ugly, but... */